CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
October 20th, 2008

Wired Keyboards Keystrokes Can Be Hijacked From Up To 65 Feet Away

Swiss researchers from the Security and Cryptography Laboratory at Ecole Polytechnique Federale de Lausanne have found a variety of ways to eavesdrop on the sensitive messages computer users type by monitoring their wired keyboards. At least 11 models using a wide range of connection types are vulnerable.

The researchers are able to capture keystrokes by monitoring the electromagnetic radiation of PS/2, universal serial bus, or laptop keyboards. They’ve outline four separate attack methods, some that work at a distance of as much as 65 feet from the target. In one video demonstration, researchers Martin Vuagnoux and Sylvain Pasini sniff out the the keystrokes typed into a standard keyboard using a large antenna that’s about 20 to 30 feet away in an adjacent room.

A research paper on the discovery will be published after a peer-review process. Team members Martin Vuagnoux and Sylvain Pasini explain the findings:

To determine if wired keyboards generate compromising emanations, we measured the electromagnetic radiations emitted when keys are pressed. To analyze compromising radiations, we generally use a receiver tuned on a specific frequency. However, this method may not be optimal: the signal does not contain the maximal entropy since a significant amount of information is lost.

Our approach was to acquire the signal directly from the antenna and to work on the whole captured electromagnetic spectrum.

We found 4 different ways to fully or partially recover keystrokes from wired keyboards at a distance up to 20 meters, even through walls. We tested 11 different wired keyboard models bought between 2001 and 2008 (PS/2, USB and laptop). They are all vulnerable to at least one of our 4 attacks.

We conclude that wired computer keyboards sold in the stores generate compromising emanations (mainly because of the cost pressures in the design). Hence they are not safe to transmit sensitive information. No doubt that our attacks can be significantly improved, since we used relatively inexpensive equipments.

Although electromagnetic eavesdropping dates back to the mid 1980s, many of today’s keyboards have been adapted to prevent those attacks from working. The research shows that even these keyboards are vulnerable to electromagnetic sniffing.

Even still, it’s easy to see the limitations of such attacks. Interference from other televisions, lights, or other devices seems likely, although the video demonstrations suggest that the attacks work even when there are nearby computer monitors. The other thing that makes the attack unfeasible is the amount of sophisticated equipment required. Given all the fuss and expense, in most cases it would be easier to just sneak a keylogger onto the target’s machine.

The demonstration has already gotten the attention of other security researchers. The findings will be fleshed out in an upcoming research paper. The team released two online videos (here and here) demonstrating the research findings.

Email, Bookmark or Share:
  • E-mail this story to a friend!
  • Digg
  • del.icio.us
  • StumbleUpon
  • Reddit
  • Technorati
  • Slashdot
  • Propeller
  • Google
  • Live
  • YahooMyWeb
  • TwitThis
  • Facebook
  • LinkedIn

More on CyberInsecure:
  • Cheap Laser Device Allows Keystrokes Sniffing From Any PS/2 Keyboard
  • Microsoft Keyboards, Media Devices Under Attack By Open-source Kit
  • Hackers Hijack ICANN And IANA’s Domains
  • Fort William Mountain Bike World Cup 2009 Site Hijacked, Redirects Visitors To Rogue Anti-Virus Page
  • Sections Of PBS.org Website Hijacked, Serving A Cocktail Of Dangerous Exploits

    • Posted in Data Theft, Hardware, Privacy, Vulnerabilities | Print This Post Print This Post

    This entry was posted on Monday, October 20th, 2008 at 2:38 pm and is filed under Data Theft, Hardware, Privacy, Vulnerabilities. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Wired Keyboards Keystrokes Can Be Hijacked From Up To 65 Feet Away

    One Response to “Wired Keyboards Keystrokes Can Be Hijacked From Up To 65 Feet Away”

    1. bJames Says:
      October 20th, 2008 at 5:11 pm

      If you can’t trust your wireless keyboards, what can you trust?

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « « MSN Messenger Used As Lure In Another Malicious Spam Wave
    Critical Flaws Patched In Opera 9.61, New Zero-day Vulnerability Remains Unpatched » »