Hardware trojans against virtual keyboards on e-banking platforms - A proof of concept

e-Archivo Repository

Show simple item record

dc.contributor.author Peris López, Pedro
dc.contributor.author Martín González, Honorio
dc.date.accessioned 2018-01-31T18:57:12Z
dc.date.available 2019-06-01T22:00:05Z
dc.date.issued 2017-06
dc.identifier.bibliographicCitation AEU - International journal of electronics and communications, (2017), v. 76, pp. 146-151
dc.identifier.issn 1434-8411
dc.identifier.uri http://hdl.handle.net/10016/26175
dc.description.abstract In the last years there has been a considerable growth on the number of users id on-line banking (Szopinski, 2016). Banks must implement strong security solutions and users have to feel safe about the security offered. To securize the users' access, virtual keyboards are commonly used. Unlikely, virtual keyboards are vulnerable to shoulder surfing and malicious software-based attacks such as malware and Trojans (Nadkarni et al., 2011; Sapra et al., 2013). In this article we propose a Hardware Trojan (HT), which targets a VGA display and is able to reveal the private information clicked by the user on a virtual keyboard. This HT is very harmful since it defeats the countermeasures (e.g., keyboard mutation or obfuscation) generally used to combat malicious pieces of software (Nayak et al., 2014; Parekh et al., 2011; Rajarajan et al., 2014).
dc.description.sponsorship This work was supported by the MINECO – Spain grant: TIN2013-46469-R (SPINY: Security and Privacy in the Internet of You) and the CAM – Comunidad Autónoma de Madrid grant S2013/ICE-3095 (CIBERDINE: Cybersecurity, Data, and Risks).
dc.format.mimetype application/pdf
dc.language.iso eng
dc.publisher Elsevier
dc.rights © 2017 Elsevier GmbH. All rights reserved
dc.rights Atribución-NoComercial-SinDerivadas 3.0 España
dc.rights.uri http://creativecommons.org/licenses/by-nc-nd/3.0/es/
dc.subject.other Hardware trojans
dc.subject.other VGA display
dc.subject.other Virtual keyboards
dc.subject.other On-line banking
dc.title Hardware trojans against virtual keyboards on e-banking platforms - A proof of concept
dc.type article
dc.subject.eciencia Informática
dc.identifier.doi https://doi.org/10.1016/j.aeue.2017.04.003
dc.rights.accessRights openAccess
dc.relation.projectID Gobierno de España. TIN2013-46469-R/SPINY
dc.relation.projectID Comunidad de Madrid. S2013/ICE-3095/CIBERDINE
dc.type.version acceptedVersion
dc.identifier.publicationfirstpage 146
dc.identifier.publicationlastpage 151
dc.identifier.publicationtitle AEU. International journal of electronics and communications
dc.identifier.publicationvolume 76
dc.identifier.uxxi AR/0000020092
 Find Full text

Files in this item

*Click on file's image for preview. (Embargoed files's preview is not supported)

The following license files are associated with this item:

This item appears in the following Collection(s)

Show simple item record