research-article

Open access

Ready Raider One: Exploring the Misuse of Cloud Gaming Services

Authors:

Haining WangAuthors Info & Claims

CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security

Pages 1993 - 2007

https://doi.org/10.1145/3548606.3560647

Published: 07 November 2022 Publication History

Abstract

Cloud gaming has become an emerging computing paradigm in recent years, allowing computer games to offload complex graphics and logic computation to the cloud. To deliver a smooth and high-quality gaming experience, cloud gaming services have invested abundant computing resources in the cloud, including adequate CPUs, top-tier GPUs, and high-bandwidth Internet connections. Unfortunately, the abundant computing resources offered by cloud gaming are vulnerable to misuse and exploitation for malicious purposes. In this paper, we present an in-depth study on security vulnerabilities in cloud gaming services. Specifically, we reveal that adversaries can purposely inject malicious programs/URLs into the cloud gaming services via game mods. Using the provided features such as in-game subroutines, game launch options, and built-in browsers, adversaries are able to execute the injected malicious programs/URLs in cloud gaming services. To demonstrate that such vulnerabilities pose a serious threat, we conduct four proof-of-concept attacks on cloud gaming services. Two of them are to abuse the CPUs and GPUs in cloud gaming services to mine cryptocurrencies with attractive profits and train machine learning models at a trivial cost. The other two are to exploit the high-bandwidth connections provided by cloud gaming for malicious Command & Control and censorship circumvention. Finally, we present several countermeasures for cloud gaming services to protect their valuable assets from malicious exploitation.

References

[1]

2018. Valve removes Steam game after allegations of hidden cryptocurrency miner. https://arstechnica.com/gaming/2018/07/valve-removes-steam-gameafter-allegations-of-hidden-cryptocurrency-miner/.

[2]

2020. COVID-19 Has Increased Interest in Cloud Gaming Services. https://www.pcmag.com/news/covid-19-has-increased-interest-in-cloudgaming-services.

[3]

2020. Report: Gaming Industry Value To Rise 30%. https://www.forbes.com/ sites/mattgardner1/2020/09/19/gaming-industry-value-200-billion-fortnitemicrotransactions/.

[4]

2021. Cloud Gaming Market - Growth, Trends, COVID-19 Impact, and Forecasts. https://www.reportlinker.com/p06101217/Cloud-Gaming-MarketGrowth-Trends-COVID-19-Impact-and-Forecasts.html.

[5]

2021. GPU Availability and Pricing Update: November 2021. https:// www.techspot.com/article/2369-gpu-pricing-2021-update/.

[6]

2021. Nvidia GeForce Now could be an answer to the GPU shortage. https: //www.techadvisor.com/news/game/geforce-now-gpu-shortage-3803897/.

[7]

2021. Nvidia Is Doubling Down on a Massive Opportunity. https: //www.nasdaq.com/articles/nvidia-is-doubling-down-on-a-massiveopportunity-2021--10--27.

[8]

2021. Random Bans for "Crypto mining". https://forum.shadow.tech/activationaccount-billing-31/random-bans-for-crypto-mining-3382.

[9]

2021. Shadow Cryptocurrency Ban Situation. https://forum.shadow.tech/ activation-account-billing-31/shadow-cryptocurrency-ban-situation-3062.

[10]

2021. Steam just reached 50,000 total games listed. https://www.pcgamesn.com/ steam/total-games.

[11]

2022. Amazon EC2 On-Demand Pricing. https://aws.amazon.com/ec2/pricing/ondemand/.

[12]

2022. Ethereum, Monero Mining Profitability historical chart. https:// bitinfocharts.com/comparison/mining_profitability-eth-xmr.html.

[13]

2022. LoudPlay. https://www.loudplay.ru/.

[14]

2022. ModDB. https://www.moddb.com/.

[15]

2022. Mods on Steam: Community-made Content For Your Favorite Games. https://store.steampowered.com/about/communitymods/.

[16]

2022. Nexus Mods and Community. https://www.nexusmods.com/.

[17]

2022. NiceHash. https://www.nicehash.com/.

[18]

2022. Nvidia Geforce Now. https://www.nvidia.com/geforce-now/.

[19]

2022. Shadow Cloud Computing. https://shadow.tech/.

[20]

2022. Steam. https://store.steampowered.com/.

[21]

2022. Steam Breaks Record For Most Concurrent Users With Nearly 28 Million Players Online. https://www.gamespot.com/articles/steam-breaks-record-formost-concurrent-users-with-nearly-28-million-players-online/1100--6499277/.

