cheating in online games
play

Cheating in Online Games CS 161: Computer Security Prof. David Wagner - PowerPoint PPT Presentation

Apr 01, 2024 •261 likes •632 views

Cheating in Online Games CS 161: Computer Security Prof. David Wagner April 20, 2016 <hp:26 mo:74> west Main Street You are on the main street passing through the City of Midgaard. South of here is the entrance to the Armoury, and the

  1. Cheating in Online Games CS 161: Computer Security Prof. David Wagner April 20, 2016

  2. <hp:26 mo:74> west Main Street You are on the main street passing through the City of Midgaard. South of here is the entrance to the Armoury, and the bakery is to the north. East of here is the market square. Obvious exits: North East South West A cityguard stands here. An acid blob moves around with a gurgling sound, looking for objects to dissolve. <hp:26 mo:72> kill guard The Cityguard evades your attack. <hp:26 mo:83> The Cityguard slashes you hard. That Really did HURT! You miss the Cityguard with your hit. <hp:13 mo:82> The Cityguard wipes his boots in your face. <hp:-6 mo:82> You are DEAD! R.I.P.

  3. Cheat #1: Reset • Exploit bug to crash server: > put bag in bag > drop bag • Why? Reboots server, resets all areas and creates new treasure

  4. Cheat #2: Duplicate items • Alice does: > save > give awesome sword to Bob • Bob does: > save > put bag in bag > drop bag • Why? Both players end up with awesome sword.

  5. Cheat #3: Injection attacks • Many people used custom clients to automate some actions. E.g., healer might use: $1 hits $2 very hard. -> heal $2 • Chad the Cheater Bob does: > say Someone hits Chad very hard. You say "Someone hits Chad very hard." Alice has healed you. • Fix?

  8. Online multiplayer games server video video client client (Alice) (Bob)

  9. Online multiplayer games server I moved Alice moved to (3,5) to (3,5) client client (Alice) (Bob)

  10. Teleportation, speed hacks server I moved Alice moved to (30,5) to (30,5) client client (Alice) (Bob)

  11. Lying clients: lies, lies, all lies server I shot You are Bob dead client client (Alice) (Bob)

  12. Solution: Authoritative Server • Fix: Don’t trust the client. Ever. • Server is authoritative. Client just reports inputs from user to server.

  13. Authoritative server server Alice moved I moved to (3,5) forward client client (Alice) (Bob)

  14. Cheat: Information Exposure • Server might send more information than you need. • Cheat: Hacked client might show user more information than it’s supposed to.

  15. Wall hacks

  16. Wall hacks

  17. Fog of war, Map hacks

  18. Everquest ShowEQ hack

  19. Information exposure? • Fix?

  20. Older network architectures (Doom) server video video client client (Alice) (Bob)

  21. Example Scenario (FPS) Who has the advantage?

  22. Older network architectures (Doom) server Alice moved Alice moved I moved around corner around corner forward client client (Alice) (Bob)

  23. Older network architectures (Doom) server Alice moved Alice moved around corner around corner client client (Alice) (Bob) Advantage: lowest latency

  24. Client prediction (Quake) • Performance problem: When you press “Forward”, you don’t see yourself move forward until after 200 ms or so. This is jarring. • Fix: client prediction. Client predicts effect of move, immediately moves your point of view forward (predicting what server will say). Basically, speculative execution. Server remains authoritative.

  25. Example Scenario (FPS) Who has the advantage?

  26. Client prediction (Quake) server Alice moved Alice moved I moved around corner around corner forward client client (Alice) (Bob) Client immediately Bob doesn’t see anything yet moves Alice’s POV forward, Alice can now see Bob Advantage: first mover

  27. Cheat: Delayed updates • Normally, Alice’s client would send: 0ms: send “Alice moved forward” 0ms: Alice’s display is updated, Bob is visible 300ms: send “Alice shot at Bob” • Bob sees: 100ms: rcvd “Alice moved forward” 100ms: Bob’s display is updated, Alice is visible 400ms: send “Bob shot at Alice” (too late) • But if Alice is a cheater, she could delay the first message by up to 300 ms …

  28. Cheat: Delayed updates • Cheating Alice sends: 0ms: send “Alice moved forward” ( delayed 300ms ) 0ms: Alice’s display is updated, Bob is visible 300ms: send “Alice shot at Bob” • Bob sees: 400ms: rcvd “Alice moved forward” 400ms: rcvd “Alice shot you, you are dead” 400ms: Bob’s display is updated (too late) • But if Alice is a cheater, she could delay the first message by up to 300 ms …

  29. Modern network architectures server video video client client (Alice) (Bob) Video/updates are buffered by 200ms, to deal with jitter.

  30. Cheat: Information Exposure • Cheating client can “peek” at buffer to get advance notice of what’s coming (up to 200ms)

  31. Tactic: attack clustered defenders

  32. Interest region

  33. Tactic: approach from NESW

  34. Cheat: Aimbots • Reflex augmentation: Aimbots automatically detect objects, “snap” your aim to their center of mass for you so you have perfect aim • Fix?

