Keyboard acoustic emanations revisited-Reference-Cited by-同舟云学术

Keyboard acoustic emanations revisited

Published:2009-10 Issue:1 Volume:13 Page:1-26
ISSN:1094-9224
Container-title:ACM Transactions on Information and System Security
language:en
Short-container-title:ACM Trans. Inf. Syst. Secur.

Author:

Zhuang Li¹,Zhou Feng¹,Tygar J. D.¹

Affiliation:

1. University of California, Berkeley

Abstract

We examine the problem of keyboard acoustic emanations. We present a novel attack taking as input a 10-minute sound recording of a user typing English text using a keyboard and recovering up to 96% of typed characters. There is no need for training recordings labeled with the corresponding clear text. A recognizer bootstrapped from a 10-minute sound recording can even recognize random text such as passwords: In our experiments, 90% of 5-character random passwords using only letters can be generated in fewer than 20 attempts by an adversary; 80% of 10-character passwords can be generated in fewer than 75 attempts by an adversary. In the attack, we use the statistical constraints of the underlying content, English language, to reconstruct text from sound recordings without knowing the corresponding clear text. The attack incorporates a combination of standard machine learning and speech recognition techniques, including cepstrum features, Hidden Markov Models, linear classification, and feedback-based incremental learning.

Funder

Division of Computer and Network Systems

Division of Information and Intelligent Systems

National Science Foundation

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/1609956.1609959

Reference18 articles.

1. Atkinson K. 2005a. GNU Aspell. http://aspell.sourceforge.net. Atkinson K. 2005a. GNU Aspell. http://aspell.sourceforge.net.

2. Atkinson K. 2005b. Spell checker oriented word lists. http://wordlist.sourceforge.net. Atkinson K. 2005b. Spell checker oriented word lists. http://wordlist.sourceforge.net.

3. Bar-El H. 2003. Introduction to side channel attacks. http://www.hbarel.com/Misc/side_channel_attacks.html. Bar-El H. 2003. Introduction to side channel attacks. http://www.hbarel.com/Misc/side_channel_attacks.html.

4. Bilmes J. A. 1997. A gentle tutorial of the EM algorithm and its application to parameter estimation for Gaussian mixture and Hidden Markov Models. Tech. rep. ICSI-TR-97-021 International Computer Science Institute Berkeley CA. ftp://ftp.icsi.berkeley.edu/pub/techreports/1997/tr-97-021.pdf. Bilmes J. A. 1997. A gentle tutorial of the EM algorithm and its application to parameter estimation for Gaussian mixture and Hidden Markov Models. Tech. rep. ICSI-TR-97-021 International Computer Science Institute Berkeley CA. ftp://ftp.icsi.berkeley.edu/pub/techreports/1997/tr-97-021.pdf.

Cited by 143 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Extracting Payment Tokens Out of Sounds Produced by Magnetic Field Fluctuations;IEEE Transactions on Mobile Computing;2024-09

2. Enriching an Open-Source Access Management Platform Using Multi-Factor Authentication;2024 IEEE 18th International Symposium on Applied Computational Intelligence and Informatics (SACI);2024-05-23

3. BUSted!!! Microarchitectural Side-Channel Attacks on the MCU Bus Interconnect;2024 IEEE Symposium on Security and Privacy (SP);2024-05-19

4. A New Deep Learning Pipeline for Acoustic Attack on Keyboards;Lecture Notes in Networks and Systems;2024

5. UltraSnoop: Placement-agnostic Keystroke Snooping via Smartphone-based Ultrasonic Sonar;ACM Transactions on Internet of Things;2023-11-22