Second Order Soft-TEMPEST in RF Front-Ends: Design and Detection of Polyglot Modulations

2018 International Symposium on Electromagnetic Compatibility (EMC EUROPE) Pub Date : 2018-08-01 DOI:10.1109/EMCEUROPE.2018.8485134

E. Cottais, J. Esteves, C. Kasmi

{"title":"Second Order Soft-TEMPEST in RF Front-Ends: Design and Detection of Polyglot Modulations","authors":"E. Cottais, J. Esteves, C. Kasmi","doi":"10.1109/EMCEUROPE.2018.8485134","DOIUrl":null,"url":null,"abstract":"Many studies have focused on threats induced by electromagnetic compatibility for information security. A potential correlation between the information processed by an electronic device and its emanations represents a real threat for the confidentiality of the information. Studies have also shown that the susceptibility of electronic devices represents a nonnegligible risk for its integrity and its availability. In particular, several Soft-TEMPEST attacks have been proposed recently in order to create electromagnetic physical covert channels. These however focus on a direct correlation between the processed data and the electromagnetic emanations. In this paper we propose to investigate indirect attacks involving a local impact of the electromagnetic compatibility of a device, such as a crosstalk, modifying the behavior of a component which in turn will contribute to establish the covert channel. To introduce such second order Soft-TEMPEST attack, the case of an attacker-controlled communication line inducing perturbations on the local oscillator of a radio frequency front-end and creating a polyglot modulation-based covert channel is proposed.","PeriodicalId":376960,"journal":{"name":"2018 International Symposium on Electromagnetic Compatibility (EMC EUROPE)","volume":"132 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 International Symposium on Electromagnetic Compatibility (EMC EUROPE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EMCEUROPE.2018.8485134","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

Abstract

Many studies have focused on threats induced by electromagnetic compatibility for information security. A potential correlation between the information processed by an electronic device and its emanations represents a real threat for the confidentiality of the information. Studies have also shown that the susceptibility of electronic devices represents a nonnegligible risk for its integrity and its availability. In particular, several Soft-TEMPEST attacks have been proposed recently in order to create electromagnetic physical covert channels. These however focus on a direct correlation between the processed data and the electromagnetic emanations. In this paper we propose to investigate indirect attacks involving a local impact of the electromagnetic compatibility of a device, such as a crosstalk, modifying the behavior of a component which in turn will contribute to establish the covert channel. To introduce such second order Soft-TEMPEST attack, the case of an attacker-controlled communication line inducing perturbations on the local oscillator of a radio frequency front-end and creating a polyglot modulation-based covert channel is proposed.

查看原文本刊更多论文

射频前端的二阶软风暴:多语言调制的设计与检测

电磁兼容性对信息安全的威胁已成为许多研究的重点。电子设备处理的信息与其发出的信息之间存在潜在的相关性，这对信息的保密性构成了真正的威胁。研究还表明，电子设备的易感性对其完整性和可用性构成了不可忽视的风险。特别是，最近提出了几种软风暴攻击，以创建电磁物理隐蔽信道。然而，这些都集中在处理过的数据和电磁辐射之间的直接关联上。在本文中，我们建议研究间接攻击，涉及设备电磁兼容性的局部影响，例如串扰，修改组件的行为，进而有助于建立隐蔽信道。为了引入这种二阶软风暴攻击，提出了攻击者控制的通信线路对射频前端的本振产生扰动并创建基于多语言调制的隐蔽信道的情况。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 International Symposium on Electromagnetic Compatibility (EMC EUROPE)

自引率

0.00%

发文量