Open AccessJournal Article
Security limits for compromising emanations
42
TL;DR: While the presented discussion aims specifically at far-field video eavesdropping in the VHF and UHF bands, the most easy to demonstrate risk, much of the presented approach for setting test limits could be adapted equally to address other RF emanation risks.
read more
Abstract: Nearly half a century ago, military organizations introduced Tempest emission-security test standards to control information leakage from unintentional electromagnetic emanations of digital electronics. The nature of these emissions has changed with evolving technology; electromechanic devices have vanished and signal frequencies increased several orders of magnitude. Recently published eavesdropping attacks on modern flat-panel displays and cryptographic coprocessors demonstrate that the risk remains acute for applications with high protection requirements. The ultra-wideband signal processing technology needed for practical attacks finds already its way into consumer electronics. Current civilian RFI limits are entirely unsuited for emission security purposes. Only an openly available set of test standards based on published criteria will help civilian vendors and users to estimate and manage emission-security risks appropriately. This paper outlines a proposal and rationale for civilian electromagnetic emission-security limits. While the presented discussion aims specifically at far-field video eavesdropping in the VHF and UHF bands, the most easy to demonstrate risk, much of the presented approach for setting test limits could be adapted equally to address other RF emanation risks.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Current events: Identifying webpages by tapping the electrical outlet
Shane S. Clark,Hossen Asiful Mustafa,Benjamin Ransford,Jacob Sorber,Kevin Fu,Wenyuan Xu,Wenyuan Xu +6 more
- 09 Sep 2013
TL;DR: This work constructs a classifier that correctly identifies unlabeled power traces of webpage activity from a set of 51 candidates with 99% precision and 99% recall, and identifies the AC power side channel that leaks private information about web browsing to an observer taking measurements at the power outlet.
Modeling of Leaked Digital Video Signal and Information Recovery Rate as a Function of SNR
TL;DR: In this study, a situation in which the signal from a digital video system is intercepted is modeled using full-wave electromagnetic and circuit simulations and the readability of characters on a hypothetical screen as a function of the BER of the recovery signals is presented.
66
Diagnostic powertracing for sensor node failure analysis
Mohammad Maifi Hasan Khan,Hieu Le,Michael LeMay,Parya Moinzadeh,Lili Wang,Yong Yang,Dong Kun Noh,Tarek Abdelzaher,Carl A. Gunter,Jiawei Han,Xin Jin +10 more
- 12 Apr 2010
TL;DR: This paper introduces the tele-diagnostic powertracer, an in-situ troubleshooting tool that uses external power measurements to determine the internal health condition of an unresponsive host and the most likely cause of its failure.
Characterization of the electromagnetic side channel in frequency domain
Olivier Meynard,Denis Réal,Sylvain Guilley,Florent Flament,Jean-Luc Danger,Frédéric Valette +5 more
- 20 Oct 2010
TL;DR: A set of tests based on cryptanalysis methods that will help vendors and users of sensitive devices to estimate the security risks due to leakage through electromagnetic emanations by identifying and focusing on the signals' frequencies leaking the most information are introduced.
35
References
The indoor radio propagation channel
H. Hashemi
- 01 Jul 1993
TL;DR: In this paper, a tutorial survey of radio propagation in indoor environments is presented, where the channel is modeled as a linear time-varying filter at each location in the 3D space, and the properties of the filter's impulse response are described.
1.7K
A multipath model for the powerline channel
M. Zimmermann,K. Dostert +1 more
TL;DR: An analytic model describing complex transfer functions of typical powerline networks using only a small set of parameters is presented, based on physical signal propagation effects in mains networks including numerous branches and impedance mismatching.
1.2K
Electromagnetic radiation from video display units: an eavesdropping risk?
TL;DR: The results of research into the possibility of “eavesdropping” on video display units, by picking up and decoding the electromagnetic interference produced by this type of equipment are described.
570
Compromising emanations: eavesdropping risks of computer displays
Markus G. Kuhn
- 01 Jan 2003
TL;DR: A proposal for a civilian radio-frequency emission-security standard is outlined, based on path-loss estimates and published data about radio noise levels, and a new optical eavesdropping technique is demonstrated that reads CRT displays at a distance.
•Proceedings Article
Acoustic side-channel attacks on printers
Michael Backes,Markus Dürmuth,Sebastian Gerling,Manfred Pinkal,Caroline Sporleder +4 more
- 11 Aug 2010
TL;DR: A novel attack is presented that recovers what a dot-matrix printer processing English text is printing based on a record of the sound it makes, if the microphone is close enough to the printer.