Issue No.03 - May/June (2009 vol.7)
Christopher Kruegel , University of California, Santa Barbara
Engin Kirda , Institute Eurecom
Stefan Mitterhofer , Vienna University of Technology
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2009.78
One of the greatest threats that massive multiplayer online games (MMOGs) face today is botting, a form of cheating in which a player uses a script to automate actions in a game without actually playing. This has a severe adverse effect on honest players and impacts their motivation to continue the game, threatening online game providers' subscription-based business model. However, if game companies make an effort at all to automatically detect bots, it's usually through signature checking for suspicious programs on the client side, essentially relying on information from an untrusted source beyond their control. To address the problem, we propose an automated approach to detect bots on the server side, solely based on character activity. Our approach is completely transparent to the end user and exploits the fact that bots follow a script that guides them through the virtual world. More precisely, by analyzing a character's movement data, we can extract waypoints and detect repeated paths. This allows us to find movement patterns that appear frequently, indicating that a character is controlled by a script and not a human player.
gaming, security, online games, cheating, gaming bots, bot detection, world of warcraft, mmorpg security, waypoint extraction
Christopher Kruegel, Engin Kirda, Stefan Mitterhofer, "Server-Side Bot Detection in Massively Multiplayer Online Games", IEEE Security & Privacy, vol.7, no. 3, pp. 29-36, May/June 2009, doi:10.1109/MSP.2009.78