Example demonstrating how accelerometer data shared with separate traffic and health applications could indicate Bob’s location. – See more at: http://www.ece.illinois.edu/mediacenter/article.asp?id=7897#sthash.QGpqmL9Q.dpuf
“That’s a serious threat.”
- Research by Associate Professor Romit Roy Choudhury and graduate students Sanorita Dey and Nirupam Roy have demonstrated that the accelerometers used in mobile devices posses unique, trackable fingerprints.
- This suggests that even when a smartphone application doesn’t ask for geospatial information (“…would like to use your current location”), there are other surreptitious means of extracting that information.
- These fingerprints stem from subtle idiosyncrasies in device manufacturing and are reflected in the unprotected data shared with numerous applications.
Fingerprints — those swirling residues left on keyboards and doorknobs — are mostly invisible. They can affirm your onetime presence, but they cannot be used to track your day-to-day activities.
They cannot tell someone in real time that after exercising at the gym, you went to office in a bus and played video games during lunch. But what if our hand-held electronics are leaving real-time fingerprints instead? Fingerprints that are so intrinsic to the device that, like our own, they cannot be removed?
Research by Associate Professor Romit Roy Choudhury and graduate students Sanorita Dey and Nirupam Roy has demonstrated that these fingerprints exist within smartphone sensors, mainly because of imperfections during the hardware manufacturing process.
In some ways, it’s like cutting out sugar cookies. Even using the same dinosaur-shaped cutter, each cookie will come out slightly different: a blemish here, a pock there. For smartphone sensors, these imperfections simply occur at the micro- or nanoscale.
Their findings were published at the Network and Distributed System Security Symposium (NDSS), a major conference on wireless and web security, held last February in San Diego. The research also won the best poster award at the HotMobile international workshop in 2013.
Other collaborators on this project are Professors Srihari Nelakuditi and Wenyuan Xu at the University of South Carolina (USC). Roy and Dey completed their master’s degrees at USC, where they jointly won the Outstanding Thesis Award.
In the study, the researchers focused specifically on the accelerometer, a sensor that tracks three-dimensional movements of the phone — essential for countless applications, including pedometers, sleep monitoring, mobile gaming — but their findings suggest that other sensors could leave equally unique fingerprints.
“When you manufacture the hardware, the factory cannot produce the identical thing in millions,” Roy said. “So these imperfections create fingerprints.”
Of course, these fingerprints are only visible when accelerometer data signals are analyzed in detail. Most applications do not require this level of analysis, yet the data shared with all applications — your favorite game, your pedometer — bear the mark. Should someone want to perform this analysis, they could do so.
The researchers tested more than 100 devices over the course of nine months: 80 standalone accelerometer chips used in popular smartphones, 25 Android phones, and 2 tablets.
The accelerometers in all permutations were selected from different manufacturers, to ensure that the fingerprints weren’t simply defects resulting from a particular production line.
With 96 percent accuracy, the researchers could discriminate one sensor from another.
“We do not need to know any other information about the phone — no phone number or SIM card number,” Dey said. “Just by looking at the data, we can tell you which device it’s coming from. It’s almost like another identifier.”
In the real world, this suggests that even when a smartphone application doesn’t have access to location information (by asking “this application would like to use your current location”), there are other means of identifying the user’s activities. It could be obtained with an innocuous-seeming game or chatting service, simply by recording and sending accelerometer data. There are no regulations mandating consent.
To collect the data, the researchers — as with any would-be attacker — needed to sample the accelerometer data. Each accelerometer was vibrated using a single vibrator motor — like those that buzz when a text message is received — for two-second intervals. During those periods, the accelerometer detected the movement and the readings were transmitted to a supervised-learning tool, which decoded the fingerprint.
“Even if you erase the app in the phone, or even erase and reinstall all software,” Roy said, “the fingerprint still stays inherent. That’s a serious threat.”
The Latest on: Smartphone sensors
via Google News
The Latest on: Smartphone sensors
- Elliptic Labs AI Virtual Proximity Sensor INNER BEAUTY® Shipping on Xiaomi’s Top-Selling Redmi Note 10 and Note 10s Smartphoneson March 5, 2021 at 12:31 am
Elliptic Labs & Xiaomi announce the launch of top selling Redmi Note 10 and Note 10s, powered by Elliptic’s AI Virtual Proximity Sensor INNER BEAUTY ...
- Xiaomi officially unveils the Redmi Note 10 series smartphoneson March 4, 2021 at 2:53 pm
Xiaomi has officially made the Redmi Note 10 series official, unveiling a total of four different smartphones, including the Redmi Note 10 Pro, a $279 priced mid-ranger with Snapdragon 732G SoC, and 6 ...
- Samsung’s ISOCELL 2.0 Sensor Shrinks Pixels Without Quality Losson March 4, 2021 at 10:43 am
Samsung’s most recent sensors use what the company calls ISOCELL Plus technology, but the company has already improved on that tech with ISOCELL 2.0, which can give the smaller pixels found on ...
- Deals: Moto One 5G Ace Smartphone $380, Philips Hue gear from $42, moreon March 4, 2021 at 5:44 am
Today’s best deals are headlined by price cuts on on Motorola’s new 2021 Android smartphones from $160, as well as rare Philips Hue discounts from $42 and Garmin’s latest fitness smartwatches at $100 ...
- Mantis shrimp eyes inspire new optical sensoron March 4, 2021 at 1:45 am
A new optical sensor small enough to fit on a smartphone but capable of hyperspectral and polarimetric imaging gets its inspiration from mantis shrimp eyes.
- Global 3D Sensors Market Size, Share Research 2021, Business Opportunity, Global Trend, Future Growth, Key Findings and Forecast to 2023on March 3, 2021 at 6:23 pm
Global "3D Sensors Market" 2021 report discusses the market size, drivers and restraints, segment analysis, key ...
- Mantis shrimp inspires new breed of light sensorson March 3, 2021 at 11:05 am
Inspired by the eyes of mantis shrimp, researchers have developed a new kind of optical sensor that is small enough to fit on a smartphone but is capable of hyperspectral and polarimetric imaging.
- Meizu releases Meizu 18 and Meizu 18 Pro smartphones in Chinaon March 3, 2021 at 7:05 am
Qualcomm's Snapdragon 888 SoC and curved glass front for both phones As scheduled earlier, Meizu has now released its two new smartphones in China, the Meizu 18 Pro and the Meizu 18. Both smartphones ...
- Realme unveils 108MP sensor for upcoming Realme 8, Realme 8 Pro smartphones | All details hereon March 2, 2021 at 9:49 am
The Realme 8 series smartphones will have sharper photo quality, world's first tilt-shift time-lapse video, starry time-lapse video, and new portrait filters, the company said during the virtual event ...
- Samsung raises the smartphone camera stakes with high-tech new sensoron February 26, 2021 at 11:00 am
Smartphones have revolutionized photography, making it vastly easier than ever before to capture and share great images. And on the other side of the coin, camera advances are probably responsible for ...
via Bing News
