• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.
  • The forums have been upgraded with support for dark mode. By default it will follow the setting on your system/browser. You may override it by scrolling to the end of the page and clicking the gears icon.

Side channel attacks: a novel approach using light variations

1freedude

1freedude

Joined
Nov 16, 2007
Messages
1,268 (0.20/day)
Location
Hampton Roads
System Specs
Processor Xeon x5650
Motherboard SABERTOOTH X58
Cooling Fans
Memory 24 GB Kingston HyperX 1600
Video Card(s) GTX 1060 3GB
Storage small ssd
Display(s) Dell 2001F, BenQ short throw
Case Lian Li
Audio Device(s) onboard
Power Supply X750
Software Mint 19.3, Win 10
Benchmark Scores not so fast...
Check out this new way of gaining keys to stuff that's not yours.

Hackers can steal cryptographic keys by video-recording power LEDs 60 feet away

Key-leaking side channels are a fact of life. Now they can be done by video-recording power LEDs.
arstechnica.com

First time I ever heard about this type of snooping was in "Cryptonomicon," by Stephenson. I think it was called Van Eck phreaking. Not sure how much Neal invented to make the story work, but it is based on real science. He is among my favorite authors.
 
Last edited:
After giving the article a cursory glance...
I feel much more confident in my opinions that modern computers are under-shielded and many power circuits under-filtered.

1. A properly shielded enclosure and would mitigate a lot of the EM surveillance aspects. (Cheap cables purchased by EMF-ignorant IT departments, certainly do not help, either.)

2. Pure DC from a filtered (and induction shielded) supply would resolve the Power LED 'vector'. (Heck, I wonder if something as simple as a single STP pair for the LED's lead would mitigate the problem?)
 
You're over thinking it.....a piece of tape over the led
 
The article's last two paragraphs go over countermeasures and as @1freedude suggested, a piece of tape does the trick.

For now, people who are unsure about the vulnerability of their devices should consider placing opaque tape on power LEDs
Click to expand...

The researchers recommend several countermeasures that manufacturers can take to harden devices against video-based cryptanalysis. Chief among them is avoiding the use of indicative power LEDs by integrating a capacitor that functions as a "low pass filter." Another option is to integrate an operational amplifier between the power line and the power LED.
Click to expand...

My initial reaction upon reading the article was.

1687292550294.png
 
You must log in or register to reply here.
Back
Top