Posts Tagged ‘smudge-attack’

Usable Sec: Smudge Attacks (Mobile device hacking attack vector)

Attack is most effective after phone is held in contact with face during a phone call

Source: https://www.usenix.org/legacy/event/woot10/tech/full_papers/Aviv.pdf

Touch screens are an increasingly common feature on personal computing devices, especially smartphones, where size and user interface advantages accrue from consolidating multiple hardware components (keyboard, number pad, etc.) into a single software definable user interface. Oily residues, or smudges, on the touch screen surface, are one side effect of touches from which frequently used patterns such as a graphical password might be inferred.