Abstract
It is well known that there is relationship between electromagnetic emanation and processing information in IT devices such as personal computers and smart cards. By analyzing such electromagnetic emanation, eavesdropper will be able to get some information, so it becomes a real threat of information security. In this paper, we show how to estimate amount of information that is leaked as electromagnetic emanation. We assume the area between the IT device and the receiver is a communication channel, and we define the amount of information leakage via electromagnetic emanations by its channel capacity. By some experimental results of Tempest, we show example estimations of amount of information leakage. Using the value of channel capacity, we can calculate the amount of information per pixel in the reconstructed image. And we evaluate the effectiveness of Tempest fonts generated by Gaussian method and its threshold of security.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Agrawal, D., Archambeault, B., Chari, S., Rao, J.R.: Advances in Side-Channel Cryptanalysis Electromagnetic Analysis and Template Attacks. RSA Laboratories Cryptobytes 6(1), 20–32 (2003)
Chari, S., Rao, J.R., Rohatgi, P.: Template attacks. In: Kaliski Jr., B.S., Koç, Ç.K., Paar, C. (eds.) CHES 2002. LNCS, vol. 2523, pp. 13–28. Springer, Heidelberg (2003)
van Eck, W.: Electromagnetic radiation from video display units: An eavesdropping risk? Computers and Security 4 (1985)
Gandolfi, K., Mourtel, C., Oliver, F.: Electromagnetic analysis:Concrete results. In: Koç, Ç.K., Naccache, D., Paar, C. (eds.) CHES 2001. LNCS, vol. 2162, pp. 251–261. Springer, Heidelberg (2001)
International Telecommunication Union, Telecommunication Standardization Sector (ITU-T) Study Group 5, Protection against electromagnetic environment effects, http://www.itu.int/ITU-T/studygroups/com05/index.asp
Kocher, P.: Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. In: Koblitz, N. (ed.) CRYPTO 1996. LNCS, vol. 1109, pp. 104–113. Springer, Heidelberg (1996)
Kocher, P., Jaffe, J., Jub, B.: Differential power analysis. In: Wiener, M.J. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 388–397. Springer, Heidelberg (1999)
Kuhn, M.: Filtered-tempest fonts, available at http://www.c1.cam.ac.uk/~mgk25/st-fonts.zip
Kuhn, M.: Security Limits for Compromising Emanations. In: Rao, J.R., Sunar, B. (eds.) CHES 2005. LNCS, vol. 3659, pp. 265–279. Springer, Heidelberg (2005)
Kuhn, M.: Electromagnetic Eavesdropping Risks of Flat-Panel Displays. In: Martin, D., Serjantov, A. (eds.) PET 2004. LNCS, vol. 3424, pp. 88–107. Springer, Heidelberg (2005)
Kuhn, M.: Optical Time-Domain Eavesdropping Risks of CRT Displays. In: IEEE Symposium on Security and Privacy, pp. 3–18 (2002)
Kuhn, M.G., Anderson, R.J.: Soft Tempest: Hideden Data Transmission Using Electromagnetic Emanations. In: Aucsmith, D. (ed.) IH 1998. LNCS, vol. 1525, pp. 124–142. Springer, Heidelberg (1998)
Loughry, J., Umphress, D.A.: Information leakage from optical emanations. ACM Transactions on Information and System Security 5(3), 262–289 (2002)
Micali, S., Reyzin, L.: Physically observable cryptography, IACR Cryptology ePrint archive 2003/120
National Security Telecommunications and Information Systems Security Instruc- tion NSTISSI No. 7000: TEMPEST Countermeasures for Facilities. National Se- curity Agency, Fort George G. Meade, Maryland, 29, Partially declassified transcript (November 1993), http://cryptome.org/nstissi-7000.htm
Quisquater, J.-J., Samyde, D.: Electromagnetic analysis (EMA): measures and countermeasures for smart cards. In: Attali, S., Jensen, T. (eds.) E-smart 2001. LNCS, vol. 2140, pp. 200–210. Springer, Heidelberg (2001)
Shannon, C.E.: A Mathematical Theory of Communication. The Bell System Technical Journal 27, 623–656 (1948)
Smulders, P.: The threat of information theft by reception of electromagnetic radiation from RS-232 cables. Computer and Security 9 (1990)
Skorobogatov, S., Anderson, R.: Optical fault induction attacks. In: Kaliski Jr., B.S., Koç, Ç.K., Paar, C. (eds.) CHES 2002. LNCS, vol. 2523, pp. 2–12. Springer, Heidelberg (2003)
Tanaka, H., Takizawa, O., Yamamura, A.: Evaluation and improvement of Tempest fonts. In: Lim, C.H., Yung, M. (eds.) WISA 2004. LNCS, vol. 3325, pp. 457–469. Springer, Heidelberg (2005)
Video Electronics Standards Association, http://www.vesa.org/
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Tanaka, H. (2007). Information Leakage Via Electromagnetic Emanations and Evaluation of Tempest Countermeasures. In: McDaniel, P., Gupta, S.K. (eds) Information Systems Security. ICISS 2007. Lecture Notes in Computer Science, vol 4812. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-77086-2_13
Download citation
DOI: https://doi.org/10.1007/978-3-540-77086-2_13
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-77085-5
Online ISBN: 978-3-540-77086-2
eBook Packages: Computer ScienceComputer Science (R0)