A New Sensors-Based Covert Channel on Android. (11th September 2014)
- Record Type:
- Journal Article
- Title:
- A New Sensors-Based Covert Channel on Android. (11th September 2014)
- Main Title:
- A New Sensors-Based Covert Channel on Android
- Authors:
- Al-Haiqi, Ahmed
Ismail, Mahamod
Nordin, Rosdiadee - Other Names:
- Bogliolo Alessandro Academic Editor.
- Abstract:
- Abstract : Covert channels are not new in computing systems, and have been studied since their first definition four decades ago. New platforms invoke thorough investigations to assess their security. Now is the time for Android platform to analyze its security model, in particular the two key principles: process-isolation and the permissions system. Aside from all sorts of malware, one threat proved intractable by current protection solutions, that is, collusion attacks involving two applications communicating over covert channels. Still no universal solution can countermeasure this sort of attack unless the covert channels are known. This paper is an attempt to reveal a new covert channel, not only being specific to smartphones, but also exploiting an unusual resource as a vehicle to carry covert information: sensors data. Accelerometers generate signals that reflect user motions, and malware applications can apparently only read their data. However, if the vibration motor on the device is used properly, programmatically produced vibration patterns can encode stolen data and hence an application can cause discernible effects on acceleration data to be received and decoded by another application. Our evaluations confirmed a real threat where strings of tens of characters could be transmitted errorless if the throughput is reduced to around 2.5–5 bps. The proposed covert channel is very stealthy as no unusual permissions are required and there is no explicit communicationAbstract : Covert channels are not new in computing systems, and have been studied since their first definition four decades ago. New platforms invoke thorough investigations to assess their security. Now is the time for Android platform to analyze its security model, in particular the two key principles: process-isolation and the permissions system. Aside from all sorts of malware, one threat proved intractable by current protection solutions, that is, collusion attacks involving two applications communicating over covert channels. Still no universal solution can countermeasure this sort of attack unless the covert channels are known. This paper is an attempt to reveal a new covert channel, not only being specific to smartphones, but also exploiting an unusual resource as a vehicle to carry covert information: sensors data. Accelerometers generate signals that reflect user motions, and malware applications can apparently only read their data. However, if the vibration motor on the device is used properly, programmatically produced vibration patterns can encode stolen data and hence an application can cause discernible effects on acceleration data to be received and decoded by another application. Our evaluations confirmed a real threat where strings of tens of characters could be transmitted errorless if the throughput is reduced to around 2.5–5 bps. The proposed covert channel is very stealthy as no unusual permissions are required and there is no explicit communication between the colluding applications. … (more)
- Is Part Of:
- TheScientificWorldjournal. Volume 2014(2014)
- Journal:
- TheScientificWorldjournal
- Issue:
- Volume 2014(2014)
- Issue Display:
- Volume 2014, Issue 2014 (2014)
- Year:
- 2014
- Volume:
- 2014
- Issue:
- 2014
- Issue Sort Value:
- 2014-2014-2014-0000
- Page Start:
- Page End:
- Publication Date:
- 2014-09-11
- Subjects:
- Science -- Periodicals
Technology -- Periodicals
Medicine -- Periodicals
505 - Journal URLs:
- https://www.hindawi.com/journals/tswj/biblio/ ↗
- DOI:
- 10.1155/2014/969628 ↗
- Languages:
- English
- ISSNs:
- 2356-6140
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library HMNTS - ELD Digital store
- Ingest File:
- 23518.xml