Staff
JCU App
Library
LearnJCU
Contact
Give
JCU Australia logo

 

Behavioral acoustic emanations: Attack and verification of pin entry using keypress sounds

Panda, Sourav, Liu, Yuanzhen, Hancke, Gerhard Petrus, and Qureshi, Umair Mujtaba (2020) Behavioral acoustic emanations: Attack and verification of pin entry using keypress sounds. Sensors, 20 (11). 3015.

[img]
Preview
 PDF (Published Version) - Published Version
Available under License Creative Commons Attribution.
Download (3MB) | Preview
DOI: 10.3390/s20113015
View at Publisher Website: https://doi.org/10.3390/s20113015
 
15
1


Abstract

This paper explores the security vulnerability of Personal Identification Number (PIN) or numeric passwords. Entry Device (PEDs) that use small strings of data (PINs, keys or passwords) as means of verifying the legitimacy of a user. Today, PEDs are commonly used by personnel in different industrial and consumer electronic applications, such as entry at security checkpoints, ATMs and customer kiosks, etc. In this paper, we propose a side-channel attack on a 4–6 digit random PIN key, and a PIN key user verification method. The intervals between two keystrokes are extracted from the acoustic emanation and used as features to train machine-learning models. The attack model has a 60% chance to recover the PIN key. The verification model has an 88% accuracy on identifying the user. Our attack methods can perform key recovery by using the acoustic side-channel at low cost. As a countermeasure, our verification method can improve the security of PIN entry devices.

Item ID: 89322
Item Type: Article (Research - C1)
ISSN: 1424-8220
Keywords: Biometric verification, Personal identification number, PIN entry device, Side-channel attack
Copyright Information: © 2020 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/).
Date Deposited: 02 Apr 2026 00:18
FoR Codes: 40 ENGINEERING > 4009 Electronics, sensors and digital hardware > 400904 Electronic device and system performance evaluation, testing and simulation @ 70%
40 ENGINEERING > 4006 Communications engineering > 400607 Signal processing @ 30%
SEO Codes: 22 INFORMATION AND COMMUNICATION SERVICES > 2204 Information systems, technologies and services > 220405 Cybersecurity @ 100%
Downloads: Total: 1
Last 12 Months: 1
More Statistics

Actions (Repository Staff Only)

Item Control Page Item Control Page

Athena SWAN Bronze Award logo Innovative Research Universities Universities Australia State of the Tropics
Aboriginal flag Torres Strait flag We acknowledge Australian Aboriginal People and Torres Strait Islander People as the first inhabitants of the nation, and acknowledge Traditional Owners of the lands where our staff and students live, learn and work.