[22]

2022. The best gaming PC in 2022. https://www.pcgamer.com/best-gaming-pc/.

[23]

2022. The best gaming PCs in 2022. https://www.tomsguide.com/us/best-gamingpc,review-2219.html.

[24]

2022. Transport Fever 2. https://www.transportfever2.com/.

[25]

2022. Transport Fever 2 Upload a Mod. https://www.transportfever2.com/wiki/ doku.php?id=modding:publishing.

[26]

2022. Unity. https://unity.com/.

[27]

2022. WebMinePool. https://webminepool.com/.

[28]

2022. WireShark. https://www.wireshark.org/.

[29]

Amit Seal Ami, Nathan Cooper, Kaushal Kafle, Kevin Moran, Denys Poshyvanyk, and Adwait Nadkarni. 2022. Why Crypto-detectors Fail: A Systematic Evaluation of Cryptographic Misuse Detection Techniques. In IEEE Symposium on Security and Privacy (S&P).

[30]

Maryam Amiri, Hussein Al Osman, Shervin Shirmohammadi, and Maha Abdallah. 2016. Toward Delay-Efficient Game-Aware Data Centers for Cloud Gaming. ACM Transactions on Multimedia Computing, Communications, and Applications (2016).

[31]

Manos Antonakakis, Tim April, Michael Bailey, Matt Bernhard, Elie Bursztein, Jaime Cochran, Zakir Durumeric, J Alex Halderman, Luca Invernizzi, Michalis Kallitsis, et al. 2017. Understanding the Mirai Botnet. In USENIX Security Symposium.

Digital Library

[32]

Manos Antonakakis, Roberto Perdisci, Yacin Nadji, Nikolaos Vasiloglou, Saeed Abu-Nimeh, Wenke Lee, and David Dagon. 2012. From Throw-Away Traffic to Bots: Detecting the Rise of DGA-Based Malware. In USENIX Security Symposium.

[33]

Weikang Bian, Wei Meng, and Mingxue Zhang. 2020. MineThrottle: Defending against Wasm In-Browser Cryptojacking. In Proceedings of the Web Conference (WWW).

Digital Library

[34]

Hugo LJ Bijmans, Tim M Booij, and Christian Doerr. 2019. Inadvertently Making Cyber Criminals Rich: A Comprehensive Study of Cryptojacking Campaigns at Internet Scale. In USENIX Security Symposium.

[35]

Hugo LJ Bijmans, Tim M Booij, and Christian Doerr. 2019. Just the Tip of the Iceberg: Internet-Scale Exploitation of Routers for Cryptojacking. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[36]

Wei Cai, Min Chen, and Victor CM Leung. 2014. Toward Gaming as a Service. IEEE Internet Computing (2014).

[37]

Michele Campobasso and Luca Allodi. 2020. Impersonation-as-a-Service: Characterizing the Emerging Criminal Infrastructure for User Impersonation at Scale. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[38]

Domhnall Carlin, Jonah Burgess, Philip O'Kane, and Sakir Sezer. 2019. You Could Be Mine(d): The Rise of Cryptojacking. IEEE Security & Privacy (2019).

[39]

Mark Claypool and David Finkel. 2014. The Effects of Latency on Player Performance in Cloud-based Games. In Annual Workshop on Network and Systems Support for Games.

[40]

Mark Claypool, David Finkel, Alexander Grant, and Michael Solano. 2012. Thin to Win? Network Performance Analysis of the OnLive Thin Client Game System. In Annual Workshop on Network and Systems Support for Games.

[41]

Andrea Di Domenico, Gianluca Perna, Martino Trevisan, Luca Vassio, and Danilo Giordano. 2021. A Network Analysis on Cloud Gaming: Stadia, GeForce Now and PSNow. Network (2021).

[42]

Lucas Dixon, Thomas Ristenpart, and Thomas Shrimpton. 2016. Network Traffic Obfuscation and Automated Internet Censorship. IEEE Security & Privacy (2016).

Digital Library

[43]

Yucong Duan, Guohua Fu, Nianjun Zhou, Xiaobing Sun, Nanjangud C Narendra, and Bo Hu. 2015. Everything as a Service (XaaS) on the Cloud: Origins, Current and Future Trends. In IEEE International Conference on Cloud Computing (CLOUD).

