论文信息 - Exploiting Social Navigation

Exploiting Social Navigation

We present an effective Sybil attack against social location based services. Our attack is based on creating a large number of reputed "bot drivers", and controlling their reported locations using fake GPS reports. We show how this attack can be used to influence social navigation systems by applying it to Waze - a prominent social navigation application used by over 50 million drivers. We show that our attack can fake traffic jams and dramatically influence routing decisions. We present several techniques for preventing the attack, and show that effective mitigation likely requires the use of additional carrier information.

[1] Mahesh Balakrishnan,et al. Where's that phone?: geolocating IP addresses on 3G networks , 2009, IMC '09.

[2] Michael Kaminsky,et al. SybilGuard: defending against sybil attacks via social networks , 2008, TNET.

[3] Chris Kanich,et al. Re: CAPTCHAs-Understanding CAPTCHA-Solving Services in an Economic Context , 2010, USENIX Security Symposium.

[4] John R. Douceur,et al. The Sybil Attack , 2002, IPTPS.

[5] Feng Xiao,et al. SybilLimit: A Near-Optimal Social Network Defense against Sybil Attacks , 2008, 2008 IEEE Symposium on Security and Privacy (sp 2008).

[6] Gang Wang,et al. Northeastern University , 2021, IEEE Pulse.

[7] Michael Kaminsky,et al. SybilGuard: Defending Against Sybil Attacks via Social Networks , 2008, IEEE/ACM Transactions on Networking.

[8] Lakshminarayanan Subramanian,et al. Sybil-Resilient Online Content Voting , 2009, NSDI.