Cross-Country Exposure: Analysis of the MY2022 Olympics App

Files

Report#149--my2022.pdf (1.58 MB)

Date

2022-01-18

Authors

Journal Title

Journal ISSN

Volume Title

Publisher

Abstract

MY2022, an app mandated for use by all attendees of the 2022 Olympic Games in Beijing, has a simple but devastating flaw where encryption protecting users’ voice audio and file transfers can be trivially sidestepped. Health customs forms which transmit passport details, demographic information, and medical and travel history are also vulnerable. Server responses can also be spoofed, allowing an attacker to display fake instructions to users.

Description

Keywords

MY2022, Olympics, Beijing, China, encryption, security vulnerability, public health, travel

Citation

Jeffrey Knockel. “Cross-country Exposure: Analysis of the MY2022 Olympics App,” Citizen Lab Research Report No. 149, University of Toronto, January 2022.

URI

http://hdl.handle.net/1807/123968

DOI

ISSN

Creative Commons

Attribution-ShareAlike 4.0 International

Creative Commons URI

http://creativecommons.org/licenses/by-sa/4.0/

Collections

Citizen Lab
Full item page

Items in TSpace are protected by copyright, with all rights reserved, unless otherwise indicated.