IEEE Access (Jan 2024)
Integrity Check Value, Are You a Spy? Information Leakage Attack on Archive Formats
Abstract
Existing archive formats provide encryption to protect data, but vulnerabilities in these formats can lead to data leakage. This study proposes a novel attack to leak original data from encrypted archive files by exploiting the integrity check value and unencrypted metadata. The proposed attack obtains the size of the original data and the integrity check value by parsing the encrypted file, and identifies the original data by leveraging password-cracking techniques. Experiments with seven archive formats and seven utilities demonstrate the effectiveness of our proposed attack, successfully leaking data from 11 out of 20 encrypted files. This research uncovers vulnerabilities in existing archive formats and contributes to the design of more secure archiving systems.
Keywords