Detecting smartphone state changes through a Bluetooth based timing attack

Guillaume Celosia 1 Mathieu Cunche 1
1 PRIVATICS - Privacy Models, Architectures and Tools for the Information Society
Inria Grenoble - Rhône-Alpes, CITI - CITI Centre of Innovation in Telecommunications and Integration of services
Abstract : Bluetooth is a popular wireless communication technology that is available on most mobile devices. Although Bluetooth includes security and privacy preserving mechanisms, we show that a Blue-tooth harmless inherent request-response mechanism can taint users privacy. More specifically, we introduce a timing attack that can be triggered by a remote attacker in order to infer information about a Bluetooth device state. By observing the L2CAP layer ping mechanism timing variations, it is possible to detect device state changes, for instance when the device goes in or out of the locked state. Our experimental results show that change point detection analysis of the timing allows to detect device state changes with a high accuracy. Finally, we discuss applications and countermeasures.
Type de document :
Communication dans un congrès
WiSec '18 - 11th ACM Conference on Security & Privacy in Wireless and Mobile Networks, Jun 2018, Stockholm, Sweden. pp.154-159, 2018, 〈10.1145/3212480.3212494〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01870011
Contributeur : Guillaume Celosia <>
Soumis le : lundi 10 septembre 2018 - 12:47:49
Dernière modification le : samedi 27 octobre 2018 - 01:19:54
Document(s) archivé(s) le : mardi 11 décembre 2018 - 14:17:56

Fichier

main.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Guillaume Celosia, Mathieu Cunche. Detecting smartphone state changes through a Bluetooth based timing attack. WiSec '18 - 11th ACM Conference on Security & Privacy in Wireless and Mobile Networks, Jun 2018, Stockholm, Sweden. pp.154-159, 2018, 〈10.1145/3212480.3212494〉. 〈hal-01870011〉

Partager

Métriques

Consultations de la notice

105

Téléchargements de fichiers

164