We gratefully acknowledge support from
the Simons Foundation and member institutions.
Full-text links:

Download:

Current browse context:

cs

Change to browse by:

References & Citations

DBLP - CS Bibliography

Bookmark

(what is this?)
CiteULike logo BibSonomy logo Mendeley logo del.icio.us logo Digg logo Reddit logo ScienceWISE logo

Computer Science > Cryptography and Security

Title: LANTENNA: Exfiltrating Data from Air-Gapped Networks via Ethernet Cables

Abstract: Air-gapped networks are wired with Ethernet cables since wireless connections are strictly prohibited.
In this paper we present LANTENNA - a new type of electromagnetic attack allowing adversaries to leak sensitive data from isolated, air-gapped networks. Malicious code in air-gapped computers gathers sensitive data and then encodes it over radio waves emanating from the Ethernet cables, using them as antennas. A nearby receiving device can intercept the signals wirelessly, decode the data, and send it to the attacker. We discuss the exfiltration techniques, examine the covert channel characteristics, and provide implementation details. Notably, the malicious code can run in an ordinary user-mode process and successfully operate from within a virtual machine. We evaluate the covert channel in different scenarios and present a set of countermeasures. Our experiments show that with the LANTENNA attack, data can be exfiltrated from air-gapped computers to a distance of several meters away.
Comments: Modified version accepted to 2021 IEEE 45th Annual Computers, Software, and Applications Conference (COMPSAC), 2021
Subjects: Cryptography and Security (cs.CR)
Journal reference: 2021 IEEE 45th Annual Computers, Software, and Applications Conference (COMPSAC), 2021, pp. 745-754
DOI: 10.1109/COMPSAC51774.2021.00106
Cite as: arXiv:2110.00104 [cs.CR]
  (or arXiv:2110.00104v1 [cs.CR] for this version)

Submission history

From: Mordechai Guri [view email]
[v1] Thu, 30 Sep 2021 22:28:33 GMT (5185kb,D)

Link back to: arXiv, form interface, contact.