datasheet
Security Electronics
Security Electronics>Comprehensive Information> ‘Hot pixel’ attack steals data via CPU readings, all devices tested were spared

‘Hot pixel’ attack steals data via CPU readings, all devices tested were spared

Publisher:innovator7Latest update time:2023-06-05 Source: 科技日报Keywords:CPU Reading articles on mobile phones Scan QR code
Read articles on your mobile phone anytime, anywhere

A joint team from the Georgia Institute of Technology, the University of Michigan, and Ruhr-Universität Bochum in Germany report a new form of side-channel attack that exploits power and speed management methods used by graphics processing units and systems on a chip (SoC). Dynamic Voltage and Frequency Scaling (DVFS) mechanisms on most modern chips release data, and the research team shows how they can steal personal information.


As manufacturers race to develop thinner, more power-efficient devices, they must balance power consumption, heat generation and processing speed. But researchers recently published a paper on the preprint server arXiv pointing out that SoC exhibits instruction- and data-dependent behavior precisely because of efforts to make trade-offs among the three parties.


Using four categories of devices: SoC units, Intel CPUs, AMD and Nvidia GPUs, the team was able to detect behavioral patterns that occur as processors constantly balance power demands and thermal constraints. This was revealed through data leaked from sensors embedded in the processor. This "hot pixel" attack forces one of the variables tracked by DVFS to remain unchanged. By monitoring the other two variables, they are able to determine which instructions are being executed.


Such leaks are common: So-called ARM chips in smartphones, which contain passively cooled processors, leak data containing power and frequency readings; actively cooled processors in desktop devices may leak data through temperature and power readings.


By reading this data, researchers deployed several types of attacks, such as history sniffing and website fingerprinting. The results show that hackers can sniff browsing history by detecting different colors of links that a user has previously visited. Once a sensitive site, such as a bank, is identified, hackers can provide links to fake sites that resemble the real site.


The researchers tested devices such as Apple MacBook Air (M1 and M2), Google Pixel 6 Pro, OnePlus 10 Pro, Nvidia GeForce RTX 3060, AMD Radeon RX 6600 and Intel Iris Xe (i7-1280P). All devices leaked data, with the AMD Radeon RX 6600 performing the worst, with an unauthorized data extraction accuracy rate of 94%. Apple devices received the highest ratings, with data retrieval accuracy ranging from only 60% to 67%.


The researchers have notified all affected manufacturers of the vulnerabilities and recommend that manufacturers implement hardware-based thermal throttling that limits unprivileged access to sensor readings.


Keywords:CPU Reference address:‘Hot pixel’ attack steals data via CPU readings, all devices tested were spared

Previous article:Quantum lidar acquires 3D images underwater and is expected to be used in fields such as security and defense
Next article:Report says solar panels also have security vulnerabilities that could be exploited by hackers for cyberattacks

Recommended ReadingLatest update time:2024-11-23 07:51

Unisoc launches new smart cockpit chip A7862 + automotive-grade high-precision dual-frequency positioning chip A2395
Helping to upgrade the driving experience intelligently, the core strength drives the car towards the "third living space" Smart cars are undoubtedly one of the most popular "Internet celebrity" areas in the technology industry in recent years. From traditional car brands to "new forces in car manufacturing" to major
[Embedded]
Unisoc launches new smart cockpit chip A7862 + automotive-grade high-precision dual-frequency positioning chip A2395
Oscilloscope quick repair of CPU and bus related faults
There are many forms of sine waves in nature, such as ocean waves, earthquakes, sound waves, sounds traveling through the air, or the natural rhythms of the body. Energy, vibrating particles, and invisible forces are everywhere in the physical world. Even light has its own fundamental frequency, and it appears in diff
[Test Measurement]
Oscilloscope quick repair of CPU and bus related faults
Meta's latest self-developed chip results exposed: 7nm process integrated RISC-V CPU
According to foreign media ROAD TOVR, researchers at Meta Reality Labs have created a VR headset prototype that can support rendering of the Codec Avatars project and is equipped with a custom accelerator chip specifically for AI processing. Long before Facebook changed its name to Meta, the company had been working
[Internet of Things]
Meta's latest self-developed chip results exposed: 7nm process integrated RISC-V CPU
s3c2440 cpu speed up
I just finished watching teacher Wei Dongshan’s teaching video and wrote an essay to consolidate it. The 2440 chip not only has a CPU, but also an AHB high-speed bus (LCD, interrupt, USB, memory controller, etc.), and an APB low-speed peripheral bus (I2C, I2S, GPIO, etc.). There are three clocks, FCLK, HCLK (AH
[Microcontroller]
s3c2440 cpu speed up
Design of a Single-Chip Computer System Based on 8086 CPU
1 Introduction   With the development of ultra-large-scale integrated circuit technology, it has become a reality to integrate millions or even hundreds of millions of transistors on a chip. Now, chip manufacturers are taking minimizing area and maximizing functions as their development direction. Deep submicron eff
[Microcontroller]
Design of a Single-Chip Computer System Based on 8086 CPU
Application of Ferroelectric Memory in Multi-CPU Automatic Identification Control System
1. Introduction to automatic identification control system Automatic identification technology is a method or means to automatically read and input data into a computer. It is a comprehensive high-tech science and technology that integrates computer, optical, electromechanical, and communication technologies, includ
[Microcontroller]
Application of Ferroelectric Memory in Multi-CPU Automatic Identification Control System
Design of embedded medical electronic wireless network based on domestic CPU (Part 1)
Abstract:   Traditional medical electronic devices do not have wireless functions and cannot achieve medical monitoring anytime and anywhere. This paper proposes a routing protocol based on IPV6 for medical electronic wireless networks, and realizes basic wireless communication based on the domestic CK610 CPU and TI's
[Analog Electronics]
Design of embedded medical electronic wireless network based on domestic CPU (Part 1)
Domestic CPU Loongson 3A6000 will be tape-out in the first half of the year and will be shipped next year. The 7nm process has been evaluated
Domestic CPU company Loongson released the Loongson 3A5000 series processors in 2021, which supports the self-developed LoongArch instruction set architecture and achieves 100% autonomy. The company recently revealed the trends of its next-generation product, the Loongson 3A6000, in a survey. It said that the Loongs
[Embedded]
Domestic CPU Loongson 3A6000 will be tape-out in the first half of the year and will be shipped next year. The 7nm process has been evaluated
Popular Resources
Popular amplifiers
More
Latest Security Electronics Articles
MoreSelected Circuit Diagrams
Change More Related Popular Components
MorePopular Articles
MoreDaily News
Guess you like

EEWorld
subscription
account

EEWorld
service
account

Automotive
development
circle

About Us Customer Service Contact Information Datasheet Sitemap LatestNews


Room 1530, 15th Floor, Building B, No.18 Zhongguancun Street, Haidian District, Beijing, Postal Code: 100190 China Telephone: 008610 8235 0740

Copyright © 2005-2024 EEWORLD.com.cn, Inc. All rights reserved 京ICP证060456号 京ICP备10001474号-1 电信业务审批[2006]字第258号函 京公网安备 11010802033920号