Skip to Main content Skip to Navigation
Conference papers

An Analysis of the Green Dam Youth Escort Software

Abstract : According to official Chinese media sources, the Green Dam Youth Escort (GDYE) software is intended to protect young citizens from viewing unhealthy information on the Internet. However, critics maintain that GDYE has serious security vulnerabilities that allow hackers to take control of computers installed with GDYE. Critics also claim that the software is designed to collect user data and keystrokes for transmission to remote servers for unknown purposes. GDYE was originally mandated to be pre-installed on every computer sold in the People's Republic of China. However, the plan was suddenly shelved in the face of intense international media attention. This paper evaluates the GDYE software's advertised functions and additional non-advertised capabilities. As the software may have spyware and malware functionality, the evaluation monitored the software behavior in a specialized controlled environment. The analysis was performed from a forensics perspective to collect digital evidence and traces in order to prove or disprove that GDYE captures and disseminates private information.
Document type :
Conference papers
Complete list of metadata

Cited literature [7 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Tuesday, November 28, 2017 - 12:19:20 PM
Last modification on : Monday, October 19, 2020 - 11:10:23 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Frankie Li, Hilton Chan, Kam-Pui Chow, Pierre Lai. An Analysis of the Green Dam Youth Escort Software. 6th IFIP WG 11.9 International Conference on Digital Forensics (DF), Jan 2010, Hong Kong, China. pp.49-62, ⟨10.1007/978-3-642-15506-2_4⟩. ⟨hal-01060609⟩



Record views


Files downloads