Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Year In Ideas

Posted by timothy on Sunday December 12, 2004 @06:13AM from the what'dja-think? dept.

No_Weak_Heart writes "The New York Times Magazine (registration required) presents its annual compendium of ideas. The list ranges from acoustic keyboard eavesdropping to land-mine-detecting plants to water that isn't wet. What catches your fancy? And what do you think is missing?"

1 of 218 comments (clear)

Min score:

Reason:

Sort:

Re:Concur with the "no more registration required" by chialea · 2004-12-12 07:22 · Score: 4, Interesting

>You can even use the time between strokes as a crude measure of distance between (unknown) keys, or as a hint as to what kind of stuff is being typed (c code will sound different from a memo, even if the keys are all the same) to improve your frequency analysis

My advisor (Dawn Song) has a paper (with other people, of course) about timing analysis of interactive ssh sessions. Basically, the upshot is that you can watch how long it is between packets that come out, and you get one packet per keystroke (iirc), so you can use this to learn about what they're typing. It's reasonably difficult, of course, but the microphone attack does gain extra information which the ssh attack does not.

If you're interested, a pdf is at http://www.ece.cmu.edu/~dawnsong/papers/ssh-timing .pdf

Lea