BrokenStrokes: on the (in)security of wireless keyboards

Proceedings of the 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks Pub Date : 2019-10-09 DOI:10.1145/3395351.3399351

G. Oligeri, Savio Sciancalepore, Simone Raponi, R. D. Pietro

{"title":"BrokenStrokes: on the (in)security of wireless keyboards","authors":"G. Oligeri, Savio Sciancalepore, Simone Raponi, R. D. Pietro","doi":"10.1145/3395351.3399351","DOIUrl":null,"url":null,"abstract":"Wireless devices resorting to event-triggered communications have been proved to suffer critical privacy issues, due to the intrinsic leakage associated with radio-frequency (RF) emissions. In this paper, we move the attack frontier forward by proposing BrokenStrokes: an inexpensive, easy to implement, efficient, and effective attack able to detect the typing of a pre-defined keyword by only eavesdropping the communication channel used by the wireless keyboard. BrokenStrokes proves itself to be a particularly dreadful attack: it achieves its goal when the eavesdropping antenna is up to 15 meters from the target keyboard, regardless of the encryption scheme, the communication protocol, the presence of radio noise, and the presence of physical obstacles. While we detail the attack in three current scenarios and discuss its striking performance---its success probability exceeds 90%6 in normal operating conditions---, we also provide some suggestions on how to mitigate it. The data utilized in this paper have been released as open-source to allow practitioners, industries, and academia to verify our claims and use them as a basis for further developments.","PeriodicalId":165929,"journal":{"name":"Proceedings of the 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-10-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3395351.3399351","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

Wireless devices resorting to event-triggered communications have been proved to suffer critical privacy issues, due to the intrinsic leakage associated with radio-frequency (RF) emissions. In this paper, we move the attack frontier forward by proposing BrokenStrokes: an inexpensive, easy to implement, efficient, and effective attack able to detect the typing of a pre-defined keyword by only eavesdropping the communication channel used by the wireless keyboard. BrokenStrokes proves itself to be a particularly dreadful attack: it achieves its goal when the eavesdropping antenna is up to 15 meters from the target keyboard, regardless of the encryption scheme, the communication protocol, the presence of radio noise, and the presence of physical obstacles. While we detail the attack in three current scenarios and discuss its striking performance---its success probability exceeds 90%6 in normal operating conditions---, we also provide some suggestions on how to mitigate it. The data utilized in this paper have been released as open-source to allow practitioners, industries, and academia to verify our claims and use them as a basis for further developments.

查看原文本刊更多论文

关于无线键盘的安全性

由于射频(RF)发射的固有泄漏，采用事件触发通信的无线设备已被证明存在严重的隐私问题。在本文中，我们通过提出BrokenStrokes将攻击前沿向前推进:一种廉价，易于实现，高效且有效的攻击，能够通过窃听无线键盘使用的通信信道来检测预定义关键字的输入。BrokenStrokes证明了自己是一种特别可怕的攻击:当窃听天线距离目标键盘15米时，它就达到了目的，而不管加密方案、通信协议、无线电噪声的存在，以及物理障碍的存在。虽然我们详细介绍了当前三种情况下的攻击，并讨论了其惊人的性能——在正常操作条件下，其成功率超过90%6——我们也提供了一些关于如何减轻攻击的建议。本文中使用的数据已经作为开源发布，允许从业者、行业和学术界验证我们的说法，并将其作为进一步发展的基础。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks

自引率

0.00%

发文量