[44]

Xing Gao, Zhang Xu, Haining Wang, Li Li, and Xiaorui Wang. 2018. Reduced Cooling Redundancy: A New Security Vulnerability in a Hot Data Center. In ISOC Network and Distributed System Security Symposium (NDSS).

[45]

Chris Grier, Lucas Ballard, Juan Caballero, Neha Chachra, Christian J Dietrich, Kirill Levchenko, Panayiotis Mavrommatis, Damon McCoy, Antonio Nappa, Andreas Pitsillidis, et al. 2012. Manufacturing Compromise: The Emergence of Exploit-as-a-Service. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[46]

Geng Hong, Zhemin Yang, Sen Yang, Lei Zhang, Yuhong Nan, Zhibo Zhang, Min Yang, Yuan Zhang, Zhiyun Qian, and Haixin Duan. 2018. How You Get Shot in the Back: A Systematical Study about Cryptojacking in the Real World. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[47]

Hua-Jun Hong, De-Yu Chen, Chun-Ying Huang, Kuan-Ta Chen, and Cheng-Hsin Hsu. 2014. Placing Virtual Machines to Optimize Cloud Gaming Experience. IEEE Transactions on Cloud Computing (2014).

[48]

M Shamim Hossain, Ghulam Muhammad, Biao Song, Mohammad Mehedi Hassan, Abdulhameed Alelaiwi, and Atif Alamri. 2015. Audio-Visual Emotion-Aware Cloud Gaming Framework. IEEE Transactions on Circuits and Systems for Video Technology (2015).

[49]

Chun-Ying Huang, Kuan-Ta Chen, De-Yu Chen, Hwai-Jung Hsu, and Cheng-Hsin Hsu. 2014. GamingAnywhere - The First Open Source Cloud Gaming System. ACM Transactions on Multimedia Computing, Communications, and Applications (2014).

[50]

Chun-Ying Huang, Cheng-Hsin Hsu, Yu-Chun Chang, and Kuan-Ta Chen. 2013. GamingAnywhere: An Open Cloud Gaming System. In Proceedings of ACM Multimedia Systems conference (MMSys).

Digital Library

[51]

Qun Huang and Patrick PC Lee. 2013. An Experimental Study of Cascading Performance Interference in a Virtualized Environment. ACM SIGMETRICS Performance Evaluation Review (2013).

[52]

Mohammad A Islam and Shaolei Ren. 2018. Ohm's Law in Data Centers: A Voltage Side Channel for Timing Power Attacks. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[53]

Mohammad A Islam, Shaolei Ren, and Adam Wierman. 2017. Exploiting a Thermal Side Channel for Power Attacks in Multi-Tenant Data Centers. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[54]

Mohammad A Islam, Luting Yang, Kiran Ranganath, and Shaolei Ren. 2018. Why Some Like It Loud: Timing Power Attacks in Multi-tenant Data Centers Using an Acoustic Side Channel. Proceedings of the ACM on Measurement and Analysis of Computing Systems (SIGMETRICS).

Digital Library

[55]

Lin Jin, Shuai Hao, Haining Wang, and Chase Cotton. 2022. Understanding the Practices of Global Censorship through Accurate, End-to-End Measurements. In Proceedings of the ACM on Measurement and Analysis of Computing Systems (SIGMETRICS).

[56]

Beom Heyn Kim and David Lie. 2015. Caelus: Verifying the Consistency of Cloud Services with Battery-Powered Devices. In IEEE Symposium on Security and Privacy (S&P).

[57]

Radhesh Krishnan Konoth, Emanuele Vineti, Veelasha Moonsamy, Martina Lindorfer, Christopher Kruegel, Herbert Bos, and Giovanni Vigna. 2018. MineSweeper: An In-depth Look into Drive-by Cryptocurrency Mining and Its Defense. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[58]

Kyungmin Lee, David Chu, Eduardo Cuervo, Johannes Kopf, Yury Degtyarev, Sergey Grizan, Alec Wolman, and Jason Flinn. 2015. Outatime: Using Speculation to Enable Low-Latency Continuous Interaction for Mobile Cloud Gaming. In ACM International Conference on Mobile Systems, Applications, and Services (MobiSys).

