Keyboard acoustic emanations revisited-Reference-Cited by-同舟云学术

Keyboard acoustic emanations revisited

Published:2009-10 Issue:1 Volume:13 Page:1-26
ISSN:1094-9224
Container-title:ACM Transactions on Information and System Security
language:en
Short-container-title:ACM Trans. Inf. Syst. Secur.

Author:

Zhuang Li¹,Zhou Feng¹,Tygar J. D.¹

Affiliation:

1. University of California, Berkeley

Abstract

We examine the problem of keyboard acoustic emanations. We present a novel attack taking as input a 10-minute sound recording of a user typing English text using a keyboard and recovering up to 96% of typed characters. There is no need for training recordings labeled with the corresponding clear text. A recognizer bootstrapped from a 10-minute sound recording can even recognize random text such as passwords: In our experiments, 90% of 5-character random passwords using only letters can be generated in fewer than 20 attempts by an adversary; 80% of 10-character passwords can be generated in fewer than 75 attempts by an adversary. In the attack, we use the statistical constraints of the underlying content, English language, to reconstruct text from sound recordings without knowing the corresponding clear text. The attack incorporates a combination of standard machine learning and speech recognition techniques, including cepstrum features, Hidden Markov Models, linear classification, and feedback-based incremental learning.

Funder

Division of Computer and Network Systems

Division of Information and Intelligent Systems

National Science Foundation

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/1609956.1609959

Reference18 articles.

1. Atkinson K. 2005a. GNU Aspell. http://aspell.sourceforge.net. Atkinson K. 2005a. GNU Aspell. http://aspell.sourceforge.net.

2. Atkinson K. 2005b. Spell checker oriented word lists. http://wordlist.sourceforge.net. Atkinson K. 2005b. Spell checker oriented word lists. http://wordlist.sourceforge.net.

3. Bar-El H. 2003. Introduction to side channel attacks. http://www.hbarel.com/Misc/side_channel_attacks.html. Bar-El H. 2003. Introduction to side channel attacks. http://www.hbarel.com/Misc/side_channel_attacks.html.

4. Bilmes J. A. 1997. A gentle tutorial of the EM algorithm and its application to parameter estimation for Gaussian mixture and Hidden Markov Models. Tech. rep. ICSI-TR-97-021 International Computer Science Institute Berkeley CA. ftp://ftp.icsi.berkeley.edu/pub/techreports/1997/tr-97-021.pdf. Bilmes J. A. 1997. A gentle tutorial of the EM algorithm and its application to parameter estimation for Gaussian mixture and Hidden Markov Models. Tech. rep. ICSI-TR-97-021 International Computer Science Institute Berkeley CA. ftp://ftp.icsi.berkeley.edu/pub/techreports/1997/tr-97-021.pdf.

Cited by 140 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. UltraSnoop: Placement-agnostic Keystroke Snooping via Smartphone-based Ultrasonic Sonar;ACM Transactions on Internet of Things;2023-11-22

2. Traditional Authentication;Continuous Biometric Authentication Systems;2023-10-29

3. A Practical Deep Learning-Based Acoustic Side Channel Attack on Keyboards;2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW);2023-07

4. Privacy Leakage via Unrestricted Motion-Position Sensors in the Age of Virtual Reality: A Study of Snooping Typed Input on Virtual Keyboards;2023 IEEE Symposium on Security and Privacy (SP);2023-05

5. A Survey on Machine Learning in Hardware Security;ACM Journal on Emerging Technologies in Computing Systems;2023-04-30