Dreamlab cracks the code to Microsoft's wireless keyboards

December 4, 2007 by Lisa Zyga weblog
Microsoft Wireless Optical Desktop 1000

Microsoft Wireless Optical Desktop 1000

Anyone using a wireless keyboard might be a little concerned with a recent announcement by the Swiss company Dreamlab Technologies.

The IT security center claims that it has developed simple technology that can "sniff out" the keystrokes typed on Microsoft´s Wireless Optical Desktop 1000 and 2000 keyboards. At distances of up to 10 meters, Dreamlab´s technology can capture and decrypt keystrokes that may contain information such as user names, passwords, credit card numbers, and confidential messages. With appropriate technical equipment, Dreamlab predicts that eavesdropping at even larger distances is possible.

Companies like Microsoft and Logitech use the 27 MHz radio band for communication between wireless keyboards and a computer. As Max Moser of Dreamlab Technologies says, "Wireless communication is only as secure as the encryption technology used. Due to its nature, it can be tapped with little effort."

Because Microsoft´s encryption technology uses only about 256 possible encryption keys, it did not take many tries for Dreamlab´s software to decode the data. In this case, just a simple radio receiver, a soundcard, and suitable software were enough to break the cryptography codes and tap into the radio frequencies.

Dreamlab says it immediately alerted the manufacturer to the security loophole, but it will be a long process to fix the problem. In the meantime, Dreamlab hopes that consumers using wireless keyboards will take caution when using any wireless keyboard.

Because Microsoft´s other wireless devices operate on similar technology, Dreamlab warns that these devices might also be prone to attacks. Some of these devices include the Wireless Optical Desktop 3000, Wireless Optical Desktop 4000 and other products in the 27 Mhz-based Wireless Laser Desktop series.

Dreamlab has not released the specific tools and methods used to break the code, but researchers at Dreamlab have created a presentation about their work explaining the procedures used and the pitfalls encountered during the analysis. They plan to present their work at future events, mainly for educational purposes. The company hopes that this information will make researchers more aware of the interesting topic of analyzing unknown radio-based data transmission.

More information:

Dreamlab´s white paper: "We know what you typed last summer"

Dreamlab´s Video

Copyright 2007 Lisa Zyga & Physorg.com.
All rights reserved. Web Sites and Bloggers may provide the introductory paragraph and a link to the story, but may not copy, redistribute, rewrite or publish the story in whole or in part without written permission of the author or publisher.

view popular send feedback to editors
4.5 /5 (23 votes)  

Filter


Move the slider to adjust rank threshold, so that you can hide some of the comments.


Display comments: newest first

BigTone
Dec 04, 2007

Rank: 4.5 / 5 (2)
Any physical attack that requires proximity is silly to a degree... its so much easier to do things like plant a customized Remote Access Trojan on a user's machine if you want their keystrokes or any other data.

There are vast techniques to gain keystrokes if the attacker has physical proximity (i.e. you could watch their hands, plant a web cam, shoulder surf, TEMPEST technology from the 80's, a well placed mirror may even do the trick, etc)

Security people are well of this and these guys are just wasting time to make a silly headline and drum up some press.
mrlewish
Dec 04, 2007

Rank: 5 / 5 (2)
I don't think so. I think this could actually be more serious then looking over someone's shoulder. Now that people know it can be done people are sure to innovate on the distance that wireless keyboards can be picked up. first 10 feet, next is outside the building. What is to stop someone from planting a receiver/recorder in a building and recording all the keyboard traffice? This is tremendous industrial espionage potential.
Doug_Huffman
Dec 04, 2007

Rank: 4 / 5 (1)
What is to stop someone? r^-2
gopher65
Dec 05, 2007

Rank: not rated yet
I live halfway up a 13 story apartment building. If they improve that range just a little bit I could set up a receive right next to my computer and log everyone's keystrokes in the building:P. I wouldn't of course, but I bet there are people out there would would. How long will it be before little receivers start appearing stuffed into the bases of those fake plants in the lobbies of office buildings?
nilbud
Dec 05, 2007

Rank: not rated yet
Thankfully I've been wearing a tinfoil hat for two decades, so they can't get me even with their time machines.
JohnSawyer
Feb 23, 2008