Digital Library

[59]

Yeng-Ting Lee, Kuan-Ta Chen, Han-I Su, and Chin-Laung Lei. 2012. Are All Games Equally Cloud-Gaming-Friendly? An Electromyographic Approach. In Annual Workshop on Network and Systems Support for Games.

[60]

Xiaofei Liao, Li Lin, Guang Tan, Hai Jin, Xiaobin Yang, Wei Zhang, and Bo Li. 2015. LiveRender: A Cloud Gaming System Based on Compressed Graphics Streaming. IEEE/ACM Transactions on Networking (2015).

[61]

Yuhua Lin and Haiying Shen. 2016. CloudFog: Leveraging Fog to Extend Cloud Gaming for Thin-Client MMOG with High Quality of Service. IEEE Transactions on Parallel and Distributed Systems (2016).

[62]

Ramya Jayaram Masti, Devendra Rai, Aanjhan Ranganathan, Christian Müller, Lothar Thiele, and Srdjan Capkun. 2015. Thermal Covert Channels on Multi-core Platforms. In USENIX Security Symposium.

[63]

Faraz Naseem Naseem, Ahmet Aris, Leonardo Babun, Ege Tekiner, and A Selcuk Uluagac. 2021. MINOS: A Lightweight Real-Time Cryptojacking Detection System. In ISOC Network and Distributed System Security Symposium (NDSS).

[64]

Arto Ojala and Pasi Tyrvainen. 2011. Developing Cloud Business Models: A Case Study on Cloud Gaming. IEEE Software (2011).

[65]

Thomas Ristenpart, Eran Tromer, Hovav Shacham, and Stefan Savage. 2009. Hey, You, Get Off of My Cloud: Exploring Information Leakage in Third-Party Compute Clouds. In ACM Conference on Computer and Communications Security (CCS).

[66]

Philip E Ross. 2009. Cloud Computing's Killer App: Gaming. IEEE Spectrum (2009).

[67]

Zhihui Shao, Mohammad A Islam, and Shaolei Ren. 2019. A First Look at Thermal Attacks in Multi-Tenant Data Centers. ACM SIGMETRICS Performance Evaluation Review (2019).

[68]

Brett Stone-Gross, Marco Cova, Lorenzo Cavallaro, Bob Gilbert, Martin Szydlowski, Richard Kemmerer, Christopher Kruegel, and Giovanni Vigna. 2009. Your Botnet is My Botnet: Analysis of a Botnet Takeover. In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[69]

Dean Sullivan, Orlando Arias, Travis Meade, and Yier Jin. 2018. Microarchitectural Minefields: 4K-Aliasing Covert Channel and Multi-Tenant Detection in IaaS Clouds. In ISOC Network and Distributed System Security Symposium (NDSS).

[70]

Mirko Suznjevic, Justus Beyer, Lea Skorin-Kapov, Sebastian Moller, and Nikola Sorsa. 2014. Towards Understanding the Relationship Between Game Type and Network Traffic for Cloud Gaming. In IEEE International Conference on Multimedia and Expo Workshops (ICMEW).

[71]

Ege Tekiner, Abbas Acar, A Selcuk Uluagac, Engin Kirda, and Ali Aydin Selcuk. 2021. SoK: Cryptojacking Malware. In IEEE European Symposium on Security and Privacy (EuroS&P).

[72]

Venkatanathan Varadarajan, Thawan Kooburat, Benjamin Farley, Thomas Ristenpart, and Michael M Swift. 2012. Resource-Freeing Attacks: Improve Your Cloud Performance (at Your Neighbor's Expense). In ACM Conference on Computer and Communications Security (CCS).

Digital Library

[73]

Zhenyu Wu, Zhang Xu, and Haining Wang. 2012. Whispers in the HyperSpace: High-Bandwidth and Reliable Covert Channel Attacks Inside the Cloud. In USENIX Security Symposium.

[74]

Haitao Xu, Daiping Liu, Haining Wang, and Angelos Stavrou. 2015. E-commerce Reputation Manipulation: The Emergence of Reputation-Escalation-as-a-Service. In Proceedings of the Web Conference (WWW).

Digital Library

[75]

Zhang Xu, Haining Wang, Zichen Xu, and Xiaorui Wang. 2014. Power Attack: An Increasing Threat to Data Centers. In ISOC Network and Distributed System Security Symposium (NDSS).

