Uncovering User Interactions on Smartphones via Contactless Wireless Charging Side Channels

Tao Ni, Xiaokuan Zhang, Chaoshun Zuo, Jianfeng Li, Zhenyu Yan, Wubing Wang, Weitao Xu, Xiapu Luo, Qingchuan Zhao

Research output: Chapter in book / Conference proceedingConference article published in proceeding or bookAcademic researchpeer-review

12 Citations (Scopus)

Abstract

Today, there is an increasing number of smartphones supporting wireless charging that leverages electromagnetic induction to transmit power from a wireless charger to the charging smartphone. In this paper, we report a new contactless and context-aware wireless-charging side-channel attack, which captures two physical phenomena (i.e., the coil whine and the magnetic field perturbation) generated during this wireless charging process and further infers the user interactions on the charging smartphone. We design and implement a three-stage attack framework, dubbed WISERS, to demonstrate the practicality of this new side channel. WISERS first captures the coil whine and the magnetic field perturbation emitted by the wireless charger, then infers (i) inter-interface switches (e.g., switching from the home screen to an app interface) and (ii) intra-interface activities (e.g., keyboard inputs inside an app) to build user interaction contexts, and further reveals sensitive information. We extensively evaluate the effectiveness of WISERS with popular smartphones and commercial-off-the-shelf (COTS) wireless chargers. Our evaluation results suggest that WISERS can achieve over 90.4% accuracy in inferring sensitive information, such as screen-unlocking passcode and app launch. In addition, our study also shows that WISERS is resilient to a list of impact factors.
Original languageEnglish
Title of host publicationProceedings of the IEEE Symposium on Security and Privacy (S&P)
PublisherIEEE
Pages3399-3415
ISBN (Electronic)10.1109/SP46215.2023.00105
DOIs
Publication statusPublished - May 2023
Event44th IEEE Symposium on Security and Privacy (S&P) - , United States
Duration: 22 May 202325 May 2023

Conference

Conference44th IEEE Symposium on Security and Privacy (S&P)
Country/TerritoryUnited States
Period22/05/2325/05/23

Fingerprint

Dive into the research topics of 'Uncovering User Interactions on Smartphones via Contactless Wireless Charging Side Channels'. Together they form a unique fingerprint.

Cite this