Channel State Information used to detect Wi-Fi device tampering

by Mark Tyson on 21 December 2015, 13:01

Quick Link: HEXUS.net/qacw7e

Add to My Vault: x

Researchers at Lancaster University in the UK have developed a method to detect whether a Wi-Fi device is being physically tampered with. Using Channel State Information (CSI) combined with an analysis algorithm allows the researchers to see whether a wireless device has been approached by a person or even physically touched/moved by a person. This could be an important security development with the proliferation of connected devices known as the Internet of Things (IoT).

Systems and software developers have spent lots of time and resources working on securing Wi-Fi communications and networks. Even home users have layers of encryption and other software safeguards in place to protect their network and devices. But what about the danger of someone who gets physical access to one of your devices and fiddles with it? Lancaster University researchers say that this threat could be detected as and when it happens.

One of the Lancaster University report's authors, Dr Utz Roedig of the School of Computing and Communications, said that "A large number of Internet of Things systems are using Wi-Fi and many of these require a high level of security. This technique gives us a new way to introduce an additional layer of defence into our communication systems. Given that we use these systems around critically important infrastructure this additional protection is vital."

The detection system works as wireless signal patterns change when there is a physical presence near or touching a device. Looking at the chart above, it is quite easy to see someone has moved through the vicinity of the device at 10mins and 15mins. Then, at 21mins onwards, the device was being tampered with.



HEXUS Forums :: 8 Comments

Login with Forum Account

Don't have an account? Register today!
Can it distinguish between normal people and employes of GCHQ?

If it can't it seems a bit pointless as if the IPB gets passed into law it would be a crime to reveal the existence of government hacking.
or maybe at 21 mins someone just sat in the arm chair by the router?
Corky34
Can it distinguish between normal people and employes of GCHQ?

If it can't it seems a bit pointless as if the IPB gets passed into law it would be a crime to reveal the existence of government hacking.

I think the civil servants employed at GCHQ might be upset to be thought that they are not normal people.
peterb
I think the civil servants employed at GCHQ might be upset to be thought that they are not normal people.

Quite.
peterb
I think the civil servants employed at GCHQ might be upset to be thought that they are not normal people.

I'm not saying their bug eyed monsters, but in strictly legal terms when it comes to hacking they ain't.

EDIT: Just so there's no disambiguate "employes of GCHQ" means when carrying out their work for GCHQ. :)