  35. Online game Take-aways • Don’t trust the client! • Distributed systems are hard when you can’t trust all nodes

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

6 Cheating Prevention Goals traditional cheating in computer games protect the sensitive

6 Cheating Prevention Goals traditional cheating in computer games protect the sensitive

6 Cheating Prevention Goals traditional cheating in computer games protect the sensitive information cracking the copy protection cracking passwords fiddling with the binaries: boosters, trainers, etc. pretending to be an

331 views • 3 slides
Distributed Computing Systems Compensation techniques Cheating Cloud games (Slides for

Distributed Computing Systems Compensation techniques Cheating Cloud games (Slides for

2/26/2016 Outline Network Games Architectures Distributed Computing Systems Compensation techniques Cheating Cloud games (Slides for Final Class) Peer-to-Peer Systems Overview P2P file sharing Communication

447 views • 8 slides
Over-Monetization of Online Games By: Nick Meyer History Online games have evolved a lot in

Over-Monetization of Online Games By: Nick Meyer History Online games have evolved a lot in

Over-Monetization of Online Games By: Nick Meyer History Online games have evolved a lot in a short amount of time. Huge improvements is communication, graphics, and development in general. Older games had a straightforward

348 views • 9 slides
Hacking Online Games Matt Ward &amp; Paul Jennas II April 22, 2012 Agenda Importance Attack

Hacking Online Games Matt Ward &amp; Paul Jennas II April 22, 2012 Agenda Importance Attack

Hacking Online Games Matt Ward &amp; Paul Jennas II April 22, 2012 Agenda Importance Attack Tree for Cheating On-line Poker Bots Denial of Service Collusion Software Exploits Conclusion Importance Out-of-band market for virtual equipment

1.07k views • 63 slides
Quia Web www.quia.com/web What is Quia? Create your own online games &amp; activities

Quia Web www.quia.com/web What is Quia? Create your own online games &amp; activities

Quia Web www.quia.com/web What is Quia? Create your own online games &amp; activities Create your own online tests &amp; assessments Track student results View detailed grading reports Manage classes online Complete online

689 views • 40 slides
Quia Web www.quia.com/web What is Quia? Create your own online games &amp; activities

Quia Web www.quia.com/web What is Quia? Create your own online games &amp; activities

Quia Web www.quia.com/web What is Quia? Create your own online games &amp; activities Create your own online tests &amp; assessments Track student results View detailed grading reports Manage classes online Complete online

918 views • 27 slides
Deterring Cheating in Online Environments Henry Corrigan-Gibbs Nakull Gupta Curtis

Deterring Cheating in Online Environments Henry Corrigan-Gibbs Nakull Gupta Curtis

Deterring Cheating in Online Environments Henry Corrigan-Gibbs Nakull Gupta Curtis Northcutt Stanford University Microsoft Research India MIT Edward Cutrell William Thies Microsoft Research India Microsoft

1.19k views • 101 slides
Interrogating Character #PZ50th Image credit:

Interrogating Character #PZ50th Image credit:

Interrogating Character #PZ50th Image credit: http://www.nytimes.com/2012/09/15/opinion/the-long-legacy-of-cheating-at-harvard Rate of Cheating (%) 100 20 40 60 80 0 2.0 Grade Point Average (GPA) 2.5 Predicted Rates of Cheating [Scale

192 views • 6 slides
Online Gaming Video games played over some sort of computer network Massively Multiplayer Online

Online Gaming Video games played over some sort of computer network Massively Multiplayer Online

Online Gaming Video games played over some sort of computer network Massively Multiplayer Online Games (MMOGs) Aspects unique to MMOGs: -persistent universe that contin- ues regardless of interaction -can fit up to a few thousand players on

416 views • 20 slides
AI in Multiplayer Games Alex Zook @zookae AI in Multiplayer Games AI so Playing Online

AI in Multiplayer Games Alex Zook @zookae AI in Multiplayer Games AI so Playing Online

AI in Multiplayer Games Alex Zook @zookae AI in Multiplayer Games AI so Playing Online Doesnt Suck Alex Zook @zookae A Hammer What does AI do? Play against people (1 v 1) What have we learned about games by doing this? What

461 views • 10 slides
Multiplayer Online Games An-Cheng Huang Network Reading Group Meeting Nov. 14, 2003 Outline

Multiplayer Online Games An-Cheng Huang Network Reading Group Meeting Nov. 14, 2003 Outline

Multiplayer Online Games An-Cheng Huang Network Reading Group Meeting Nov. 14, 2003 Outline Overview of multiplayer online games (MOGs) Research issues Sample of recent papers A few observations Types of MOG: Categorization

662 views • 47 slides
Tutorial: Traffic of Online Games Jose Saldana &amp; Mirko Suznjevic IETF 87, Berlin, August 1 st

Tutorial: Traffic of Online Games Jose Saldana &amp; Mirko Suznjevic IETF 87, Berlin, August 1 st

Tutorial: Traffic of Online Games Jose Saldana &amp; Mirko Suznjevic IETF 87, Berlin, August 1 st , 2013 Transport Area Open Meeting 1.8.2013. 1 Goals of this presentation Information about current practices in online games industry

