Systematic Classification of Side-Channel Attacks: A Case Study for Mobile Devices

Spreitzer, Raphael; Moonsamy, Veelasha; Korak, Thomas; Mangard, Stefan

doi:10.1109/comst.2017.2779824

Cited by 179 publications

(120 citation statements)

References 140 publications

(170 reference statements)

Supporting

Mentioning

109

Contrasting

Order By: Relevance

“…The second type is known as a combined side channels attack, which could improve the accuracy of existing attacks or cope with more sophisticated attack scenarios. Some research recently started to explore the attacks from combined side channels [20,36,37,55]. However, these work only focus on a single domain, which has limitations in employing the information from both sides.…”

Section: Related Workmentioning

confidence: 99%

Nowhere to Hide: Cross-modal Identity Leakage between Biometrics and Devices

Xiangli

et al. 2020

Proceedings of the Web Conference 2020

View full text Add to dashboard Cite

Along with the benefits of Internet of Things (IoT) come potential privacy risks, since billions of the connected devices are granted permission to track information about their users and communicate it to other parties over the Internet. Of particular interest to the adversary is the user identity which constantly plays an important role in launching attacks. While the exposure of a certain type of physical biometrics or device identity is extensively studied, the compound effect of leakage from both sides remains unknown in multi-modal sensing environments. In this work, we explore the feasibility of the compound identity leakage across cyber-physical spaces and unveil that co-located smart device IDs (e.g., smartphone MAC addresses) and physical biometrics (e.g., facial/vocal samples) are side channels to each other. It is demonstrated that our method is robust to various observation noise in the wild and an attacker can comprehensively profile victims in multi-dimension with nearly zero analysis effort. Two real-world experiments on different biometrics and device IDs show that the presented approach can compromise more than 70% of device IDs and harvests multiple biometric clusters with ∼ 94% purity at the same time. CCS CONCEPTS• Security and privacy → Pseudonymity, anonymity and untraceability; • Human-centered computing → Ubiquitous and mobile computing.

show abstract

Section: Related Workmentioning

confidence: 99%

Nowhere to Hide: Cross-modal Identity Leakage between Biometrics and Devices

Xiangli

et al. 2020

Proceedings of the Web Conference 2020

View full text Add to dashboard Cite

show abstract

“…The phase of side-channel attacks on mobile devices usually consists of three steps [11]. (1) A malicious application is spread through popular app markets.…”

Section: Threat Modelsmentioning

confidence: 99%

Tracking the Human Mobility Using Mobile Device Sensors

Watanabe¹,

Akiyama²,

Mori

2017

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYWe developed a novel, proof-of-concept side-channel attack framework called RouteDetector, which identifies a route for a train trip by simply reading smart device sensors: an accelerometer, magnetometer, and gyroscope. All these sensors are commonly used by many apps without requiring any permissions. The key technical components of RouteDetector can be summarized as follows. First, by applying a machine-learning technique to the data collected from sensors, RouteDetector detects the activity of a user, i.e., "walking," "in moving vehicle," or "other." Next, it extracts departure/arrival times of vehicles from the sequence of the detected human activities. Finally, by correlating the detected departure/arrival times of the vehicle with timetables/route maps collected from all the railway companies in the rider's country, it identifies potential routes that can be used for a trip. We demonstrate that the strategy is feasible through field experiments and extensive simulation experiments using timetables and route maps for 9,090 railway stations of 172 railway companies.

show abstract

“…Meanwhile, the globalization of IC design and manufacturing introduces hardware security threats such as hardware trojans, side-channel analysis, and IC reverse engineering (RE). [19][20][21] Hardware-oriented security offers new Compementary metal-oxide semiconductor (CMOS)-based security primitives like true random number generators (TRNGs), physically unclonable functions, and other circuit design methodologies to make systems robust against security attacks. [22][23][24] However, CMOS-based security primitives consume high power and area and require additional source/drain doping variations to create stealthy manipulations for obfuscation.…”

Section: Introductionmentioning

confidence: 99%

Tunnel FET‐based ultralow‐power and hardware‐secure circuit design considering p‐i‐n forward leakage

Japa

Majumder

Sahoo

et al. 2020

Circuit Theory & Apps

View full text Add to dashboard Cite

Summary Tunnel field‐effect transistor (TFET) exhibits significant p‐i‐n forward leakage with the increase in drain‐to‐source voltage bias, and this adversely impacts the power consumption and reliability of TFET digital circuits. This work presents low‐power circuit techniques that result in novel compact gates and recommends tristate gates to mitigate the leakage effects. The proposed novel compact gates and tristate gates demonstrate two and six times lower power consumption compared with conventional TFET transmission gates with enhanced reliability. Further, this work introduces a new design methodology that leverages TFET p‐i‐n forward leakage for hardware obfuscation applications. Utilizing the proposed design methodology, the optimization of 40% and 80% in area and power consumption of hardware security primitives like true random number generators is also accomplished.

show abstract

Systematic Classification of Side-Channel Attacks: A Case Study for Mobile Devices

Cited by 179 publications

References 140 publications

Nowhere to Hide: Cross-modal Identity Leakage between Biometrics and Devices

Nowhere to Hide: Cross-modal Identity Leakage between Biometrics and Devices

Tracking the Human Mobility Using Mobile Device Sensors

Tunnel FET‐based ultralow‐power and hardware‐secure circuit design considering p‐i‐n forward leakage

Contact Info

Product

Resources

About