VDI is no longer safe and reliable anymore. VDI(Virtual Desktop Infrastructure, also called Cloud Desktop) is being widely used as working interface to avoid data exfiltration. With VDI client, end users can access internal data without obtaining data actually. In this paper, we present a new approach named CyberEye, to extract data from VDI by video even data transmission has been forbidden. By encoding data file to video, playing it in VDI meanwhile recording it in host PC, we can get full information of the data with video format, then decode it to recover the original data file. The proof-of-concept on Citrix Workspace and several other remote virtual desktops has strongly been proved the availability and reliability of the CyberEye. We introduce the usage in operation model to show how it's been designed and implemented in technical work section. And also, we have opened the source code to researchers for reproducing the work.
翻译:VDI不再安全可靠。 VDI(虚拟桌面基础设施,又称云台桌面)正在被广泛用作工作界面,以避免数据过滤。有了VDI客户,终端用户可以在不实际获取数据的情况下获取内部数据。在本文中,我们提出了一个名为CyberEye的新方法,以视频方式从VDI提取数据,甚至数据传输也被禁止。通过将数据文件编码为视频,同时在VDI中播放,在主机PC中记录这些数据,我们可以用视频格式获得数据的全部信息,然后解码以恢复原始数据文件。Citrix Workspace和其他几个远程虚拟桌面的校对已被有力地证明CyberEye的可用性和可靠性。我们在操作模型中引入了该功能,以显示它是如何在技术工作部分设计和实施的。此外,我们还打开了研究人员的源代码,用于复制工作。