Sharing is Caring: Towards Analyzing Attack Surfaces on Shared Hosting Providers
| dc.contributor.author | Hörnemann, Jan | |
| dc.contributor.author | Pohlmann, Norbert | |
| dc.contributor.author | Urban, Tobias | |
| dc.contributor.author | Große-Kampmann, Matteo | |
| dc.contributor.editor | Wendzel, Steffen | |
| dc.contributor.editor | Wressnegger, Christian | |
| dc.contributor.editor | Hartmann, Laura | |
| dc.contributor.editor | Freiling, Felix | |
| dc.contributor.editor | Armknecht, Frederik | |
| dc.contributor.editor | Reinfelder, Lena | |
| dc.date.accessioned | 2024-04-19T12:54:02Z | |
| dc.date.available | 2024-04-19T12:54:02Z | |
| dc.date.issued | 2024 | |
| dc.description.abstract | In this paper, we shed light on shared hosting services’ security and trust implications and measure their attack surfaces. To do so, we analyzed 30 shared hosters and found that all of them might leak relevant information, which could be abused unnoticed. An adversary could use this attack surface to covertly extract data from various third parties registered with a shared hoster. Furthermore, we found that most hosters suffer from vulnerabilities that can be used by an internal attacker (i.e., someone using the service) to compromise other hosted services or the entire system. | en |
| dc.identifier.doi | 10.18420/sicherheit2024_014 | |
| dc.identifier.isbn | 978-3-88579-739-5 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/43954 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | Sicherheit 2024 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings Volume P-345 | |
| dc.title | Sharing is Caring: Towards Analyzing Attack Surfaces on Shared Hosting Providers | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 229 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 217 | |
| gi.conference.date | 09.-11.04.2024 | |
| gi.conference.location | Worms | |
| gi.conference.sessiontitle | Full Paper Session 7 – Netzwerk- und Softwaresicherheit |
Dateien
Originalbündel
1 - 1 von 1