Social Icons

Saturday, June 2, 2018

Smartphones: These researchers can guess your secret code by filming your eyes

The movements of the eyes can induce those of the fingers that enter the PIN code or the unlocking pattern. A discrete attack and relatively effective.
The next time you enter your PIN or unlock pattern on your smartphone, make sure there is no camera pointing at you. Or wear tinted glasses. Because it is possible to become your secret code from the movements that make your eyes while you tap on your screen. This is what researchers from the universities of Delaware and Arizona have just proved, at the IEEE S & P 2018 conference in San Francisco. They named their attack "EyeTell".

Thus, these researchers filmed the eyes of 22 people with a Panasonic HCV7000 camcorder a few meters away, while they entered PIN codes on an iPhone 6s or unlocking schemes on a Nexus 6. The videos were then analyzed by a batteries of image detection and sorting algorithms to deduce the movement of the fingers.

The results are rather interesting. PIN codes and patterns could be found with a respective probability of 57% and 39%. Better: the system can offer a dozen potential secret codes with a probability of 75.3% and 80% respectively to find that of the person targeted.
What have a good chance to unlock the device softly while avoiding a possible deletion of data (if the user has enabled this type of option).
The EyeTell attack also allows to find an alphanumeric password with a probability of 48%. This considerably reduces the time required for a possible brute force attack.
Paradoxically, the detection rate increases with the complexity of the secret code. A diagram with eight segments is easier to find than a diagram with four segments, the detection rate can sometimes increase by 18 points.
Similarly, a PIN code with 6 digits will be revealed faster than a PIN code with 4 digits, with a probability difference of up to 6%. This is because the complexity of the code reduces the number of possibilities in the sorting algorithm.

To protect against this type of attack, it's quite simple, just wear sunglasses. But it's not always very practical. Another solution is to practice entering your secret code without moving your eyes. Or very quickly, to bring down the detection rate.

This is not the first time researchers have been trying to guess keyboard strikes from movement or physical emanations. In 2015, researchers showed that we could transform the microphones of a smartphone or the sensors of a connected watch into a keylogger. Other, even more strange, routes have been explored in recent years, such as the interference of finger movements with Wi-Fi waves (WindTalker, WiKey). On smartphones, these attacks will be less and less effective as biometric authentication ... which is not flawless either.

Source : 01net

No comments:

Post a Comment

Category Of Mobile Courses

Actualités (644) Adsense (1) Affiliation (1) Algebraic Topology (1) Algorithmic (1) all-news (30) Android (5) Android App (8) Android app without code (4) Android Apps (167) Android Development (4) Android download (2) Android OS (3) AngularJS (1) Automata theory and formal language (5) C programming (5) Category and Functor (8) CMS (3) Computer Glossary (18) Create Mobile App With Ionic Framework (2) CSS (2) CSS-Cascading-Style-Sheets (4) Developpement Java (13) Differential Geometry (1) Django-Python-Framework (8) dropshiping (26) Earn Money by Internet (4) Emplois (23) Framework php (2) Fraud (2) HTML (7) Java For Beginners (10) Javascript (12) Kotlin Programming Language (8) Kotlin For Mobile Android (1) Linux Download (2) Marketing (5) Mobile (3) Mobile Courses (4) Mobile Marketing (4) MoneyGram (1) News (721) Node.js (5) Open Source (1) Photoshop (1) Protect Computer (1) Python (32) Python BeautifulSoup (1) Python For Data Science (2) Python-Books (6) Python-DVD-Training (1) Python-Exercises (123) Python-Framework (1) Python-IDE (1) Python-Modules (1) Python-pdf (2) Python-pyQt (1) Référencement (2) Script PHP (2) Security (6) SEO (1) Snipping Tool: Faq (1) Social Networks (1) Source Code (1) Statistics With SPSS (2) Surveillance Software (1) Travail à domicile (6) Tutoriels php en vidéos (2) Tutoriels-MySql (6) tutoriels-php (19) Utilitaires (1) VPS (1) Web Hosting (1) Webcam (1) Webmarketing (11) Western Union (1) Windows 10 (1) Windows 7 (4) Windows 7 Faq (2) Windows 8 (1) Windows Accessories (1) Windows Download (8) Windows Drivers (1) Windows Fonts (1) Windows Power Shell (2) Windows Registry (2) Windows Security (18) Windows Software (2) Windows Spyware (2) Windows utilities (3) Windows Virus (2) Windows Vista (3) Windows Wireless (1) Windows xp (1) Wordpress (1)

Sample text

Sample Text

Blogger Templates