Potential vulnerabilities in the authentication mechanism of WhatsApp and Telegram messengers

DOI: 10.31673/2409-7292.2022.040007

Authors

  • Д. І. Рабчун, (Rabchun D. I.) State University of Telecommunications, Kyiv
  • Г. Г. Найман, (Nayman H. G.) State University of Telecommunications, Kyiv
  • Л. В. Костирєв, (Kostyryev L. V.) State University of Telecommunications, Kyiv
  • М. О. Іщук, (Ishchuk M. O.) State University of Telecommunications, Kyiv

DOI:

https://doi.org/10.31673/2409-7292.2022.040007

Abstract

The article examines the main security issues of the popular messengers WhatsApp and Telegram, investigates the structure and the possibility of penetrating the system based on the use of the vulnerability of the SS7 protocol. It was concluded that two-factor authentication is necessary.

Keywords: messenger, authentication, WhatsApp, Telegram, SS7 protocol.

References
1. Скороход В. Визначення засобів розробки чат-бота «помічник абітурієнта» для сучасних месенджерів. – 2017.
2. Seth Rosenberg. How To Build Bots for Messenger [online]. Fa- cebook; URL: https://developers.facebook.com/blog/post/2016/04/12/bots-for- messenger/.
3. Claudia-bot-builder [online]. Claudiajs; URL: https://github.com/claudiajs/claudia- bot-builder.
4. Developer Survey Results 2017 [online]. StackOverflow; URL: http://stackoverflow.com/insights/survey/2017.

Downloads

Published

2022-12-15

Issue

No. 4 (2022)

Section

Articles