[76]

Roy D Yates, Mehrnaz Tavan, Yi Hu, and Dipankar Raychaudhuri. 2017. Timely Cloud Gaming. In IEEE International Conference on Computer Communications (INFOCOM).

[77]

Anil Yelam, Shibani Subbareddy, Keerthana Ganesan, Stefan Savage, and Ariana Mirian. 2021. CoResident Evil: Covert Communication In The Cloud With Lambdas. In Proceedings of the Web Conference (WWW).

Digital Library

[78]

Yinqian Zhang, Ari Juels, Alina Oprea, and Michael K Reiter. 2011. HomeAlone: Co-residency Detection in the Cloud via Side-Channel Analysis. In IEEE Symposium on Security and Privacy (S&P).

Digital Library

[79]

Yinqian Zhang, Ari Juels, Michael K Reiter, and Thomas Ristenpart. 2012. CrossVM Side Channels and Their Use to Extract Private Keys. In ACM Conference on Computer and Communications Security (CCS).

[80]

Yinqian Zhang, Ari Juels, Michael K Reiter, and Thomas Ristenpart. 2014. CrossTenant Side-Channel Attacks in PaaS Clouds. In ACM Conference on Computer and Communications Security (CCS).

Cited By

He ZLi ZQiao ALuo XZhang XChen TSong SLiu DNiu W(2024)Nurgle: Exacerbating Resource Consumption in Blockchain State Storage via MPT Manipulation2024 IEEE Symposium on Security and Privacy (SP)10.1109/SP54263.2024.00125(2180-2197)Online publication date: 19-May-2024
https://doi.org/10.1109/SP54263.2024.00125
Joseph OElmalech AHajaj C(2023)Detecting Parallel Covert Data Transmission Channels in Video Conferencing Using Machine LearningElectronics10.3390/electronics1205109112:5(1091)Online publication date: 22-Feb-2023
https://doi.org/10.3390/electronics12051091

Index Terms

Ready Raider One: Exploring the Misuse of Cloud Gaming Services
1. Networks
  1. Network services
    1. Cloud computing
2. Security and privacy

Recommendations

Tomb Raider: The Last Revelation
Dissecting the protocol and network traffic of the OnLive cloud gaming platform

Cloud gaming is a new paradigm that is envisaged to play a pivotal role in the video game industry in forthcoming years. Cloud gaming, or gaming on demand, is a type of online gaming that allows on-demand streaming of game content onto non-specialised ...
Server Allocation for Multiplayer Cloud Gaming
MM '16: Proceedings of the 24th ACM international conference on Multimedia

Advances in cloud computing and GPU virtualization are allowing the game industry to move into a cloud gaming era. While shifting standalone video games to the cloud gaming mode is straightforward, adapting multiplayer online games to the cloud gaming ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security

November 2022

3598 pages

ISBN:9781450394505

DOI:10.1145/3548606

General Chairs:
Heng Yin
University of California, Riverside
,
Angelos Stavrou
Virginia Tech
,
Program Chairs:
Cas Cremers
CISPA Helmholtz Center for Information Security
,
Elaine Shi
Carnegie Mellon University

Copyright © 2022 Owner/Author.

This work is licensed under a Creative Commons Attribution International 4.0 License.

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 07 November 2022

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

Conference

CCS '22

Sponsor:

SIGSAC

CCS '22: 2022 ACM SIGSAC Conference on Computer and Communications Security

November 7 - 11, 2022

CA, Los Angeles, USA

Acceptance Rates

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '24

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
1,090
Total Downloads

Downloads (Last 12 months)602
Downloads (Last 6 weeks)62

Reflects downloads up to 03 Oct 2024

Other Metrics

View Author Metrics

Citations

Cited By

He ZLi ZQiao ALuo XZhang XChen TSong SLiu DNiu W(2024)Nurgle: Exacerbating Resource Consumption in Blockchain State Storage via MPT Manipulation2024 IEEE Symposium on Security and Privacy (SP)10.1109/SP54263.2024.00125(2180-2197)Online publication date: 19-May-2024
https://doi.org/10.1109/SP54263.2024.00125
Joseph OElmalech AHajaj C(2023)Detecting Parallel Covert Data Transmission Channels in Video Conferencing Using Machine LearningElectronics10.3390/electronics1205109112:5(1091)Online publication date: 22-Feb-2023
https://doi.org/10.3390/electronics12051091

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Media

Figures

Other

Tables

View Table of Contents