Wired Keyboards under attack

Berry van der Linden
Categories : Smb security ,Computing
Tags : Computing smb security topics phishing

Page content

This article provides additional detail to the previously reported findings. You can visit the original wired and wireless keyboard security article written by Peter Suciu.

How does it work?

Martin Vuagnoux and Sylvain Pasini two students at the computer science lab of EPFL (Security and Cryptography Laboratory in Lausanne) experimented and found the following.

What do you usually type on your keyboard? Passwords to access all online accounts and bank accounts. These passwords could be intercepted. They are able to decode the Electromagnetic Emanations of the keyboard from a distance of 20m (65.6 feet) and even from another room.

Experiment One

The PS/2 keyboard used is removed from it’s computer and LCD screen. It’s connected to a laptop of which the power adapter is removed. They have to do this to prevent interference of the magnetic waves from these devices.

The eavesdrop computer is a basic desktop PC with a wire antenna of 1m (3.28 feet). They did not reveal how the antenna is hooked up to the computer.

On the Keyboard they now type “trust no one” and on the eavesdrop PC after decoding is done it reads “trust no one” you can watch the video of this on there website link at the bottom of this article.

Experiment Two

The keyboard is hooked up like experiment number one. The eavesdrop PC however is in the adjacent room. It now has a Bi conical antenna connected. They type “password” and the eavesdropper it as “password”. This experiment is interesting because they went through a wall that was made of drywall with power outlets in it. And had no problem reading the decoded message on the eavesdrop PC.

11 Keyboards Tested

They tested 11 keyboards, 9 PS/2 / USB keyboards and two laptops using one of four different ways to fully or partially receive the keystrokes.

Why Is This Interesting?

Everybody can guess what this means. People putting in their passwords or credit card information and hacker reading the keyboard output on a remote location. As they improve the techniques, this might become usable for both government and hackers alike.

Sources For This Article:

https://lasecwww.epfl.ch/keyboard/ < The video’s are here.

https://news.bbc.co.uk/2/hi/technology/7681534.stm

https://www.money.co.uk/article/1001738-wired-keyboards-not-safe-for-sensitive-data.htm