Server-side verification of client behavior in online games

Server-side verification of client behavior in online games

Online gaming is a lucrative and growing industry but one that is slowed by cheating that compromises the gaming experience and hence drives away players (and revenue). In this paper we develop a technique by which game developers can enable game operators to validate the behavior of game clients as...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:ACM transactions on information and system security 2011-12, Vol.14 (4), p.1-27
Hauptverfasser: Bethea, Darrell, Cochran, Robert A., Reiter, Michael K.
Format: Artikel
Sprache:eng
Schlagworte:
Computer programs
Electronic & video games
Freeware
Messages
On-line systems
Online
Software
Source code
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Online gaming is a lucrative and growing industry but one that is slowed by cheating that compromises the gaming experience and hence drives away players (and revenue). In this paper we develop a technique by which game developers can enable game operators to validate the behavior of game clients as being consistent with valid execution of the sanctioned client software. Our technique employs symbolic execution of the client software to extract constraints on client-side state implied by each client-to-server message, and then uses constraint solving to determine whether the sequence of client-to-server messages can be “explained” by any possible user inputs, in light of the server-to-client messages already received. The requisite constraints and solving components can be developed either simultaneously with the game or retroactively for existing games. We demonstrate our approach in three case studies on the open-source game XPilot , a game similar to Pac-Man of our own design, and an open-source multiplayer version of Tetris .
ISSN:1094-9224
1557-7406
DOI:10.1145/2043628.2043633