Empirical Analysis of Internet Identity Misuse: Case Study of South Korean Real Name System

Yunsang Oh; Takashi Obi; Joong-sun Lee; Hiroyuki Suzuki; Nagaaki Ohyama

doi:10.1145/1866855.1866863

Publication Information

Title

Japanese:
English:	Empirical Analysis of Internet Identity Misuse: Case Study of South Korean Real Name System

Author

Japanese:	呉潤相, 小尾高史, 李中淳, 鈴木裕之, 大山永昭.
English:	Yunsang Oh, Takashi Obi, Joong-sun Lee, Hiroyuki Suzuki, Nagaaki Ohyama.

Language

English

Journal/Book name

Japanese:
English:	Proceedings of the 6th ACM workshop on Digital identity management

Volume, Number, Page

Page 27-34

Published date

Oct. 2010

Publisher

Japanese:
English:	ACM

Conference name

Japanese:
English:	The Sixth ACM Workshop on Digital Identity Management

Conference site

Japanese:
English:	Chicago, IL, USA.

Official URL

http://doi.acm.org/10.1145/1866855.1866863

DOI

https://doi.org/10.1145/1866855.1866863

Abstract

Some governments like South Korea require the submission of a valid national identification number in order for users to register an account in Web services. Unfortunately, this validation system can cause a big privacy threat. Recently in South Korea, identifiers of about 2/5 Korean population were leaked by some hacking accidents. In order to lower the chances of forgery and privacy invasion using exposed information, Korean government introduced an alternative identifier system. However, we are concerned that neither old nor new identifer systems are safe against a phishing attack. In this paper, we empirically analyze the vulnerability of the alternative system. We conducted a real phishing attack experiment to complete our analysis.

Home

Search

Support

About T2R2

Related Links

Publication Information