Skip to main content

Your Phone's Sensor can be used to track you without your Permission using calibration fingerprinting attack, Says new study

Whether you are using iOS or Android device, you can be tracked without your permission according to the recent paper published by IEEE Security team.

Called Calibration Fingerprinting attack, this new type of attack can be executed with just the help of sensors like gyroscope and accelerometer found on your mobile. And they successfully overcame the problem of device not being stationary too.



Researchers says, your phone's sensors can be easily accessed, when you visit a website using java script and with the help of a native app and that is because it doesn't require any special permissions to access sensors despite several security features included in Android and iOS to prevent device fingerprinting. 

A calibration fingerprinting attack infers the predevice factory calibration data from a device by careful analysis of the sensor output alone. Such an attack does not require direct access to any calibration parameters since these are often embedded inside the firmware of the device and are not
directly accessible by application developers. We demonstrate the potential of this new class of attack by performing calibration fingerprinting attacks on the inertial measurement unit sensors found in iOS and Android devices.
Natural variation during the manufacture of embedded sensors means that the output of each sensor is unique and therefore they may be exploited to create a device fingerprint, explains the post.

They demonstrated the attack by generating GyroID for the device (which they accomplish for iOS using code written in swift) and even if there is any shake during the process of generation, it will analyse another 100 raw sample data, and if needed another 100 until it succeeds, and to complete all this data process requires just 0.01 Seconds explains the POC.


This new study shows how we are vulnerable to latest technologies, and explains the need for improvised security.

You can read this complete paper here.

Comments

Popular posts from this blog

How to connect Bluetooth in Kali Linux 2019.2 (or) How to enable Bluetooth in Kali Linux Latest version

How to connect Bluetooth in Kali Linux 2019.2 or how to enable or problem fix bluetooth on latest version of Kali Linux this would be the great problem experienced by beginners of Linux, particularly if you are Kali Linux user. The Reason is,  When you opened the bluetooth using the normal GUI, it will display "Bluetooth Turned Off, Turn on to Connect devices and receive file transfers", even when you slided the option to right side on the top right corner (which normally indicates the option is turned on). So, what you need to do ? You don't need to perform any vast operations, all you need to do is to just start bluetooth service in your Kali Linux OS. OK, but how to do it? Just follow the below steps. How to turn on Bluetooth in Kali Linux latest version. 1) Open terminal 2) Type the following command and Hit Enter sudo systemctl start bluetooth.service or you can even use this simple command   service bluetooth restart 3) Hit enter.

Error Writing the values New contents in Registry - How to Fix on Windows [Tutorial]

When we create or alter registry keys we will be sometimes faced with an error "Cannot edit (the name of the registry key) : Error Writing the value's new contents. Though this issue can be rectified sometimes with running Registry editor as Administrator,it won't work every time,as Windows Will automatically restrict us when it knows we are changing its key components. We can still gain the permissions by using the following method.. Just follow the steps.. 1) Press Windows + R Keys 2) Type Regedit 3) Hit Enter. [To Assist you better i had created the above video tutorial,check it if you need help,Thanks..] Backup Your registry first,refer below link for doing how to... https://windowsexploredforu.blogspot.com/2016/11/how-to-backup-registry-on-Windows10-Windows8.1.html (Now,go to the registry key you wish to change) 4) Right click on the Key(folder) which are available on the left pane. for example: Microsoft 5) When you right clicked,i

How to activate and deactivate slide to shutdown feature in Windows 10

We Can Shut down our Windows 10 PC in many Ways,like using alt+f4,start,run,etc here is  an another way to shut down our Windows 10 PC especially useful in touch enabled  PC's.All we need to  perform is  a simple slide. How to do it ??  Enabling Slide to Shutdown is an easy process,just follow the Upcoming steps. Step 1 : login to Your Windows 10 PC. Step 2 : Press Windows logo + R Key. Step 3 : It Will Pop up run command,on that type Slidetoshutdown Step 4 : Hit enter That's it,now pull down the screen to perform Shudown. How to disable it ?? By default,When you restart your PC,slide to shutdown option is turned off,if your PC still  displays the message,you can disable it... For that do as follows. Open control panel. [ See :   How to Open Control Panel Easily ] Click Troubleshooting. Click on the image to view full size Select improve power usage. Select next on the window that follows. Close and restart you