Computer Keyboard Hacking

Oct 22, 2008 by John Messina weblog
Computer kyboard (Wired)

(PhysOrg.com) -- Swiss researchers from the Security and Cryptography Laboratory have demonstrated different ways of eavesdropping on wired keyboards from at least 11 different models. The keyboards range from the latest ones to the ones used in 2001. Test show that all these keyboards were vulnerable to at least four of their attacks.

The researchers found that most modern keyboards generate electromagnetic emanations that can be used to decipher the keystrokes remotely. They used some basic instruments to "sniff" these electromagnetic emissions, which eventually helped them to decipher the keystrokes typed.

By using a wireless aerial, keystrokes were sniffed from a computer located a meter away. Once the data is sniffed, it is converted into decipherable text with software developed by Vuagnoux.

Another test revealed that keystrokes, from a computer in an adjacent room 20 to 30 feet away, could be deciphered by using a larger antenna.

It has been conclude that wired computer keyboards, sold in stores, generate compromising emanations that make it not safe to transmit sensitive information.

Electromagnetic eavesdropping dates back to as early as the mid 1980s, if not earlier. But Researchers say many of today´s keyboards have been adapted to prevent those attacks from working. Current research now shows that even these keyboards are vulnerable to electromagnetic sniffing.

It can be seen that such attacks would be limited due to electromagnetic interference from other electrical devices. The other thing that makes the attack unfeasible is the amount of sophisticated equipment required. Given all the fuss and expense, why not just use a more conventional method.

Compromising Electromagnetic Emanations of Keyboards Experiment 1/2

Compromising Electromagnetic Emanations of Keyboards Experiment 2/2

Related links:
lasecwww.epfl.ch/keyboard/
www.cl.cam.ac.uk/~mgk25/ih98-tempest.pdf

Explore further: CHIKV challenge asks teams to forecast the spread of infectious disease

add to favorites email to friend print save as pdf

Related Stories

G19 keyboard goes way beyond typing

Mar 25, 2009

It seems like the ordinary is no longer acceptable when it comes to the ordinary things we attach to our computers these days. For example, I'll bet the computer mouse you are using is at the very least an ...

Google Glass may run with laser-projected keyboard

Jan 18, 2013

(Phys.org)—Just when you thought you could swing into 2013 without another report on Google Glass in-the-wings, this is the week your luck runs out. Ideas continue to fly regarding what could possibly be ...

Civilian 'hacktivists' fighting terrorists online

Sep 17, 2012

Working from a beige house at the end of a dirt road, Jeff Bardin switches on a laptop, boots up a program that obscures his location, and pecks in a passkey to an Internet forum run by an Iraqi branch of al-Qaida.

Recommended for you

User comments : 7

Adjust slider to filter visible comments by rank

Display comments: newest first

Falcon
5 / 5 (4) Oct 22, 2008
and not a mention of WIRELESS keyboards, their signals can probably be copied right out of the air...
Lord_jag
5 / 5 (2) Oct 22, 2008
Yep! It certianly can. And the signals are really quite easy to detect and decipher.

It's not inteded to be a security device, it's intended to be a convenience device.

The only security it has is the extremely low power transmitter only goes a few feet unless you get a really good antenna.
ShadowRam
4.7 / 5 (3) Oct 22, 2008
Yup, Look up "Blue Tooth Sniper Rifle"

Reading Wireless Keyboards is REAL easy.
thales
4 / 5 (2) Oct 22, 2008
Kinda like Van Eck Phreaking.
jeffsaunders
2 / 5 (2) Oct 22, 2008
Did Mission impossible do this a few years ago?

Probably standard equipment in spy schools.

Not the sort of thing Joe Geek will be able to do without University funding.
Falcon
3.3 / 5 (3) Oct 23, 2008
( accidental post)
Zig158
not rated yet Oct 25, 2008
Jeff I disagree, check out http://www.wartyping.com/
to see what I mean.
I don't see why you could not use a wifi sniffer program to capture the data and then just brute force the encryption.