Bekaert, Paul ; Alotaibi, Norah ; Mathis, Florian ; Gerber, Nina ; Rafferty, Aidan Christopher ; Khamis, Mohamed ; Marky, Karola (2022)
Are thermal attacks a realistic threat? Investigating the preconditions of thermal attacks in users’ daily lives.
Nordic Human-Computer Interaction Conference (NordiCHI '22). Aarhus, Denmark (08.10.2022-12.10.2022)
doi: 10.1145/3546155.3546706
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
Thermal attacks refer to the possibility of capturing heat traces that result from interacting with user interfaces to reveal sensitive input, such as passwords. The technical feasibility and effectiveness of thermal attacks have already been demonstrated. Yet, several preconditions have to be met for successful thermal attacks. In this paper, we investigate user awareness of thermal attacks and to which extent the attack's preconditions are met in the users’ daily lives. We present results from an online study with 101 participants showing that users are frequently at risk of thermal attacks based on their behavior, e.g., due to leaving devices unattended, or their choice of authentication method. Further, only 7 of our 101 participants had heard of thermal attacks. Based on our results, we discuss the implications on user security, operators of public spaces, and the development of thermal attack-resistant input methods.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2022 |
| Autor(en): | Bekaert, Paul ; Alotaibi, Norah ; Mathis, Florian ; Gerber, Nina ; Rafferty, Aidan Christopher ; Khamis, Mohamed ; Marky, Karola |
| Art des Eintrags: | Bibliographie |
| Titel: | Are thermal attacks a realistic threat? Investigating the preconditions of thermal attacks in users’ daily lives |
| Sprache: | Englisch |
| Publikationsjahr: | 2022 |
| Ort: | New York, USA |
| Verlag: | ACM |
| Buchtitel: | Proceedings of the 12th Nordic Conference on Human-Computer Interaction |
| Veranstaltungstitel: | Nordic Human-Computer Interaction Conference (NordiCHI '22) |
| Veranstaltungsort: | Aarhus, Denmark |
| Veranstaltungsdatum: | 08.10.2022-12.10.2022 |
| DOI: | 10.1145/3546155.3546706 |
| URL / URN: | https://dl.acm.org/doi/10.1145/3546155.3546706 |
| Kurzbeschreibung (Abstract): | Thermal attacks refer to the possibility of capturing heat traces that result from interacting with user interfaces to reveal sensitive input, such as passwords. The technical feasibility and effectiveness of thermal attacks have already been demonstrated. Yet, several preconditions have to be met for successful thermal attacks. In this paper, we investigate user awareness of thermal attacks and to which extent the attack's preconditions are met in the users’ daily lives. We present results from an online study with 101 participants showing that users are frequently at risk of thermal attacks based on their behavior, e.g., due to leaving devices unattended, or their choice of authentication method. Further, only 7 of our 101 participants had heard of thermal attacks. Based on our results, we discuss the implications on user security, operators of public spaces, and the development of thermal attack-resistant input methods. |
| Zusätzliche Informationen: | Article No.: 76 |
| Fachbereich(e)/-gebiet(e): | DFG-Graduiertenkollegs DFG-Graduiertenkollegs > Graduiertenkolleg 2050 Privacy and Trust for Mobile Users Profilbereiche Profilbereiche > Cybersicherheit (CYSEC) 03 Fachbereich Humanwissenschaften Forschungsfelder Forschungsfelder > Information and Intelligence Forschungsfelder > Information and Intelligence > Cybersecurity & Privacy 03 Fachbereich Humanwissenschaften > Institut für Psychologie 03 Fachbereich Humanwissenschaften > Institut für Psychologie > Arbeits- und Ingenieurpsychologie |
| Hinterlegungsdatum: | 19 Sep 2023 14:24 |
| Letzte Änderung: | 21 Sep 2023 06:48 |
| PPN: | 511791526 |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum