Synesthesia: Detecting screen content via remote acoustic side channels

Daniel Genkin; Mihir Pattani; Roei Schuster; Eran Tromer

doi:10.1109/SP.2019.00074

Synesthesia: Detecting screen content via remote acoustic side channels

Daniel Genkin, Mihir Pattani, Roei Schuster, Eran Tromer

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

We show that subtle acoustic noises emanating from within computer screens can be used to detect the content displayed on the screens. This sound can be picked up by ordinary microphones built into webcams or screens, and is inadvertently transmitted to other parties, e.g., during a videoconference call or archived recordings. It can also be recorded by a smartphone or ''smart speaker'' placed on a desk next to the screen, or from as far as 10 meters away using a parabolic microphone. Empirically demonstrating various attack scenarios, we show how this channel can be used for real-time detection of on-screen text, or users' input into on-screen virtual keyboards. We also demonstrate how an attacker can analyze the audio received during video call (e.g., on Google Hangout) to infer whether the other side is browsing the web in lieu of watching the video call, and which web site is displayed on their screen.

Original language	English
Title of host publication	Proceedings - 2019 IEEE Symposium on Security and Privacy, SP 2019
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	853-869
Number of pages	17
ISBN (Electronic)	9781538666609
DOIs	https://doi.org/10.1109/SP.2019.00074
State	Published - May 2019
Event	40th IEEE Symposium on Security and Privacy, SP 2019 - San Francisco, United States Duration: 19 May 2019 → 23 May 2019

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
Volume	2019-May
ISSN (Print)	1081-6011

Conference

Conference	40th IEEE Symposium on Security and Privacy, SP 2019
Country/Territory	United States
City	San Francisco
Period	19/05/19 → 23/05/19

Keywords

Acoustic-Leakage
Hardware-Security
Side-Channel-Attacks

Access to Document

10.1109/SP.2019.00074

Cite this

Genkin, D., Pattani, M., Schuster, R., & Tromer, E. (2019). Synesthesia: Detecting screen content via remote acoustic side channels. In Proceedings - 2019 IEEE Symposium on Security and Privacy, SP 2019 (pp. 853-869). Article 8835386 (Proceedings - IEEE Symposium on Security and Privacy; Vol. 2019-May). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SP.2019.00074

@inproceedings{9ca3264bfa144c6f9ceea1c365eeef8a,

title = "Synesthesia: Detecting screen content via remote acoustic side channels",

abstract = "We show that subtle acoustic noises emanating from within computer screens can be used to detect the content displayed on the screens. This sound can be picked up by ordinary microphones built into webcams or screens, and is inadvertently transmitted to other parties, e.g., during a videoconference call or archived recordings. It can also be recorded by a smartphone or ''smart speaker'' placed on a desk next to the screen, or from as far as 10 meters away using a parabolic microphone. Empirically demonstrating various attack scenarios, we show how this channel can be used for real-time detection of on-screen text, or users' input into on-screen virtual keyboards. We also demonstrate how an attacker can analyze the audio received during video call (e.g., on Google Hangout) to infer whether the other side is browsing the web in lieu of watching the video call, and which web site is displayed on their screen.",

keywords = "Acoustic-Leakage, Hardware-Security, Side-Channel-Attacks",

author = "Daniel Genkin and Mihir Pattani and Roei Schuster and Eran Tromer",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 40th IEEE Symposium on Security and Privacy, SP 2019 ; Conference date: 19-05-2019 Through 23-05-2019",

year = "2019",

month = may,

doi = "10.1109/SP.2019.00074",

language = "אנגלית",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "853--869",

booktitle = "Proceedings - 2019 IEEE Symposium on Security and Privacy, SP 2019",

address = "ארצות הברית",

}

Genkin, D, Pattani, M, Schuster, R & Tromer, E 2019, Synesthesia: Detecting screen content via remote acoustic side channels. in Proceedings - 2019 IEEE Symposium on Security and Privacy, SP 2019., 8835386, Proceedings - IEEE Symposium on Security and Privacy, vol. 2019-May, Institute of Electrical and Electronics Engineers Inc., pp. 853-869, 40th IEEE Symposium on Security and Privacy, SP 2019, San Francisco, United States, 19/05/19. https://doi.org/10.1109/SP.2019.00074

Synesthesia: Detecting screen content via remote acoustic side channels. / Genkin, Daniel; Pattani, Mihir; Schuster, Roei et al.
Proceedings - 2019 IEEE Symposium on Security and Privacy, SP 2019. Institute of Electrical and Electronics Engineers Inc., 2019. p. 853-869 8835386 (Proceedings - IEEE Symposium on Security and Privacy; Vol. 2019-May).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Synesthesia

T2 - 40th IEEE Symposium on Security and Privacy, SP 2019

AU - Genkin, Daniel

AU - Pattani, Mihir

AU - Schuster, Roei

AU - Tromer, Eran

PY - 2019/5

Y1 - 2019/5

N2 - We show that subtle acoustic noises emanating from within computer screens can be used to detect the content displayed on the screens. This sound can be picked up by ordinary microphones built into webcams or screens, and is inadvertently transmitted to other parties, e.g., during a videoconference call or archived recordings. It can also be recorded by a smartphone or ''smart speaker'' placed on a desk next to the screen, or from as far as 10 meters away using a parabolic microphone. Empirically demonstrating various attack scenarios, we show how this channel can be used for real-time detection of on-screen text, or users' input into on-screen virtual keyboards. We also demonstrate how an attacker can analyze the audio received during video call (e.g., on Google Hangout) to infer whether the other side is browsing the web in lieu of watching the video call, and which web site is displayed on their screen.

AB - We show that subtle acoustic noises emanating from within computer screens can be used to detect the content displayed on the screens. This sound can be picked up by ordinary microphones built into webcams or screens, and is inadvertently transmitted to other parties, e.g., during a videoconference call or archived recordings. It can also be recorded by a smartphone or ''smart speaker'' placed on a desk next to the screen, or from as far as 10 meters away using a parabolic microphone. Empirically demonstrating various attack scenarios, we show how this channel can be used for real-time detection of on-screen text, or users' input into on-screen virtual keyboards. We also demonstrate how an attacker can analyze the audio received during video call (e.g., on Google Hangout) to infer whether the other side is browsing the web in lieu of watching the video call, and which web site is displayed on their screen.

KW - Acoustic-Leakage

KW - Hardware-Security

KW - Side-Channel-Attacks

UR - http://www.scopus.com/inward/record.url?scp=85072913237&partnerID=8YFLogxK

U2 - 10.1109/SP.2019.00074

DO - 10.1109/SP.2019.00074

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:85072913237

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 853

EP - 869

BT - Proceedings - 2019 IEEE Symposium on Security and Privacy, SP 2019

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 19 May 2019 through 23 May 2019

ER -

Synesthesia: Detecting screen content via remote acoustic side channels

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this