A survey of electromagnetic side-channel attacks and discussion on their case-progressing potential for digital forensics

Sayakkara, Asanka; Le-Khac, Nhien-An; Scanlon, Mark

doi:10.1016/j.diin.2019.03.002

Cited by 67 publications

(31 citation statements)

References 78 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…A possible research direction could be the use of physical side-channel analysis for also defending intrusions against such devices. In fact, this idea is not new, as it has already been explored in recent works mainly for industrial and other kind of IoT devices [99][100][101][102]. (n)…”

Section: (D)mentioning

confidence: 99%

A State-of-the-Art Review on the Security of Mainstream IoT Wireless PAN Protocol Stacks

Kambourakis

Kolias²,

Geneiatakis³

et al. 2020

Symmetry

View full text Add to dashboard Cite

Protocol stacks specifically designed for the Internet of Things (IoT) have become commonplace. At the same time, security and privacy concerns regarding IoT technologies are also attracting significant attention given the risks that are inherently associated with the respective devices and their numerous applications, ranging from healthcare, smart homes, and cities, to intelligent transportation systems and industrial automation. Considering the still heterogeneous nature of the majority of IoT protocols, a major concern is to find common references for investigating and analyzing their security and privacy threats. To this end, and on top of the current literature, this work provides a comprehensive, vis-à-vis comparison of the security aspects of the thus far most widespread IoT Wireless Personal Area Network (WPAN) protocols, namely BLE, Z-Wave, ZigBee, Thread, and EnOcean. A succinct but exhaustive review of the relevant literature from 2013 up to now is offered as a side contribution.

show abstract

Section: (D)mentioning

confidence: 99%

A State-of-the-Art Review on the Security of Mainstream IoT Wireless PAN Protocol Stacks

Kambourakis

Kolias²,

Geneiatakis³

et al. 2020

Symmetry

View full text Add to dashboard Cite

show abstract

“…These algorithms require the EM traces to be precisely aligned in the time-domain in order to succeed. Due to the nature of EM trace extraction, minor misalignments often force the attacker to extract more EM traces -this alignment issue can be greatly improved by ML [93]. Furthermore, these algorithms can take a considerable time to complete, making them difficult to be used in live device investigation scenarios in digital forensics [60,107,124].…”

Section: Forensics On Encrypted Datamentioning

confidence: 99%

“…There are two potential avenues for EM-SCA that can be assisted by AI techniques; gaining useful insights without accessing the encrypted content, and performing cryptographic key retrieval attacks. Towards the first goal, various AI approaches have been applied using power and electromagnetic side-channel observational data [93]. Knowing whether a target device is running the expected software/firmware can be useful to the investigator, i.e., a malicious user may have modified the firmware.…”

Section: State Of the Art Of Ai On Handling Encryptedmentioning

confidence: 99%

SoK

Hargreaves

Sheppard

et al. 2020

Proceedings of the 15th International Conference on Availability, Reliability and Security

Self Cite

View full text Add to dashboard Cite

Multi-year digital forensic backlogs have become commonplace in law enforcement agencies throughout the globe. Digital forensic investigators are overloaded with the volume of cases requiring their expertise compounded by the volume of data to be processed. Artificial intelligence is often seen as the solution to many big data problems. This paper summarises existing artificial intelligence based tools and approaches in digital forensics. Automated evidence processing leveraging artificial intelligence based techniques shows great promise in expediting the digital forensic analysis process while increasing case processing capacities. For each application of artificial intelligence highlighted, a number of current challenges and future potential impact is discussed.

show abstract

“…As existing work has shown, software activities running on IoT devices can be detected through EM-SCA techniques. In order to use these attacks for digital forensic purposes, these attacks must work in real-world conditions, such as target devices with zero or minimal knowledge, and devices placed in noisy environments [9].…”

Section: Related Workmentioning

confidence: 99%

“…However, the firmware of many IoT devices are not updated after they are shipped. Therefore, a known EM side-channel of an IoT device can remain exploitable for the rest of its service life [9].…”

Section: Incorporation Into the Digital Forensic Workflowmentioning

confidence: 99%

Leveraging Electromagnetic Side-Channel Analysis for the Investigation of IoT Devices

Sayakkara

Le-Khac

Scanlon

2019

Digital Investigation

Self Cite

View full text Add to dashboard Cite

Internet of Things (IoT) devices have expanded the horizon of digital forensic investigations by providing a rich set of new evidence sources. IoT devices includes health implants, sports wearables, smart burglary alarms, smart thermostats, smart electrical appliances, and many more. Digital evidence from these IoT devices is often extracted from third party sources, e.g., paired smartphone applications or the devices' back-end cloud services. However vital digital evidence can still reside solely on the IoT device itself. The specifics of the IoT device's hardware is a black-box in many cases due to the lack of proven, established techniques to inspect IoT devices. This paper presents a novel methodology to inspect the internal software activities of IoT devices through their electromagnetic radiation emissions during live device investigation. When a running IoT device is identified at a crime scene, forensically important software activities can be revealed through an electromagnetic side-channel analysis (EM-SCA) attack. By using two representative IoT hardware platforms, this work demonstrates that cryptographic algorithms running on high-end IoT devices can be detected with over 82% accuracy, while minor software code differences in low-end IoT devices could be detected over 90% accuracy using a neural network-based classifier. Furthermore, it was experimentally demonstrated that malicious modification of the stock firmware of an IoT device can be detected through machine learning-assisted EM-SCA techniques. These techniques provide a new investigative vector for digital forensic investigators to inspect IoT devices.

show abstract

A survey of electromagnetic side-channel attacks and discussion on their case-progressing potential for digital forensics

Cited by 67 publications

References 78 publications

A State-of-the-Art Review on the Security of Mainstream IoT Wireless PAN Protocol Stacks

A State-of-the-Art Review on the Security of Mainstream IoT Wireless PAN Protocol Stacks

SoK

Leveraging Electromagnetic Side-Channel Analysis for the Investigation of IoT Devices

Contact Info

Product

Resources

About