Please use this identifier to cite or link to this item: http://dx.doi.org/10.25673/86234
Title: A semi-automated HTTP traffic analysis for online payments for empowering security, forensics and privacy analysis
Author(s): Ezennaya-Gomez, Salatiel
Kiltz, StefanLook up in the Integrated Authority File of the German National Library
Krätzer, Christian
Dittmann, JanaLook up in the Integrated Authority File of the German National Library
Issue Date: 2021
Type: Conference object
Language: English
URN: urn:nbn:de:gbv:ma9:1-1981185920-881860
Subjects: Applied computing
Evidence collection
Storage and analysis
Security and privacy
Economics of security and privacy
Abstract: The paper discusses means to identify potential impacts of data flows on customers’ security, and privacy during online payments. The main objectives of our research are looking into the evolution of cybercrime new trends of online payments and detection, more precisely the usage of mobile phones, and describing methodologies for digital trace identification in data flows for potential online payment fraud. The paper aims to identify potential actions for identity theft while conducting the Reconnaissance step of the kill chain, and documenting a forensic methodology for guidance and further data collection for law enforcement bodies. Moreover, a secondary objective of the paper is to identify, from a user’s perspective, transparency issues of data sharing among involved parties for online payments. We thus declare the transparency analysis as the incident triggering a forensic examination. Hence, we devise a semi-automated traffic analysis approach, based on previous work, to examine data flows, and data exchanged among parties in online payments. For this, the main steps are segmenting traffic generated by the process payment, and other sources, subsequently, identifying data streams in the process. We conduct three tests which include three different payment gateways: PayPal, Klarna-sofort, and Amazon Pay. The experiment setup requires circumventing TLS encryption for the correct identification of forensic data types in TCP/IP traffic, and potential data leaks. However, it requires no extensive expertise in mobile security for its installation. In the results, we identified some important security vulnerabilities from some payment APIs that pose financial and privacy risks to the marketplace’s customers.
URI: https://opendata.uni-halle.de//handle/1981185920/88186
http://dx.doi.org/10.25673/86234
Open Access: Open access publication
License: (CC BY 4.0) Creative Commons Attribution 4.0(CC BY 4.0) Creative Commons Attribution 4.0
Sponsor/Funder: Transformationsvertrag
Appears in Collections:Fakultät für Informatik (OA)

Files in This Item:
File Description SizeFormat 
Ezennaya-Gomez et al._A semi-automated_2021.pdfZweitveröffentlichung1.52 MBAdobe PDFThumbnail
View/Open