loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Arthur Costa Lopes and Diego F. Aranha

Affiliation: University of Campinas, Brazil

Keyword(s): Covert Channel, Data Exfiltration, Information Hiding, Air-gapped Machines, Error-correcting Codes.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Information Assurance ; Information Hiding

Abstract: Information leakage through covert channels is a growing and persistent threat, even for physical perimeters considered as highly secure. We study a new approach for data exfiltration using a malicious storage device which subtly transmits data through blinking infrared LEDs. This approach could be used by an attacker trying to leak sensitive data stored in the device, such as credentials, cryptographic keys or a small classified document. An ideal application for this approach is when an attacker is capable of sneaking a malicious device inside a protected perimeter and has remote control over a camera inside such perimeter. The device can then collect information and transmit directly to the attacker, without the need of recovering the device to obtain the captured information, erase evidence or prevent a forensic investigation. We discuss techniques for improving communication efficiency up to 15 bits per second per LED, and possible countermeasures for mitigation.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 54.234.184.8

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Costa Lopes, A. and Aranha, D. (2017). Platform-agnostic Low-intrusion Optical Data Exfiltration. In Proceedings of the 3rd International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-209-7; ISSN 2184-4356, SciTePress, pages 474-480. DOI: 10.5220/0006211504740480

@conference{icissp17,
author={Arthur {Costa Lopes}. and Diego F. Aranha.},
title={Platform-agnostic Low-intrusion Optical Data Exfiltration},
booktitle={Proceedings of the 3rd International Conference on Information Systems Security and Privacy - ICISSP},
year={2017},
pages={474-480},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006211504740480},
isbn={978-989-758-209-7},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 3rd International Conference on Information Systems Security and Privacy - ICISSP
TI - Platform-agnostic Low-intrusion Optical Data Exfiltration
SN - 978-989-758-209-7
IS - 2184-4356
AU - Costa Lopes, A.
AU - Aranha, D.
PY - 2017
SP - 474
EP - 480
DO - 10.5220/0006211504740480
PB - SciTePress