Security Assessment of Keyboard Data Based on Kaspersky Product
To protect keyboard data that includes sensitive information such as authentication data, secure keyboard programs preempt the extraction of the keyboard data before they are stolen by an attacker. Although these programs are operated at a variety of defense levels, some secure keyboard programs are still vulnerable to hardware-level attacks; therefore, in this paper, the security of keyboard data is evaluated according to the functionality of the Kaspersky “Internet Security” product, whereby secure information is inputted into a variety of websites that comprises SNSs, an email account, and a banking service.
Unable to display preview. Download preview PDF.
- 1.Baig, Muzammil M., and Wasim Mahmood. “A robust technique of anti key-logging using key logging mechanism.” 2007 Inaugural IEEE-IES Digital EcoSystems and Technologies Conference. IEEE, 2007Google Scholar
- 2.Kyungroul Lee, and Kangbin Yim “Keyboard Security: A Technological Review” IMIS (Innovative Mobile and Internet Services in Ubiquitous Computing), pp.9-15, Jun. 2011.Google Scholar
- 3.“Intel Architechtur Software Developer’s Manual Vol.3 System Programming”, Intel Corpration, 1999Google Scholar
- 4.Susan Wiedenbeck, et al., “PassPoints: design and longitudinal ebaluation of a graphicl password system” International Journal of Human- Computer Studies, v.63 n.1-2, p.102-127, July 2005Google Scholar
- 5.Sanchez, “IBM PC/AT Technical Reference Manual”, IBM Corporation, 1985Google Scholar
- 6.Kaspersky Lab, http://usa.kaspersky.com
- 7.Taeyoung Jung, Kangbin Yim, “Countermeasures to the Vulnerability of the Keyboard Hardware,” Journal of the Korea Information Security and Cryptology, Vol. 18, No. 4, pp.187-194, Aug., 2008Google Scholar
- 8.Kyungroul Lee, Kangbin Yim et al., “Password Sniff by Forcing the Keyboard to Replay Scan Codes,” Proceedings of JWIS 2010, PP.9-11, Aug. 2010Google Scholar