Towards robustness of keyboard-entered authentication factors with thermal wiping against thermographic attacks
| dc.contributor.author | Fritsch, Lothar | |
| dc.contributor.author | Mecaliff, Marie | |
| dc.contributor.author | Opdal, Kathinka W. | |
| dc.contributor.author | Rundgreen, Mathias | |
| dc.contributor.author | Sachse, Toril | |
| dc.contributor.editor | Roßnagel, Heiko | |
| dc.contributor.editor | Schunck, Christian H. | |
| dc.contributor.editor | Mödersheim, Sebastian | |
| dc.date.accessioned | 2022-06-07T07:04:29Z | |
| dc.date.available | 2022-06-07T07:04:29Z | |
| dc.date.issued | 2022 | |
| dc.description.abstract | Many authentication methods use keyboard entry for one of their authentication factors. Keyboards factors have been compromised exploiting physical fingerprints, substances from fingers visible on keys, with acoustic recordings through mobile phones, and through video reflections captured by high-resolution cameras used for video conferencing. Heat transfer from human fingers to keypads is an additional attack channel that has been demonstrated. There are few mitigation measures published against this type of attack. This article summarizes the feasibility of thermographic attacks against computer keyboards and against door pin pads, as well as the efficiency of the scrubbing technique deployed in order to counter thermographic attacks. For this purpose, a series of experiments with small, mobile thermal cameras were carried out. We report findings such as time intervals and other constraints for successful laboratory observation of authentication factors, describe scrubbing methods and report the performance of those methods. | en |
| dc.identifier.doi | 10.18420/OID2022_01 | |
| dc.identifier.isbn | 978-3-88579-719-7 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/38696 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | Open Identity Summit 2022 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-305 | |
| dc.subject | password hijacking | |
| dc.subject | infrared camera | |
| dc.subject | thermographic attack | |
| dc.subject | thermal imaging | |
| dc.subject | authentication factor | |
| dc.subject | identity management | |
| dc.subject | information security | |
| dc.subject | scrubbing | |
| dc.subject | thermal lock picking. | |
| dc.title | Towards robustness of keyboard-entered authentication factors with thermal wiping against thermographic attacks | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 26 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 15 | |
| gi.conference.date | 07.-08. July 2022 | |
| gi.conference.location | Copenhagen, Denmark | |
| gi.conference.sessiontitle | Regular Research Papers |
Dateien
Originalbündel
1 - 1 von 1