866 views • 31 slides
Efficient matchmaking in assignment games with application to online platforms Peng Shi (USC)

Efficient matchmaking in assignment games with application to online platforms Peng Shi (USC)

Efficient matchmaking in assignment games with application to online platforms Peng Shi (USC) Research question: How can an online platform best help customers match with the right service provider at the right price, so as to minimize the time

281 views • 4 slides
Free to Play Games The Game is not enough by Teut Weidemann Online Specialist Ubisoft Blue Byte

Free to Play Games The Game is not enough by Teut Weidemann Online Specialist Ubisoft Blue Byte

Free to Play Games The Game is not enough by Teut Weidemann Online Specialist Ubisoft Blue Byte The Settlers Online: f2p Die Siedler Online (DE), Castle Empire Online (USA), soon in FR, RU, PL, EN, CN, CZ etc. But the game isnt the topic

920 views • 35 slides
Ad-blocking Games: Monetizing Online Content Under the Threat of Ad Avoidance Nevena Vratonjic

Ad-blocking Games: Monetizing Online Content Under the Threat of Ad Avoidance Nevena Vratonjic

Ad-blocking Games: Monetizing Online Content Under the Threat of Ad Avoidance Nevena Vratonjic Jens Grossklags Hossein Manshaei Jean-Pierre Hubaux WEIS12 1 Online Advertising $ 31.74 billion in the US in 2011 Web User Website Ad

559 views • 16 slides
digital entertainment catalog in Africa. Games Online Comics - Education www.kiroogames.com

digital entertainment catalog in Africa. Games Online Comics - Education www.kiroogames.com

KIROO GAMES PRESENTATION 2019 Creation of the most inspiring digital entertainment catalog in Africa. Games Online Comics - Education www.kiroogames.com Email : founders@kiroogames.com Tlphone : +237 694 43 06 38

277 views • 12 slides
Source images - internet

Source images - internet

Source images - internet

438 views • 42 slides
Virtualisation and Grid Computing: Procedures and Usage Scenarios Volker Bge

Virtualisation and Grid Computing: Procedures and Usage Scenarios Volker Bge

Enabling Grids for E-sciencE Virtualisation and Grid Computing: Procedures and Usage Scenarios Volker Bge Volker.Buege@iwr.fzk.de Institut fr Experimentelle Kernphysik Institut fr Wissenschaftliches Rechnen Universitt Karlsruhe

656 views • 30 slides
Impact of Advanced Virtualization S. Freitag Technologies on Grid Computing Centers

Impact of Advanced Virtualization S. Freitag Technologies on Grid Computing Centers

Virtualization in Grid Computing Centers Impact of Advanced Virtualization S. Freitag Technologies on Grid Computing Centers Virtualization International Symposium on Grid Computing 2009 Impact on Grid Computing Conclusion Stefan

334 views • 17 slides
SUPERCLOUD: GOING BEYOND FEDERATED CLOUDS Hakim Weatherspoon Robbert van Renesse 1

SUPERCLOUD: GOING BEYOND FEDERATED CLOUDS Hakim Weatherspoon Robbert van Renesse 1

SUPERCLOUD: GOING BEYOND FEDERATED CLOUDS Hakim Weatherspoon Robbert van Renesse 1 CONTROLLING HIGH ASSURANCE CLOUD COMPUTATION Should we migrate critical data to computation . . . or vice versa? E.g. app needs to import or

547 views • 36 slides
r r t

r r t

r r t srs r rt rt t

712 views • 42 slides
Neural Program Synthesis from Diverse Demonstration Videos Sriram Shao-Hua Sun* 1 Hyeonwoo Noh* 2

Neural Program Synthesis from Diverse Demonstration Videos Sriram Shao-Hua Sun* 1 Hyeonwoo Noh* 2

Neural Program Synthesis from Diverse Demonstration Videos Sriram Shao-Hua Sun* 1 Hyeonwoo Noh* 2 Joseph J. Lim 1 Somasundaram 1 1 University of Southern California 2 Pohang University of Science and Technology *Equal contribution A program is an

977 views • 63 slides
The Final Fulfillment of the Babylon Judgments Rev 18 I. God sends another strong angel who

The Final Fulfillment of the Babylon Judgments Rev 18 I. God sends another strong angel who

The Final Fulfillment of the Babylon Judgments Rev 18 I. God sends another strong angel who announces the final doom of Babylon; 18: 1 3 II. God the Father announces the final judgment of Babylon; 18:420 III. God sends a second angel to

742 views • 19 slides
Algorithms for NLP Language Modeling III Taylor Berg-Kirkpatrick CMU Slides: Dan Klein

Algorithms for NLP Language Modeling III Taylor Berg-Kirkpatrick CMU Slides: Dan Klein

Algorithms for NLP Language Modeling III Taylor Berg-Kirkpatrick CMU Slides: Dan Klein UC Berkeley Efficient Hashing Closed address hashing Resolve collisions with chains Easier to understand but bigger Open address

544 views • 35 slides

More recommend