A framework for evaluating security in the presence of signal injection attacks
Sensors are embedded in security-critical applications from medical devices to nuclear power plants, but their outputs can be spoofed through electromagnetic and other types of signals transmitted by attackers at a distance. To address the lack of a unifying framework for evaluating the effect of su...
| Main Authors: | , , |
|---|---|
| Format: | Conference item |
| Published: |
Springer, Cham
2019
|
| _version_ | 1797090101373698048 |
|---|---|
| author | Giechaskiel, I Zhang, Y Rasmussen, K |
| author_facet | Giechaskiel, I Zhang, Y Rasmussen, K |
| author_sort | Giechaskiel, I |
| collection | OXFORD |
| description | Sensors are embedded in security-critical applications from medical devices to nuclear power plants, but their outputs can be spoofed through electromagnetic and other types of signals transmitted by attackers at a distance. To address the lack of a unifying framework for evaluating the effect of such transmissions, we introduce a system and threat model for signal injection attacks. We further define the concepts of existential, selective, and universal security, which address attacker goals from mere disruptions of the sensor readings to precise waveform injections. Moreover, we introduce an algorithm which allows circuit designers to concretely calculate the security level of real systems. Finally, we apply our definitions and algorithm in practice using measurements of injections against a smartphone microphone, and analyze the demodulation characteristics of commercial Analog-to-Digital Converters (ADCs). Overall, our work highlights the importance of evaluating the susceptibility of systems against signal injection attacks, and introduces both the terminology and the methodology to do so. |
| first_indexed | 2024-03-07T03:13:39Z |
| format | Conference item |
| id | oxford-uuid:b51093fe-6dbe-4281-b7a0-59c53adeab49 |
| institution | University of Oxford |
| last_indexed | 2024-03-07T03:13:39Z |
| publishDate | 2019 |
| publisher | Springer, Cham |
| record_format | dspace |
| spelling | oxford-uuid:b51093fe-6dbe-4281-b7a0-59c53adeab492022-03-27T04:30:36ZA framework for evaluating security in the presence of signal injection attacksConference itemhttp://purl.org/coar/resource_type/c_5794uuid:b51093fe-6dbe-4281-b7a0-59c53adeab49Symplectic Elements at OxfordSpringer, Cham2019Giechaskiel, IZhang, YRasmussen, KSensors are embedded in security-critical applications from medical devices to nuclear power plants, but their outputs can be spoofed through electromagnetic and other types of signals transmitted by attackers at a distance. To address the lack of a unifying framework for evaluating the effect of such transmissions, we introduce a system and threat model for signal injection attacks. We further define the concepts of existential, selective, and universal security, which address attacker goals from mere disruptions of the sensor readings to precise waveform injections. Moreover, we introduce an algorithm which allows circuit designers to concretely calculate the security level of real systems. Finally, we apply our definitions and algorithm in practice using measurements of injections against a smartphone microphone, and analyze the demodulation characteristics of commercial Analog-to-Digital Converters (ADCs). Overall, our work highlights the importance of evaluating the susceptibility of systems against signal injection attacks, and introduces both the terminology and the methodology to do so. |
| spellingShingle | Giechaskiel, I Zhang, Y Rasmussen, K A framework for evaluating security in the presence of signal injection attacks |
| title | A framework for evaluating security in the presence of signal injection attacks |
| title_full | A framework for evaluating security in the presence of signal injection attacks |
| title_fullStr | A framework for evaluating security in the presence of signal injection attacks |
| title_full_unstemmed | A framework for evaluating security in the presence of signal injection attacks |
| title_short | A framework for evaluating security in the presence of signal injection attacks |
| title_sort | framework for evaluating security in the presence of signal injection attacks |
| work_keys_str_mv | AT giechaskieli aframeworkforevaluatingsecurityinthepresenceofsignalinjectionattacks AT zhangy aframeworkforevaluatingsecurityinthepresenceofsignalinjectionattacks AT rasmussenk aframeworkforevaluatingsecurityinthepresenceofsignalinjectionattacks AT giechaskieli frameworkforevaluatingsecurityinthepresenceofsignalinjectionattacks AT zhangy frameworkforevaluatingsecurityinthepresenceofsignalinjectionattacks AT rasmussenk frameworkforevaluatingsecurityinthepresenceofsignalinjectionattacks |