{"title":"WhatsApp Web QR code: Auto-change Frequency Analysis","authors":"Lalatendu Bidyadhara Kumar Barik, Nikita Barik","doi":"10.5339/jist.2021.10","DOIUrl":null,"url":null,"abstract":"\n Purpose: The purpose of the study is to investigate the behavioral aspects of WhatsApp Web QR code and its impact on privacy of users. Background: WhatsApp is the fastest growing private online chat network for encrypted messaging. The role of QR code encryption in WhatsApp Web interface provide users with the ability to secure communication. It remains uncertain if the same trends occur in the encryption protocol. To strengthen user’s security and privacy, the cryptographic algorithm has been modified to protect from the attackers. Methodology: The research was performed over a span of four months (July-October 2020) on experimental basis in India. All the observations and measurements were carried out using Mozilla Firefox web browser and the open source screen recording tool i.e. CamStudio. QR code decoding was performed in the ZXing decoder environment. Findings: This research examined the auto-change scale factor of the QR code in WhatsApp Web (A browser-based application of WhatsApp). The findings revealed that the QR code auto-change factor is 20 seconds while the QR code reload factor is 120 seconds. Evaluations showed that six consecutive QR code variations take place over each QR code reload period. Upon decoding the QR code of each set of QR code reload period, we observed that the parsed result of all QR codes were different. Each set of QR code reload period has six unique QR codes; even that doesn’t match the QR codes of the subsequent sets. Randomly changing QR codes are due to cryptographic algorithm that provides users for secure authentication and end-to-end-encryption.","PeriodicalId":16179,"journal":{"name":"Journal of Information Studies & Technology (JIS&T)","volume":"4 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2021-09-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Information Studies & Technology (JIS&T)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.5339/jist.2021.10","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Purpose: The purpose of the study is to investigate the behavioral aspects of WhatsApp Web QR code and its impact on privacy of users. Background: WhatsApp is the fastest growing private online chat network for encrypted messaging. The role of QR code encryption in WhatsApp Web interface provide users with the ability to secure communication. It remains uncertain if the same trends occur in the encryption protocol. To strengthen user’s security and privacy, the cryptographic algorithm has been modified to protect from the attackers. Methodology: The research was performed over a span of four months (July-October 2020) on experimental basis in India. All the observations and measurements were carried out using Mozilla Firefox web browser and the open source screen recording tool i.e. CamStudio. QR code decoding was performed in the ZXing decoder environment. Findings: This research examined the auto-change scale factor of the QR code in WhatsApp Web (A browser-based application of WhatsApp). The findings revealed that the QR code auto-change factor is 20 seconds while the QR code reload factor is 120 seconds. Evaluations showed that six consecutive QR code variations take place over each QR code reload period. Upon decoding the QR code of each set of QR code reload period, we observed that the parsed result of all QR codes were different. Each set of QR code reload period has six unique QR codes; even that doesn’t match the QR codes of the subsequent sets. Randomly changing QR codes are due to cryptographic algorithm that provides users for secure authentication and end-to-end-encryption.
目的:本研究的目的是调查WhatsApp Web QR码的行为方面及其对用户隐私的影响。背景:WhatsApp是增长最快的加密消息私人在线聊天网络。QR码加密在WhatsApp Web界面中的作用为用户提供了安全通信的能力。目前还不确定加密协议中是否会出现同样的趋势。为了加强用户的安全性和隐私性,对加密算法进行了修改,以防止攻击者的攻击。方法:该研究在印度的实验基础上进行了四个月(2020年7月至10月)。所有的观察和测量都是使用Mozilla Firefox网络浏览器和开源屏幕记录工具(即CamStudio)进行的。在ZXing解码器环境下进行二维码解码。研究结果:本研究考察了WhatsApp Web (WhatsApp基于浏览器的应用程序)中二维码的自动更改比例因子。研究结果显示,QR码的自动更改时间为20秒,而重新加载时间为120秒。评估显示,在每次重新加载QR码期间,会发生6个连续的QR码变化。在对每一组QR码重载周期的QR码进行解码后,我们发现所有QR码的解析结果都是不同的。每组QR码重载周期有6个唯一的QR码;即便如此,这也与后面几组的QR码不匹配。随机变化的QR码是由于为用户提供安全认证和端到端加密的加密算法。