Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
Springer Nature Link
Log in

Employment of Secure Enclaves in Cheat Detection Hardening

  • Conference paper
  • First Online:
Trust, Privacy and Security in Digital Business (TrustBus 2020)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 12395))

Included in the following conference series:

Abstract

Over the last years, it has become clear that online games are one of the most used applications on the Internet. This increasing popularity has attracted an influx of players, with some of them trying to gain an unfair advantage for economic reasons, e.g., eSports tournaments, through the use of cheats and exploits. From a different perspective, it is of utmost importance to start analyzing attacks from a defensive perspective to create novel mechanisms that can stop such behaviors. In this work, we introduce a novel solution that extends current anti-cheat solutions through Intel SGX. Our solution moves the core cheat detection engine to a secure enclave provided by SGX while making use of a kernel module for the necessary primitives for system-wide protection. With this, we can prevent client-side tampering in both game code and configuration data by creating a trusted execution environment isolated from the hosting operating system. We are making it capable of preventing the attacker from modifying the cheat detection engine and associated game files. This solution blocks known attacks in games such as CS:GO while maintaining the performance, ensuring gameplay integrity and fairness.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Baumann, A., Peinado, M., Hunt, G.: Shielding applications from an untrusted cloud with haven. ACM Trans. Comput. Syst. (TOCS) 33(3), 1–26 (2015)

    Article  Google Scholar 

  2. Arnautov, S., et al.: SCONE: secure linux containers with intel SGX. In: 12th USENIX Symposium on Operating Systems Design and Implementation (OSDI 2016), pp. 689–703 (2016)

    Google Scholar 

  3. Davidovici-Nora, M.: Paid and free digital business models innovations in the video game industry. Digiworld Econ. J. (94), 2nd Q, p. 83 (2014). Available at SSRN: https://ssrn.com/abstract=2534022

  4. Bauman, E., Lin, Z.: A case for protecting computer games with SGX. In: Proceedings of the 1st Workshop on System Software for Trusted Execution (SysTEX 2016), New York, NY, USA. ACM Article 4, 6 pages. https://doi.org/10.1145/3007788.3007792

  5. Korkin, I.: Two challenges of stealthy hypervisors detection: time cheating and data fluctuations. arXiv preprint arXiv:1506.04131 (2015)

  6. Yan, J., Randell, B.: A systematic classification of cheating in online games, pp. 1–9 (2005). https://doi.org/10.1145/1103599.1103606

  7. Pritchard, M.: How to hurt the hackers: the scoop on internet cheating and how you can combat it. Inf. Secur. Bull. (2011)

    Google Scholar 

  8. Schwarz, M., Weiser, S., Gruss, D.: Practical Enclave Malware with Intel SGX (2019)

    Google Scholar 

  9. Intel: IntelR\(\copyright \)64 and IA-32 Architectures Software Developer’s Manual, Vol-ume 3 (3A, 3B & 3C): System Programming Guide (325384) (2016)

    Google Scholar 

  10. Rostedt, S.: Ftrace kernel hooks: more than just tracing. In: Linux Plumbers Conference (2014)

    Google Scholar 

  11. Bauman, E., Wang, H., Zhang, M., Lin, Z.: SGXElide: enabling enclave code secrecy via self-modification. 75–86 (2018). https://doi.org/10.1145/3168833

  12. Berdajs, J., Bosnić, Z.: Extending applications using an advanced approach to DLL injection and API hooking. Softw. Pract. Exp. 40, 567–584 (2010). https://doi.org/10.1002/spe.973

    Article  Google Scholar 

  13. Tuzel, T., et al.: Who watches the watcher? Detecting hypervisor introspection from unprivileged guests. Digit. Invest. 26, S98–S106 (2018)

    Google Scholar 

  14. Feng, W., Kaiser, E.S., Chluessler, T.: Stealth measurements for cheat detection in on-line games. 15–20 (2008). https://doi.org/10.1145/1517494.1517497

  15. Cox, A., Kuznetsov, A., McHardy, P.: Netlink https://github.com/torvalds/linux/tree/master/net/netlink. Accessed 212 June 020

  16. Deng, Z., Zhang, X., Xu, D.: SPIDER: stealthy binary program instrumentation and debugging via hardware virtualization (2013). https://doi.org/10.1145/2523649.2523675

  17. Kyte, I., Zavarsky, P., Lindskog, D., Ruhl, R.: Enhanced Side-channel Analysis Method to Detect Hardware Virtualization Based Rootkits (2012)

    Google Scholar 

  18. Tanda, S.: DdiMon Github, 22 September 2018,. https://github.com/tandasat/DdiMon. Accessed 19 Sept 2019

  19. libperflogger - Game performance logging library. https://github.com/Lurkki14/libperflogger. Accessed 19 Sept 2019

  20. Fuzion - Open Source Linux Counter Strike: Global Offensive Cheat. https://github.com/LWSS/Fuzion. Accessed 19 Sept 2019

  21. Counter Strike: Global Offensive benchmark map. https://steamcommunity.com/sharedfiles/filedetails/?id=500334237. Accessed 19 Sept 2019

  22. GameBlocks, LLC. Fairfight server-sided anti-cheat. https://gameblocks.com/. Accessed 19 Sept 2019

  23. Epic Games, Inc., Easy Anti-Cheat. https://www.easy.ac. Accessed 19 Sept 2019

  24. BattlEye Innovations. BattlEye AntiCheat. https://www.battleye.com/. Accessed 19 Sept 2019

  25. Cowley, D.: Epic Games Acquires Kamu, Game Security and Player Services Company, 8 October 2018. https://www.unrealengine.com/en-US/blog/epic-games-acquires-kamu-game-security-and-player-services-company. Accessed 19 Sept 2019

Download references

Acknowledgments

This work is financed by National Funds through the Portuguese funding agency, FCT - Fundação para a Ciência e a Tecnologia, within project UIDB/50014/2020. This work of João S. Resende was supported by Fundação para a Ciência e Tecnologia (FCT), Portugal, PD/BD/128149/2016. This work of André Brandão is also financed by National Funds through the Portuguese funding agency, FCT - Fundação para a Ciência e a Tecnologia within project CMU/CS/0042/2017 and by the EU H2020-SU-ICT-03-2018 Project No. 830929 CyberSec4Europe (cybersec4europe.eu).

Author information

Authors and Affiliations

  1. CRACS/University of Porto, Porto, Portugal

    André Brandão, João S. Resende & Rolando Martins

Authors
  1. André Brandão
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. João S. Resende
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Rolando Martins
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to André Brandão .

Editor information

Editors and Affiliations

  1. School of Engineering, University of the Aegean, Karlovassi, Samos, Greece

    Stefanos Gritzalis

  2. SBA Research, Vienna, Wien, Austria

    Edgar R. Weippl

  3. Johannes Kepler University of Linz, Linz, Oberösterreich, Austria

    Gabriele Kotsis

  4. Vienna University of Technology, Vienna, Wien, Austria

    A Min Tjoa

  5. Johannes Kepler University of Linz, Linz, Oberösterreich, Austria

    Ismail Khalil

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Brandão, A., Resende, J.S., Martins, R. (2020). Employment of Secure Enclaves in Cheat Detection Hardening. In: Gritzalis, S., Weippl, E.R., Kotsis, G., Tjoa, A.M., Khalil, I. (eds) Trust, Privacy and Security in Digital Business. TrustBus 2020. Lecture Notes in Computer Science(), vol 12395. Springer, Cham. https://doi.org/10.1007/978-3-030-58986-8_4

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-58986-8_4

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-58985-1

  • Online ISBN: 978-3-030-58986-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation