SonarSnoop: Active Acoustic Side-Channel Attacks
| Autor: | Jeff Yan, Peng Cheng, Utz Roedig, Ibrahim Ethem Bagci |
|---|---|
| Jazyk: | angličtina |
| Rok vydání: | 2018 |
| Předmět: |
FOS: Computer and information sciences
QA75 Side-channel attack Computer Science - Cryptography and Security Smart phone Computer Networks and Communications Computer science Real-time computing 0211 other engineering and technologies Cryptography Mobile device ComputerApplications_COMPUTERSINOTHERSYSTEMS 02 engineering and technology Phone Side channel attack Android (operating system) Acoustic system Safety Risk Reliability and Quality 021110 strategic defence & security studies Signal processing business.industry Active sonar Marine mammals and sonar business Cryptography and Security (cs.CR) Software Information Systems |
| ISSN: | 1615-5270 |
| Popis: | We report the first active acoustic side-channel attack. Speakers are used to emit human inaudible acoustic signals, and the echo is recorded via microphones, turning the acoustic system of a smart phone into a sonar system. The echo signal can be used to profile user interaction with the device. For example, a victim’s finger movements can be inferred to steal Android unlock patterns. In our empirical study, the number of candidate unlock patterns that an attacker must try to authenticate herself to a Samsung S4 phone can be reduced by up to 70% using this novel acoustic side-channel. The attack is entirely unnoticeable to victims. Our approach can be easily applied to other application scenarios and device types. Overall, our work highlights a new family of security threats. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|
Full text from SpringerLink