WebRTC security measures and weaknesses

Ben Feher; Lior Sidi; Asaf Shabtai; Rami Puzis; Leonardas Marozas

doi:10.1504/IJITST.2018.092138

WebRTC security measures and weaknesses

Ben Feher, Lior Sidi, Asaf Shabtai, Rami Puzis, Leonardas Marozas

Department of Software and Information Systems Engineering

Ben-Gurion University of the Negev

Research output: Contribution to journal › Article › peer-review

Abstract

WebRTC is a technology that enables real-time communication between web browsers for information streaming, including text, sound or direct data transfer. WebRTC is supported by all major browsers and has a flexible underlying infrastructure. In this study, we review current state of WebRTC and analyse security shortcomings during acts of communication disruption, modification, and eavesdropping. In addition, we examine WebRTC security in experimental scenarios.

Original language	American English
Pages (from-to)	78-102
Number of pages	25
Journal	International Journal of Internet Technology and Secured Transactions
Volume	8
Issue number	1
DOIs	https://doi.org/10.1504/IJITST.2018.092138
State	Published - 1 Jan 2018

Keywords

DTLS-SRTP
P2P
Peer-to-peer
Real-time communication
Security.
Signalling
Web real-time communication
WebRTC

All Science Journal Classification (ASJC) codes

Computer Science Applications
Computer Networks and Communications

Access to Document

10.1504/IJITST.2018.092138

Cite this

@article{7a672dbb45e143e680ac8b66ecf111ac,

title = "WebRTC security measures and weaknesses",

abstract = "WebRTC is a technology that enables real-time communication between web browsers for information streaming, including text, sound or direct data transfer. WebRTC is supported by all major browsers and has a flexible underlying infrastructure. In this study, we review current state of WebRTC and analyse security shortcomings during acts of communication disruption, modification, and eavesdropping. In addition, we examine WebRTC security in experimental scenarios.",

keywords = "DTLS-SRTP, P2P, Peer-to-peer, Real-time communication, Security., Signalling, Web real-time communication, WebRTC",

author = "Ben Feher and Lior Sidi and Asaf Shabtai and Rami Puzis and Leonardas Marozas",

note = "Publisher Copyright: Copyright {\textcopyright} 2018 Inderscience Enterprises Ltd.",

year = "2018",

month = jan,

day = "1",

doi = "10.1504/IJITST.2018.092138",

language = "American English",

volume = "8",

pages = "78--102",

journal = "International Journal of Internet Technology and Secured Transactions",

issn = "1748-569X",

publisher = "Inderscience",

number = "1",

}

TY - JOUR

T1 - WebRTC security measures and weaknesses

AU - Feher, Ben

AU - Sidi, Lior

AU - Shabtai, Asaf

AU - Puzis, Rami

AU - Marozas, Leonardas

PY - 2018/1/1

Y1 - 2018/1/1

N2 - WebRTC is a technology that enables real-time communication between web browsers for information streaming, including text, sound or direct data transfer. WebRTC is supported by all major browsers and has a flexible underlying infrastructure. In this study, we review current state of WebRTC and analyse security shortcomings during acts of communication disruption, modification, and eavesdropping. In addition, we examine WebRTC security in experimental scenarios.

AB - WebRTC is a technology that enables real-time communication between web browsers for information streaming, including text, sound or direct data transfer. WebRTC is supported by all major browsers and has a flexible underlying infrastructure. In this study, we review current state of WebRTC and analyse security shortcomings during acts of communication disruption, modification, and eavesdropping. In addition, we examine WebRTC security in experimental scenarios.

KW - DTLS-SRTP

KW - P2P

KW - Peer-to-peer

KW - Real-time communication

KW - Security.

KW - Signalling

KW - Web real-time communication

KW - WebRTC

UR - http://www.scopus.com/inward/record.url?scp=85048037877&partnerID=8YFLogxK

U2 - 10.1504/IJITST.2018.092138

DO - 10.1504/IJITST.2018.092138

M3 - Article

SN - 1748-569X

VL - 8

SP - 78

EP - 102

JO - International Journal of Internet Technology and Secured Transactions

JF - International Journal of Internet Technology and Secured Transactions

IS - 1

ER -

WebRTC security measures and weaknesses

Abstract

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Cite this