Integrity Check Value, Are You a Spy? Information Leakage Attack on Archive Formats

Donghyun Kim; Jongwook Jeong; Soo Hyun Lee; So Hyun Kang; Youn Kyu Lee

doi:10.1109/ACCESS.2024.3416690

Integrity Check Value, Are You a Spy? Information Leakage Attack on Archive Formats

Donghyun Kim
, Jongwook Jeong
, Soo Hyun Lee
, So Hyun Kang
, Youn Kyu Lee^*

^*Corresponding author for this work

Research output: Contribution to journal › Journal article › peer-review

1 Scopus citations

Abstract

Existing archive formats provide encryption to protect data, but vulnerabilities in these formats can lead to data leakage. This study proposes a novel attack to leak original data from encrypted archive files by exploiting the integrity check value and unencrypted metadata. The proposed attack obtains the size of the original data and the integrity check value by parsing the encrypted file, and identifies the original data by leveraging password-cracking techniques. Experiments with seven archive formats and seven utilities demonstrate the effectiveness of our proposed attack, successfully leaking data from 11 out of 20 encrypted files. This research uncovers vulnerabilities in existing archive formats and contributes to the design of more secure archiving systems.

Original language	English
Pages (from-to)	105258-105267
Number of pages	10
Journal	IEEE Access
Volume	12
DOIs	https://doi.org/10.1109/ACCESS.2024.3416690
State	Published - 2024

Keywords

Archive format analysis
archive utility
data security
information leakage
passwordcracking techniques
side-channel attack
vulnerability analysis

Quacquarelli Symonds(QS) Subject Topics

Materials Science
Computer Science & Information Systems

Access to Document

10.1109/ACCESS.2024.3416690

Cite this

@article{e062470eaa764a64ab97d74c438dde88,

title = "Integrity Check Value, Are You a Spy? Information Leakage Attack on Archive Formats",

abstract = "Existing archive formats provide encryption to protect data, but vulnerabilities in these formats can lead to data leakage. This study proposes a novel attack to leak original data from encrypted archive files by exploiting the integrity check value and unencrypted metadata. The proposed attack obtains the size of the original data and the integrity check value by parsing the encrypted file, and identifies the original data by leveraging password-cracking techniques. Experiments with seven archive formats and seven utilities demonstrate the effectiveness of our proposed attack, successfully leaking data from 11 out of 20 encrypted files. This research uncovers vulnerabilities in existing archive formats and contributes to the design of more secure archiving systems.",

keywords = "Archive format analysis, archive utility, data security, information leakage, passwordcracking techniques, side-channel attack, vulnerability analysis",

author = "Donghyun Kim and Jongwook Jeong and Lee, \{Soo Hyun\} and Kang, \{So Hyun\} and Lee, \{Youn Kyu\}",

note = "Publisher Copyright: {\textcopyright} 2024 The Authors.",

year = "2024",

doi = "10.1109/ACCESS.2024.3416690",

language = "English",

volume = "12",

pages = "105258--105267",

journal = "IEEE Access",

issn = "2169-3536",

}

TY - JOUR

T1 - Integrity Check Value, Are You a Spy? Information Leakage Attack on Archive Formats

AU - Kim, Donghyun

AU - Jeong, Jongwook

AU - Lee, Soo Hyun

AU - Kang, So Hyun

AU - Lee, Youn Kyu

PY - 2024

Y1 - 2024

N2 - Existing archive formats provide encryption to protect data, but vulnerabilities in these formats can lead to data leakage. This study proposes a novel attack to leak original data from encrypted archive files by exploiting the integrity check value and unencrypted metadata. The proposed attack obtains the size of the original data and the integrity check value by parsing the encrypted file, and identifies the original data by leveraging password-cracking techniques. Experiments with seven archive formats and seven utilities demonstrate the effectiveness of our proposed attack, successfully leaking data from 11 out of 20 encrypted files. This research uncovers vulnerabilities in existing archive formats and contributes to the design of more secure archiving systems.

AB - Existing archive formats provide encryption to protect data, but vulnerabilities in these formats can lead to data leakage. This study proposes a novel attack to leak original data from encrypted archive files by exploiting the integrity check value and unencrypted metadata. The proposed attack obtains the size of the original data and the integrity check value by parsing the encrypted file, and identifies the original data by leveraging password-cracking techniques. Experiments with seven archive formats and seven utilities demonstrate the effectiveness of our proposed attack, successfully leaking data from 11 out of 20 encrypted files. This research uncovers vulnerabilities in existing archive formats and contributes to the design of more secure archiving systems.

KW - Archive format analysis

KW - archive utility

KW - data security

KW - information leakage

KW - passwordcracking techniques

KW - side-channel attack

KW - vulnerability analysis

UR - https://www.scopus.com/pages/publications/85196555415

U2 - 10.1109/ACCESS.2024.3416690

DO - 10.1109/ACCESS.2024.3416690

M3 - Journal article

AN - SCOPUS:85196555415

SN - 2169-3536

VL - 12

SP - 105258

EP - 105267

JO - IEEE Access

JF - IEEE Access

ER -

Integrity Check Value, Are You a Spy? Information Leakage Attack on Archive Formats

Abstract

Keywords

Quacquarelli Symonds(QS) Subject Topics

Access to Document

Other files and links

Fingerprint

Cite this