all InfoSec news
A Side-channel Analysis of Sensor Multiplexing for Covert Channels and Application Fingerprinting on Mobile Devices. (arXiv:2110.06363v2 [cs.CR] UPDATED)
cs.CR updates on arXiv.org arxiv.org
Mobile devices often distribute measurements from a single physical sensor to
multiple applications using software-based multiplexing. On Android devices,
the highest requested sampling frequency is returned to all applications even
if other applications request measurements at lower frequencies. In this paper,
we comprehensively demonstrate that this design choice exposes practically
exploitable side-channels based on frequency-key shifting. By carefully
modulating sensor sampling frequencies in software, we show that unprivileged
malicious applications can construct reliable spectral covert channels that
bypass existing security …
analysis application devices fingerprinting mobile mobile devices side-channel