论文信息 - Semantic integrity in large-scale online simulations

Semantic integrity in large-scale online simulations

As large-scale online simulations such as Second Life and World of Warcraft are gaining economic significance, there is a growing incentive for attacks against such simulation software. We focus on attacks against the semantic integrity of the simulation. This class of attacks exploits the client-server architecture and is specific to online simulations which, for performance reasons, have to delegate the detailed rendering of the simulated world to the clients. Attacks against semantic integrity often compromise the physical laws of the simulated world—enabling the user's simulation persona to fly, walk through walls, or to run faster than anybody else. We introduce the Secure Semantic Integrity Protocol (SSIP), which enables the simulation provider to audit the client computations. Then we analyze the security and scalability of SSIP. First, we show that under standard cryptographic assumptions SSIP will detect semantic integrity attacks. Second, we analyze the network overhead, and determine the optimum tradeoff between cost of bandwidth and audit frequency for our protocol.

[1] Harro Heuser,et al. Lehrbuch der Analysis Teil 1 , 1990 .

[2] Patrick Cousot,et al. Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints , 1977, POPL.

[3] Andrew Rosenbloom,et al. Introduction , 2003, CACM.

[4] H. Heuser. Lehrbuch der Analysis , 2022 .

[5] Harro Heuser,et al. Lehrbuch der Analysis Teil 2 , 2004 .

[6] Luiz A. DaSilva,et al. Quality of service for networked virtual environments , 2004, IEEE Communications Magazine.

[7] Steven D. Levitt,et al. The Effect of Prison Population Size on Crime Rates: Evidence from Prison Overcrowding Litigation , 1995 .

[8] Marc Dacier,et al. Towards a taxonomy of intrusion-detection systems , 1999, Comput. Networks.

[9] William Stallings,et al. Cryptography and network security , 1998 .

[10] Stefan Katzenbeisser,et al. Enforcing Semantic Integrity on Untrusted Clients in Networked Virtual Environments , 2007, 2007 IEEE Symposium on Security and Privacy (SP '07).