Publication:
Hardware trojans against virtual keyboards on e-banking platforms - A proof of concept

Thumbnail Image
Identifiers
URI: https://hdl.handle.net/10016/26175
ISSN: 1434-8411
DOI: https://doi.org/10.1016/j.aeue.2017.04.003
UXXI: AR/0000020092
Files
Hardware_Peris_AEU_2017_ps.pdf (1.46 MB)
Publication date
2017-06
Defense date
Authors
Advisors
Tutors
Journal Title
Journal ISSN
Volume Title
Publisher
Elsevier
Impact
Google Scholar
Export
Research Projects
Organizational Units
Journal Issue
Abstract
In the last years there has been a considerable growth on the number of users id on-line banking (Szopinski, 2016). Banks must implement strong security solutions and users have to feel safe about the security offered. To securize the users' access, virtual keyboards are commonly used. Unlikely, virtual keyboards are vulnerable to shoulder surfing and malicious software-based attacks such as malware and Trojans (Nadkarni et al., 2011; Sapra et al., 2013). In this article we propose a Hardware Trojan (HT), which targets a VGA display and is able to reveal the private information clicked by the user on a virtual keyboard. This HT is very harmful since it defeats the countermeasures (e.g., keyboard mutation or obfuscation) generally used to combat malicious pieces of software (Nayak et al., 2014; Parekh et al., 2011; Rajarajan et al., 2014).
Description
Keywords
Hardware trojans, VGA display, Virtual keyboards, On-line banking
Bibliographic citation
AEU - International journal of electronics and communications, (2017), v. 76, pp. 146-151
Collections
DI - COSEC - Artículos de Revistas
DTE - DMA - Artículos de Revistas