bth.se
Planned maintenance
A system upgrade is planned for 13/12-2023, at 12:00-13:00. During this time DiVA will be unavailable.
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Unsecured sessions with ICQ: applying forensic computing
Blekinge Institute of Technology, Department of Software Engineering and Computer Science.
2003 (English)Independent thesis Advanced level (degree of Master (One Year))Student thesis
Abstract [en]

Digital evidence is becoming more and more frequent and important in investigations carried out by the police. To make the correct judgements, the police force needs to know what one can do with ICQ and in what ways it can be exploited. This thesis aims to point out weaknesses in ICQ that can aid the police in their work. But these weaknesses can not only be used by the police, also crackers can perform malicious acts with them. Therefore, I investigated if the use of ICQ resulted in non-secure sessions. To investigate ICQ’s security, I divided a session into an authentication phase, sending of messages, and the protection of stored messages in a history file. While investigating ICQ, I sniffed its Internet traffic and monitored files on the computer’s hard drive with MD5 checksums. I have investigated the following three ICQ applications: ICQ Pro 2003a, ICQ2Go and the Linux clone Licq. The result of the entire investigation showed that ICQ had a non-secured authentication phase, non-secured messages and no protection for stored messages. From these results the main conclusion was derived: The use of ICQ resulted in non-secure instant messaging sessions. Your ICQ account can be hijacked and another person can impersonate you and send messages that you dislike. Also, your messages can be intercepted on the Internet and their content can be read. If your computer is compromised, all your previous messages on ICQ Pro 2003a and Licq can be read.
Place, publisher, year, edition, pages
2003. , p. 28
Keywords [en]
ICQ, Instant Messaging, Forensic computing, Digital evidence
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:bth-4724Local ID: oai:bth.se:arkivex6B53532438D649DDC1256D3C0070857AOAI: oai:DiVA.org:bth-4724DiVA, id: diva2:832072
Uppsok
Technology
Supervisors
Note
Martin Kling Fältv 17 SE-291 39 Kristianstad martinkling@hotmail.com 0733691999Available from: 2015-04-22 Created: 2003-06-05 Last updated: 2018-01-11Bibliographically approved

Open Access in DiVA

fulltext(1009 kB)4115 downloads
File information
File name FULLTEXT01.pdfFile size 1009 kBChecksum SHA-512
1bee4a258c040d3b4e04d4cd4c62178b238c125a375ff327c89beab256ba771563b514094fd941bd362bd0b61baa6babfe6b8426a09ab7d17d5a2ca01ad602b7
Type fulltextMimetype application/pdf

By organisation
Department of Software Engineering and Computer Science
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 4115 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 325 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.40.0
|
WCAG
|
BTH Library
|
Publish/Register
|
How to publish/register
|
Diva portal
|
SwePub
|
Uppsök