Leveraging Electromagnetic Side-Channel Analysis for the Investigation of IoT Devices

Sayakkara, Asanka; Le-Khac, Nhien-An; Scanlon, Mark

doi:10.1016/j.diin.2019.04.012

Cited by 38 publications

(15 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The Knownplaintext attack, Ciphertext-only attack and Chosenplaintext attack are some of the other examples of cryptanalysis attacks [123].  Side-Channel Information Attacks: During the process of the encryption operation, the attacker obtains information and performs a reverse-engineering process to gather the cryptographic credentials of an IoT device [124], [125]. This information can be gained from the encryption devices, not from plaintext or ciphertext during the encryption process.…”

Section: ) Multi-layer/dimensional Attacksmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Security Challenges, Attacks Taxonomy and Advanced Countermeasures in the Internet of Things

et al. 2020

View full text Add to dashboard Cite

Section: ) Multi-layer/dimensional Attacksmentioning

confidence: 99%

“…Both results confirm that the accuracy rate of authentication of the method achieves 84% without requiring manual labeling. The authors in [125] proposed a learning-based algorithm to detect sidechannel attacks and showed 82% and 90% detection accuracy on high-end and low-end IoT devices, respectively.…”

Section: A Learning-based Countermeasuresmentioning

confidence: 99%

A Survey of Security Challenges, Attacks Taxonomy and Advanced Countermeasures in the Internet of Things

et al. 2020

View full text Add to dashboard Cite

“…Side-channels and covert-channels have been well studied in many research domains. Typical side-channels such as cache access time [26], power consumption traces [27], electromagnetic emanations [25], temperature [28], etc., may also be seen against real-time system (RTS). In this paper, we focus on scheduler-based channels.…”

Section: Scheduleak [8]mentioning

confidence: 99%

“…Note that, 25MHz here corresponds to the main frequency of MSP430 MCU, while 50MHz is its harmonic. Therefore, it is easy to develop classification algorithms (e.g., neural network-based [25]) to automatically distinguish them, then constructing execution sequences.…”

Section: A Obtain the Execution Sequencesmentioning

confidence: 99%

Task Parameters Analysis in Schedule-Based Timing Side-Channel Attack

Liu

2020

IEEE Access

View full text Add to dashboard Cite

Recent work has shown that the timing behavior of a real-time system can be utilized by attackers for various adverse purposes via schedule-based timing side-channel attacks. An important assumption in this type of attacks is the prior knowledge of attackers about the task parameter information, including the number of tasks in the system and the period and execution time of each task. The attackers can use such information, together with the execution sequence of the task system, to reconstruct the exact schedule of the tasks and perform various subsequent attacks. In this paper, we show that the schedule-based timing side channel attacks can actually be performed even without knowing the task parameter information in prior. We develop methods to infer the number of tasks in the system and the period and execution time of each task directly from the execution sequence. This removes the task parameter prior knowledge requirement of the attackers and shows greater threats of the schedule-based timing side channel attacks. Both simulation experiments with synthetic task sets and a Zedboard-based evaluation with control system for a 3DOF helicopter are conducted to evaluate the proposed task parameter analysis method.

show abstract

“…Due to the non-invasive nature of EM-SCA, it has been proposed to be used as a forensic insight-gathering method. Various types of forensic insights have been demonstrated to be acquirable from IoT devices in the literature [7], [8]. This work explores the potential of utilising EM radiation of smartphones as a method to acquire forensic insights from them during triage examination and live analysis of an investigation.…”

Section: Introductionmentioning

confidence: 99%

Forensic Insights From Smartphones Through Electromagnetic Side-Channel Analysis

Sayakkara

Le-Khac

2021

IEEE Access

Self Cite

View full text Add to dashboard Cite

The increasing use of smartphones has increased their presence in legal and corporate investigations. Unlike desktop and laptop computers, forensic analysis of smartphones is a challenging task due to their limited interfaces to retrieve information of forensic value. Electromagnetic side-channel analysis (EM-SCA) has been recently proposed as an alternative window to acquire forensic insights from computers, in particularly from Internet of Things devices. Along this line, this work experimentally evaluates the potential of extracting information of forensic value from smartphones through their EM radiation. Initially, a group of smartphones representing a diverse set of system-on-chip (SoC) processors were used to acquire EM radiation traces. Later, deep learning models were trained to detect various internal software behaviours running on the SoCs. The results of this work indicates that a wide variety of insights can be extracted from smartphones through EM side-channel, increasing the potential opportunities for digital forensic investigators.INDEX TERMS Digital forensics, smartphone forensics, electromagnetic side-channel, software behaviour detection, deep learning model.

show abstract

Leveraging Electromagnetic Side-Channel Analysis for the Investigation of IoT Devices

Cited by 38 publications

References 27 publications

A Survey of Security Challenges, Attacks Taxonomy and Advanced Countermeasures in the Internet of Things

A Survey of Security Challenges, Attacks Taxonomy and Advanced Countermeasures in the Internet of Things

Task Parameters Analysis in Schedule-Based Timing Side-Channel Attack

Forensic Insights From Smartphones Through Electromagnetic Side-Channel Analysis

Contact Info

Product

Resources

About