Rank: not rated yet
The argument that if you're close enough to receive the keyboard transmission, that you could just as well install a keystroke-capturing trojan, watch over someone's shoulder, etc. is silly in the context of this story, which is about situations where an attacker DOESN'T have access to the room where the keyboard is located. There are many rooms one doesn't have direct access to, but may have access to an adjoining room, or simply sit outside the building, close to the inaccessible room (or maybe not so close, as the article states), with a receiver. Security agencies recognize this possibility, and implement measures to prevent it from being a problem (wired keyboards, shielding, patrolling the outside of the building, etc.). Someone who scans their computer regularly for malware may just wipe any keystroke-recording trojans within a short time after it's been installed; someone concerned about security isn't likely to let someone watch over their shoulder as they type; etc. TEMPEST technology isn't a method for gathering keystrokes--it's a shielding methodology for preventing it. Yes, security people are already aware that wireless keyboard transmissions can be detected and decrypted, but I can't see anything wrong about announcing it to the general public, even if it's been stated before. Many companies show their ignorance of security precautions all the time, regardless of how informed "security people" are (because these companies often don't hire security people, or the right ones), resulting in theft of data, including wireless taps--it recently happened with the Target store chain, with someone sitting in a car with a wifi receiver, resulting in theft of thousands of credit card numbers and other info. If the non-tech-aware people who run these companies were exposed to more articles like this one, detailing possible methods of data theft, then maybe they'd get it through their heads to start implementing better security procedures.
Rank 4.5 /5 (23 votes)
Tags

Related Stories
more news
Relevant PhysicsForums posts
  • How to calculate total compressibility in liquid porous solid system
    created2 hours ago
  • Need help reading 3-D
    created22 hours ago
  • A way to send and receive wireless data
    createdFeb 11, 2012
  • Calling function with no input argument
    createdFeb 10, 2012
  • Force free body diagram problem on gym equipment
    createdFeb 10, 2012
  • Empirical data regarding shower heads and water
    createdFeb 10, 2012
  • More from Physics Forums - General Engineering

More news stories

Google might launch Drive for cloud storage soon

(PhysOrg.com) -- Google's next big move, according to the Wall Street Journal, is a cloud storage service called Drive. Hardly first to the plate, Google is simply catching up to introducing its cloud reposi ...

Technology / Internet

created 10 hours ago | popularity 4.8 / 5 (5) | comments 4 | with audio podcast report

Iran blocks email, restricts net access: reports

Iran has further restricted access to the Internet and blocked popular email services for the past few days, in a move a top lawmaker said could "cost the regime dearly," media reports said on Sunday.

Technology / Internet

created 3 hours ago | popularity 5 / 5 (1) | comments 3

Love a click away in Indonesia's Twitter Republic

He was a geeky kid from Yogyakarta, she a glamorous city girl in Jakarta. In a country with one of the world's most vibrant social networking scenes they fell in love on Twitter.

Technology / Internet

created 11 hours ago | popularity 4 / 5 (1) | comments 0

Walney offshore wind farm is world's biggest (for now)

(PhysOrg.com) -- The Walney wind farm on the Irish Sea--characterized by high tides, waves and windy weather--officially opened this week. The farm is treated in the press as a very big deal as the Walney ...

Technology / Energy & Green Tech

created Feb 11, 2012 | popularity 4 / 5 (11) | comments 37 | with audio podcast weblog

Navy to begin tests on electromagnetic railgun prototype launcher

The Office of Naval Research (ONR)'s Electromagnetic (EM) Railgun program will take an important step forward in the coming weeks when the first industry railgun prototype launcher is tested at a facility ...

Technology / Engineering

created Feb 06, 2012 | popularity 4.5 / 5 (17) | comments 94 | with audio podcast


Overeating may double risk of memory loss

New research suggests that consuming between 2,100 and 6,000 calories per day may double the risk of memory loss, or mild cognitive impairment (MCI), among people age 70 and older. The study was released today and will be ...

Scientists discover molecular secrets of 2,000-year-old Chinese herbal remedy

For roughly two thousand years, Chinese herbalists have treated Malaria using a root extract, commonly known as Chang Shan, from a type of hydrangea that grows in Tibet and Nepal. More recent studies suggest that halofuginone, ...

New method to examine batteries -- MRI from the inside

There is an ever-increasing need for advanced batteries for portable electronics, such as phones, cameras, and music players, but also to power electric vehicles and to facilitate the distribution and storage of energy derived ...

Lab study raises questions over nano-particle impact

Tests involving chickens have raised questions about the impact on health from engineered nano-particles, the ultra-fine grains commonly used in drugs and processed foods, scientists said on Sunday.

Injured boomers beware: Know when to see doctor

(AP) -- It happened to nurse Jane Byron years after an in-line skating fall, business owner Haralee Weintraub while doing "men's" push-ups, and avid cyclist Gene Wilberg while lifting a heavy box.

A mitosis mystery solved: How chromosomes align perfectly in a dividing cell

Although the process of mitotic cell division has been studied intensely for more than 50 years, Whitehead Institute researchers have only now solved the mystery of how cells correctly align their chromosomes during symmetric ...