Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 19 submissions in the queue.

Your Body Reveals Your Password by Interfering With Wi-Fi

posted by CoolHand on Monday November 14 2016, @07:45PM   Printer-friendly
from the let's-get-physical dept.

Phoenix666 writes:

Modern Wi-Fi doesn't just give you fast browsing, it also imprints some of your finger movements – swipes, passwords and PINs – onto the radio signal.

A group of researchers from the Shanghai Jaio Tong University, the University of Massachusetts at Boston, and the University of South Florida have demonstrated that analysing the radio signal can reveal private information, using just one malicious Wi-Fi hotspot.

In this paper, published by the Association of Computing Machinery, they claim covert password snooping as high as 81.7 per cent, once their system has enough training samples.

It's an attack that wouldn't work if you had a primitive Wi-Fi setup with just one antenna, because it relies on the sophisticated beam-forming implemented in Multiple-Input, Multiple-Output (MIMO) antenna configurations.

Original Submission

 
This discussion has been archived. No new comments can be posted.
Your Body Reveals Your Password by Interfering With Wi-Fi | Log In/Create an Account | Top | 9 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 4, Insightful) by edIII on Monday November 14 2016, @09:14PM

    by edIII (791) on Monday November 14 2016, @09:14PM (#426660)

    Maybe. SSH keys are just as vulnerable. I don't know about you, but when I first use a key I need to enter a ~60 character password to decrypt my SSH key before use.

    Phones are intrinsically unsecured devices because they are not ours. More so than a PC (before Windows 10) because I don't need to fight tooth and nail against a manufacturer to gain an unlocked boot loader on my own fucking equipment that I fucking paid for. I don't install apps on my phone, enter calendar contacts, nothing. Just a burner line for the convenience of routing calls to me while I'm out of the office.

    This method is not just useful against coffee shops and hot spots, but could very useful to perform surveillance in other areas, including corporate ones. With this technology surveying us, only biometrics alone could protect us, or your attaching a USB key with your security credentials to use on the device.

    A lot more than just a password sniffer here. This is a full wireless keylogger that is more accurately recording all physical movement in the room similar to technology straight out of a Batman movie.

    --
    Technically, lunchtime is at any moment. It's just a wave function.
    Starting Score:    1  point
    Moderation   +2  
       Insightful=1, Informative=1, Total=2
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   4