{"title":"从安全和安保角度看土耳其的基本追踪应用","authors":"Ayşe Sayin, Mehmet Tahir Sandikkaya","doi":"10.2339/politeknik.1118577","DOIUrl":null,"url":null,"abstract":"Contact tracing applications may lead to security and privacy concerns. Turkey’s contact tracing application (Hayat Eve Sığar, abbreviated as HES), which is introduced during COVID-19 pandemic, have not been covered yet for its security and privacy features. Comparison of HES with the existing cutting-edge contact tracing approaches could be used to analyse and determine the features of HES. Comparison indicated the undocumented security and privacy features of HES and revealed a set of vulnerabilities that could cause serious attacks. Mitigation techniques against vulnerabilities are proposed but current HES application includes serious attacks that could be performed by an insider or an outsider. The analysis emphasized to be considered in the design of similar applications that will emerge in the future.","PeriodicalId":44937,"journal":{"name":"Journal of Polytechnic-Politeknik Dergisi","volume":" ","pages":""},"PeriodicalIF":0.4000,"publicationDate":"2023-06-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Güvenlik ve Mahremiyet Perspektifinden Türkiye’nin Temaslı Takip Uygulaması\",\"authors\":\"Ayşe Sayin, Mehmet Tahir Sandikkaya\",\"doi\":\"10.2339/politeknik.1118577\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Contact tracing applications may lead to security and privacy concerns. Turkey’s contact tracing application (Hayat Eve Sığar, abbreviated as HES), which is introduced during COVID-19 pandemic, have not been covered yet for its security and privacy features. Comparison of HES with the existing cutting-edge contact tracing approaches could be used to analyse and determine the features of HES. Comparison indicated the undocumented security and privacy features of HES and revealed a set of vulnerabilities that could cause serious attacks. Mitigation techniques against vulnerabilities are proposed but current HES application includes serious attacks that could be performed by an insider or an outsider. The analysis emphasized to be considered in the design of similar applications that will emerge in the future.\",\"PeriodicalId\":44937,\"journal\":{\"name\":\"Journal of Polytechnic-Politeknik Dergisi\",\"volume\":\" \",\"pages\":\"\"},\"PeriodicalIF\":0.4000,\"publicationDate\":\"2023-06-21\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Polytechnic-Politeknik Dergisi\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.2339/politeknik.1118577\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q4\",\"JCRName\":\"ENGINEERING, MULTIDISCIPLINARY\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Polytechnic-Politeknik Dergisi","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.2339/politeknik.1118577","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"ENGINEERING, MULTIDISCIPLINARY","Score":null,"Total":0}
引用次数: 0
摘要
联系人追踪应用程序可能会导致安全和隐私问题。土耳其在新冠肺炎大流行期间推出的接触者追踪应用程序(Hayat Eve sığar,缩写为HES)的安全和隐私功能尚未涵盖。HES与现有尖端接触者追踪方法的比较可用于分析和确定HES的特征。比较表明,HES具有未记录的安全和隐私功能,并揭示了一系列可能导致严重攻击的漏洞。提出了针对漏洞的缓解技术,但目前的HES应用程序包括可能由内部人员或外部人员执行的严重攻击。该分析强调在未来出现的类似应用程序的设计中要考虑。
Güvenlik ve Mahremiyet Perspektifinden Türkiye’nin Temaslı Takip Uygulaması
Contact tracing applications may lead to security and privacy concerns. Turkey’s contact tracing application (Hayat Eve Sığar, abbreviated as HES), which is introduced during COVID-19 pandemic, have not been covered yet for its security and privacy features. Comparison of HES with the existing cutting-edge contact tracing approaches could be used to analyse and determine the features of HES. Comparison indicated the undocumented security and privacy features of HES and revealed a set of vulnerabilities that could cause serious attacks. Mitigation techniques against vulnerabilities are proposed but current HES application includes serious attacks that could be performed by an insider or an outsider. The analysis emphasized to be considered in the design of similar applications that will emerge in the future.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
