Experts have suggested several ways to neutralize thermal traces after entering passwords and PIN codes

Short description

Summarize this content to 100 words A group of computer security experts has issued recommendations for protecting against thermal attacks, in which attackers can steal personal information.Such attacks use heat-sensitive cameras that read fingerprints left on various surfaces of electronic devices, including smartphone screens, keyboards and pin pads. Attackers determine the relative intensity of the heat traces of stealing users’ passwords.In 2022, Dr. Mohamed Khamis and colleagues from the University of Glasgow demonstrated how easy it is to use thermal imaging to crack passwords. The team developed the ThermoSecure system, which uses artificial intelligence to scan images of heating surfaces and correctly select passwords in a few seconds.Experts have prepared an overview of existing computer security strategies and asked users about their preferences on how to prevent thermal attacks in public payment devices. The team also provided recommendations to manufacturers on how to make devices safer.Researchers have identified 15 different methods that can reduce the risk of using thermal attacks. These include ways to reduce heat transfer from users’ hands by wearing gloves or rubber mittens, and changing the temperature of the hands by touching something cold before entering a password. In addition, experts recommend putting your palm on the entire pin-pad or breathing on it after typing.Other suggestions for improving security were related to hardware and software. The heating element under the surfaces is capable of washing heat traces, and the surfaces themselves can be made of materials that dissipate heat more intensively.Security in public places will provide a physical shield covering the pin pad until the heat dissipates. Eye tracking or biometric protection will also help this.306 people took part in the online survey. The researchers were interested in user preferences among the strategies provided by the team. Experts also sought to learn about new methods.The survey showed that users intuitively expected when the situation of using an ATM became the most secure. Two-factor authentication is also popular among respondents. Users told the researchers that they felt responsible for their own safety, said co-author Karola Marky. She recommended using multi-factor authentication wherever possible, as this level of security protects against a range of attacks, including thermal ones.Another participant in the study, Sean Macdonald, recommended that manufacturers of devices used in public places consider thermal attacks during the design phase. According to him, already launched devices can be provided with information messages that would warn users about the danger of stealing passwords.Khamis advised thermal imaging camera manufacturers to integrate new software locks to prevent the equipment from taking pictures of certain surfaces, including ATM pin pads.

Experts have suggested several ways to neutralize thermal traces after entering passwords and PIN codes

A group of computer security experts has issued recommendations for protecting against thermal attacks, in which attackers can steal personal information.

Such attacks use heat-sensitive cameras that read fingerprints left on various surfaces of electronic devices, including smartphone screens, keyboards and pin pads. Attackers determine the relative intensity of the heat traces of stealing users’ passwords.

In 2022, Dr. Mohamed Khamis and colleagues from the University of Glasgow demonstrated how easy it is to use thermal imaging to crack passwords. The team developed the ThermoSecure system, which uses artificial intelligence to scan images of heating surfaces and correctly select passwords in a few seconds.

Experts have prepared an overview of existing computer security strategies and asked users about their preferences on how to prevent thermal attacks in public payment devices. The team also provided recommendations to manufacturers on how to make devices safer.

Researchers have identified 15 different methods that can reduce the risk of using thermal attacks. These include ways to reduce heat transfer from users’ hands by wearing gloves or rubber mittens, and changing the temperature of the hands by touching something cold before entering a password. In addition, experts recommend putting your palm on the entire pin-pad or breathing on it after typing.

Other suggestions for improving security were related to hardware and software. The heating element under the surfaces is capable of washing heat traces, and the surfaces themselves can be made of materials that dissipate heat more intensively.

Security in public places will provide a physical shield covering the pin pad until the heat dissipates. Eye tracking or biometric protection will also help this.

306 people took part in the online survey. The researchers were interested in user preferences among the strategies provided by the team. Experts also sought to learn about new methods.

The survey showed that users intuitively expected when the situation of using an ATM became the most secure. Two-factor authentication is also popular among respondents. Users told the researchers that they felt responsible for their own safety, said co-author Karola Marky. She recommended using multi-factor authentication wherever possible, as this level of security protects against a range of attacks, including thermal ones.

Another participant in the study, Sean Macdonald, recommended that manufacturers of devices used in public places consider thermal attacks during the design phase. According to him, already launched devices can be provided with information messages that would warn users about the danger of stealing passwords.

Khamis advised thermal imaging camera manufacturers to integrate new software locks to prevent the equipment from taking pictures of certain surfaces, including ATM pin pads.

Related posts