Title :
Blackbox security evaluation of chromecast network communications
Author :
Tekeoglu, Ali ; Tosun, Ali Saman
Author_Institution :
Dept. of Comput. Sci., Univ. of Texas at San Antonio, San Antonio, TX, USA
Abstract :
Chromecast is a small, system-on-chip device, that plugs into the HDMI port of a larger screen and turns it into a smart screen. It is designed for multimedia streaming in a home-network environment. By setting up Chromecast, you can stream videos onto a larger screen and control it from a mobile device such as a smart-phone, tablet or a laptop. We examined the network packets exchanged between the smaller remote control device and the Chromecast attached larger screen. While Chromecast encrypts most of the content, remote control device sends control packets to the remote servers in the clear-text, which makes it vulnerable to reply-attacks or session-hijacking attacks. Besides, data transmission pattern leak personal information outside of the home-network, raising privacy concerns. Network protocols used by Chromecast are investigated and known vulnerabilities are listed. A method to detect the existence of Chromecast behind a home-router is proposed.
Keywords :
computer network security; data privacy; multimedia systems; protocols; Chromecast network communications; blackbox security evaluation; data transmission pattern; home-network environment; home-router; multimedia streaming; network packets; network protocols; privacy concern; reply-attacks; session-hijacking attacks; system-on-chip device; Ciphers; Google; Ports (Computers); Protocols; Servers; Videos;
Conference_Titel :
Performance Computing and Communications Conference (IPCCC), 2014 IEEE International
Conference_Location :
Austin, TX
DOI :
10.1109/PCCC.2014.7017050
