Analyzing and Defending GhostTouch Attack against Capacitive Touchscreens
IEEE Transactions on Dependable and Secure Computing(2024)
摘要
Capacitive touchscreens have become the primary human-machine interface for personal devices such as smartphones and tablets. In this paper, we present
GhostTouch
, the first active contactless attack against capacitive touchscreens.
GhostTouch
uses electromagnetic interference (EMI) to inject fake touch points into a touchscreen without the requirement to physically touch it. By tuning the parameters of the electromagnetic signal and adjusting the antenna, we can inject two types of basic touch events, taps and swipes, into targeted locations of the touchscreen and control them to manipulate the underlying device. We successfully launch the
GhostTouch
attacks on nine smartphone models. We can inject targeted taps continuously with a standard deviation of as low as
$14.6 \times 19.2$
pixels from the target area, and a distance of up to
$40mm$
. We show the real-world impact of the
GhostTouch
attacks in a few proof-of-concept scenarios, including pressing the button, answering an eavesdropping phone call, and swiping up to unlock. Finally, we propose touchscreen reinforcement and attack detection mechanisms to mitigate the threat of
GhostTouch
attack.
更多查看译文
关键词
Capacitive touchscreen,EMI attack,countermeasures
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要