Phoning home

Phoning home

Phoning home, in computing, refers to an act of client to server communication where a client device or client application software reports its location on a network, the currently logged on user, or any other information to a server computer. Generally the user and/or proprietor of the device or software do not want this kind of communication behind his back.

Phoning home may be useful for the proprietor in tracking a missing or stolen computer. This type of phoning home is frequently used on mobile computers at corporations. It typically involves a software agent which is difficult to detect or remove.[1] However, there are malicious types of phoning home such as surreptitious communication between applications or hardware installed at end-user sites and their manufacturers or developers. The traffic may be encrypted to make it difficult or impractical for the end-user to ascertain what data is being transmitted.[2][citation needed]

Contents

Non-illegal phoning home

There are some uses for the phoning home practice that are legal in some countries, for example:

Phoning home could be for purposes of access control, such as transmitting an authorization key. This is done with the Adobe Creative Suite. Each time one of the programs is opened, it phones home with the serial number. If the serial number is listed as being already in use, or a fake, then the program will present the user with the option of inputting the correct serial number. If the user refuses, the next time the program loads, it will operate in trial mode until a valid serial number has been input. However, the method can be thwarted by either disabling the internet connection when starting the program or adding a firewall or Hosts file rule to prevent the program from communicating with the verification server.

Phoning home could also be for marketing purposes, such as the "Sony BMG Rootkit", which transmits a hash of the currently playing CD back to Sony, or a digital video recorder (DVR) reporting on viewing habits. High-end computing systems such as mainframes have had 'phone home' capabilities for many years, to alert the manufacturer of hardware problems with the mainframes or disk storage subsystems (this enables repair or maintenance to be performed quickly and even proactively under the maintenance contract).[3]

Aside from malicious software phoning home, phoning home may be done to track computer assets—especially mobile computers. One of the most well-known software applications that leverages phoning home for tracking is Absolute Software's CompuTrace. This software employs an agent which calls into an Absolute-managed server on regular intervals with information companies or the police can use to locate a missing computer.[4]

More phone-home uses

Other than phoning to the home (website) of the applications' authors, applications can allow their documents to do the same thing, thus allowing the documents' authors to trigger (essentially anonymous) tracking by setting up a connection which is intended to be logged. Such behavior, for example, caused v7.0.5 of Adobe Reader to add an interactive notification whenever a PDF file tries phoning (to its author's) home. [5]

HTML e-mail messages can can easily implement a form of "phoning home". Images and other files required by the e-mail body may generate extra requests to a remote web server before they can be viewed. The IP address of the user's own computer is sent to the web server (an unavoidable process if a reply is required), and further details embedded in request URLs can further identify the user by e-mail address, marketing campaign etc. Such extra page resources have been referred to as "web bugs" and they can also be used to track off-line viewing and other uses of ordinary web pages. So as to prevent the activation of these requests, many e-mail clients do not load images or other web resources when HTML e-mails are first viewed, giving users the option to load the images only if the e-mail is from a trusted source.

Malicious phoning home

There are many Malware applications that "phone home" to gather and store information about a person's machine. For example, the Pushdo Trojan[6] shows the new complexity of modern Malware applications and the phoning home capabilities of these systems. Pushdo has 421 executables available to be sent to an infected Windows client.

See also

References

  1. ^ Technology Meetings Website - http://technologymeetings.com/ar/meetings_catch_laptop_thief/index.htm
  2. ^ ZoneAlarm phones home, Apple throws Intel a bone http://www.infoworld.com/article/06/01/13/73792_03OPcringley_1.html
  3. ^ IBM EServer and ZSeries and S/390 Servers - http://books.google.com/books?id=NtHhpIjIFMEC&pg=PA9&lpg=PA9&dq=%22phone+home%22+mainframes&source=bl&ots=iXj04sMVQ6&sig=L3_rOl6Xsik0Bi4DTigwnNb2DwI&hl=en&sa=X&oi=book_result&resnum=4&ct=result#PPA9,M1
  4. ^ Absolute Software's website: http://www.absolute.com/
  5. ^ "New features and issues addressed in the Acrobat 7.0.5 Update (Acrobat and Adobe Reader for Windows and Mac OS)". Adobe Systems. 2008-05-02. Archived from the original on 2008-05-29. http://web.archive.org/web/20080529205940/http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=332208. Retrieved 2008-08-14. "New features: 4. "Phone home" notification enhancements, meaning that when a PDF document attempts to contact an external server for any reason, the end user will be notified via a dialogue box that the author of the file is auditing usage of the file, and be offered the option of continuing." 
  6. ^ Pushdo Trojan - http://www.eweek.com/c/a/Security/Inside-a-Modern-Malware-Distribution-System/

External links


Wikimedia Foundation. 2010.

Игры ⚽ Нужно сделать НИР?

Look at other dictionaries:

  • Phoning Home — Call Home (auch Phone Home oder Phoning Home, engl. „zu Hause anrufen“ oder „nach Hause telefonieren“) bezeichnet die Aktion eines Computer Programms, über das Internet Kontakt zum Hersteller bzw. zum Server des Herstellers aufzunehmen. Der… …   Deutsch Wikipedia

  • Call Home — (auch Phone Home oder Phoning Home, engl. „zu Hause anrufen“ oder „nach Hause telefonieren“) bezeichnet die Aktion eines Computer Programms, über das Internet Kontakt zum Hersteller bzw. zum Server des Herstellers aufzunehmen. Der Begriff… …   Deutsch Wikipedia

  • Call home — (auch Phone Home oder Phoning Home, engl. „zu Hause anrufen“ oder „nach Hause telefonieren“) bezeichnet die Aktion eines Computer Programms, über das Internet Kontakt zum Hersteller bzw. zum Server des Herstellers aufzunehmen. Der Begriff… …   Deutsch Wikipedia

  • Phone Home — Call Home (auch Phone Home oder Phoning Home, engl. „zu Hause anrufen“ oder „nach Hause telefonieren“) bezeichnet die Aktion eines Computer Programms, über das Internet Kontakt zum Hersteller bzw. zum Server des Herstellers aufzunehmen. Der… …   Deutsch Wikipedia

  • J&D's Down Home Enterprises — J D s Down Home Enterprises, also known as J D s Foods, is an American company based in Seattle, Washington known for its bacon related products such as Bacon Salt, Baconnaise, Bacon Lip Balm, BaconLube, BaconPOP, Bacon Ranch and Mmmvelopes. The… …   Wikipedia

  • Spyware — is a type of malware that can be installed on computers, and which collects small pieces of information about users without their knowledge. The presence of spyware is typically hidden from the user, and can be difficult to detect. Typically,… …   Wikipedia

  • Windows Genuine Advantage — Developer(s) Microsoft Stable release 1.9.42.0 / June 26, 2009; 2 years ago (2009 06 26) …   Wikipedia

  • Sony BMG CD copy prevention scandal — The Sony BMG CD copy prevention scandal concerns the copy prevention measures included by Sony BMG on compact discs in 2005. Sony BMG included the Extended Copy Protection (XCP) and MediaMax CD 3 software on music CDs. XCP was put on 52 titles [… …   Wikipedia

  • List of software bugs — Many software bugs are merely annoying or inconvenient but some can have extremely serious consequences either financially or as a threat to human well being. This is a list of the software bugs with the most notable consequences: Space… …   Wikipedia

  • Criticism of Windows XP — For criticism applying to several or all versions of Microsoft Windows, see Criticism of Microsoft Windows. This article is part of a series on Windows XP New features Releases and editions (x64 · Me …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”