⭐✏️ BA: Se­cu­ri­ty Ana­ly­sis of the Web Con­fe­ren­cing Sys­tem Big­Blue­But­ton

Abstract:

Web-based conferencing systems are widely used, but security claims rarely backed up by thorough analysis. In this thesis, we audit server components of BigBlueButton, a conferencing system for distance education, for resilience against malicious clients. Our evaluation finds a total of 45 security vulnerabilities affecting BigBlueButton 2.3.3. These include broken access control, NoSQL injections, and multiple vulnerabilities that allow for eavesdropping.

Mehr zum Thema

11.10.2022

Two of Our Stu­dents are Awar­ded “CAST För­der­preis IT-Si­cher­heit 2022”

Mehr erfahren