SensorID: Sensor Calibration Fingerprinting for Smartphones

2019 IEEE Symposium on Security and Privacy (SP) Pub Date : 2019-05-01 DOI:10.1109/SP.2019.00072

Jiexin Zhang, A. Beresford, I. Sheret

{"title":"SensorID: Sensor Calibration Fingerprinting for Smartphones","authors":"Jiexin Zhang, A. Beresford, I. Sheret","doi":"10.1109/SP.2019.00072","DOIUrl":null,"url":null,"abstract":"Sensors are an essential component of many computer systems today. Mobile devices are a good example, containing a vast array of sensors from accelerometers and GPS units, to cameras and microphones. Data from these sensors are accessible to application programmers who can use this data to build context-aware applications. Good sensor accuracy is often crucial, and therefore manufacturers often use per-device factory calibration to compensate for systematic errors introduced during manufacture. In this paper we explore a new type of fingerprinting attack on sensor data: calibration fingerprinting. A calibration fingerprinting attack infers the per-device factory calibration data from a device by careful analysis of the sensor output alone. Such an attack does not require direct access to any calibration parameters since these are often embedded inside the firmware of the device and are not directly accessible by application developers. We demonstrate the potential of this new class of attack by performing calibration fingerprinting attacks on the inertial measurement unit sensors found in iOS and Android devices. These sensors are good candidates because access to these sensors does not require any special permissions, and the data can be accessed via both a native app installed on a device and also by JavaScript when visiting a website on an iOS and Android device. We find we are able to perform a very effective calibration fingerprinting attack: our approach requires fewer than 100 samples of sensor data and takes less than one second to collect and process into a device fingerprint that does not change over time or after factory reset. We demonstrate that our approach is very likely to produce globally unique fingerprints for iOS devices, with an estimated 67 bits of entropy in the fingerprint for iPhone 6S devices. In addition, we find that the accelerometer of Google Pixel 2 and Pixel 3 devices can also be fingerprinted by our approach.","PeriodicalId":272713,"journal":{"name":"2019 IEEE Symposium on Security and Privacy (SP)","volume":"47 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"51","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE Symposium on Security and Privacy (SP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SP.2019.00072","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 51

Abstract

Sensors are an essential component of many computer systems today. Mobile devices are a good example, containing a vast array of sensors from accelerometers and GPS units, to cameras and microphones. Data from these sensors are accessible to application programmers who can use this data to build context-aware applications. Good sensor accuracy is often crucial, and therefore manufacturers often use per-device factory calibration to compensate for systematic errors introduced during manufacture. In this paper we explore a new type of fingerprinting attack on sensor data: calibration fingerprinting. A calibration fingerprinting attack infers the per-device factory calibration data from a device by careful analysis of the sensor output alone. Such an attack does not require direct access to any calibration parameters since these are often embedded inside the firmware of the device and are not directly accessible by application developers. We demonstrate the potential of this new class of attack by performing calibration fingerprinting attacks on the inertial measurement unit sensors found in iOS and Android devices. These sensors are good candidates because access to these sensors does not require any special permissions, and the data can be accessed via both a native app installed on a device and also by JavaScript when visiting a website on an iOS and Android device. We find we are able to perform a very effective calibration fingerprinting attack: our approach requires fewer than 100 samples of sensor data and takes less than one second to collect and process into a device fingerprint that does not change over time or after factory reset. We demonstrate that our approach is very likely to produce globally unique fingerprints for iOS devices, with an estimated 67 bits of entropy in the fingerprint for iPhone 6S devices. In addition, we find that the accelerometer of Google Pixel 2 and Pixel 3 devices can also be fingerprinted by our approach.

查看原文本刊更多论文

SensorID:智能手机传感器校准指纹识别

传感器是当今许多计算机系统的重要组成部分。移动设备就是一个很好的例子，它包含大量的传感器，从加速度计和GPS装置，到摄像头和麦克风。应用程序程序员可以访问来自这些传感器的数据，他们可以使用这些数据构建上下文感知的应用程序。良好的传感器精度通常是至关重要的，因此制造商通常使用每个设备的出厂校准来补偿制造过程中引入的系统误差。本文探讨了一种针对传感器数据的新型指纹攻击:校准指纹。校准指纹攻击仅通过仔细分析传感器输出就可以推断出设备的每个设备出厂校准数据。这种攻击不需要直接访问任何校准参数，因为这些参数通常嵌入在设备的固件中，应用程序开发人员无法直接访问。我们通过对iOS和Android设备中的惯性测量单元传感器执行校准指纹攻击来证明这种新型攻击的潜力。这些传感器是很好的选择，因为访问这些传感器不需要任何特殊权限，数据可以通过安装在设备上的本地应用程序访问，也可以在访问iOS和Android设备上的网站时通过JavaScript访问。我们发现我们能够执行非常有效的校准指纹攻击:我们的方法需要少于100个传感器数据样本，并且需要不到一秒钟的时间来收集和处理成不随时间或出厂重置后改变的设备指纹。我们证明，我们的方法很可能为iOS设备产生全球唯一的指纹，iPhone 6S设备的指纹中估计有67位熵。此外，我们发现Google Pixel 2和Pixel 3设备的加速度计也可以通过我们的方法进行指纹识别。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2019 IEEE Symposium on Security and Privacy (SP)

自引率

0.00%

发文量