Researchers bypass Android encryption by exposing phones to freezing temperatures
Security researchers in Germany have discovered that physically freezing an Android smartphone can grant access to encrypted data.
Researchers freezing a Galaxy Nexus, via Friedrich-Alexander University.
Google's encryption method, which has been a part of Android since the "Ice Cream Sandwich" release, was bypassed by exposing a smartphone to freezing temperatures for an hour, according to the BBC. After that time period, researchers were able to access previously encrypted contacts, browsing histories, and photos.
The test was conducted by researchers from Friedrich-Alexander University in Germany with Samsung Galaxy Nexus handsets, and the phones were cooled to 10 degrees below zero Celsius. Then the battery was quickly disconnected and reconnected, placing the handset into a vulnerable mode.
"This loophole let them start it up with some custom-built software rather than its onboard Android operating system," the report said. "The researchers dubbed their custom code Frost ? Forensic Recovery of Scrambled Telephones."
The "FROST" hack in action, via Friedrich-Alexander University.
The strange and involved process of bypassing Android encryption is not likely a concern to end users of Android devices, but could be an issue for corporations and governments that carry highly sensitive information on mobile devices. The researchers said that while they tested their methods with the Galaxy Nexus, other Android phones are also likely to be vulnerable.
Freezing the phone reportedly aids in the hacking of Android because the low temperatures cause data to fade from internal chips more slowly. Researchers used this phenomenon to obtain encryption keys and unscramble the phone's encrypted data.
Researchers freezing a Galaxy Nexus, via Friedrich-Alexander University.
Google's encryption method, which has been a part of Android since the "Ice Cream Sandwich" release, was bypassed by exposing a smartphone to freezing temperatures for an hour, according to the BBC. After that time period, researchers were able to access previously encrypted contacts, browsing histories, and photos.
The test was conducted by researchers from Friedrich-Alexander University in Germany with Samsung Galaxy Nexus handsets, and the phones were cooled to 10 degrees below zero Celsius. Then the battery was quickly disconnected and reconnected, placing the handset into a vulnerable mode.
"This loophole let them start it up with some custom-built software rather than its onboard Android operating system," the report said. "The researchers dubbed their custom code Frost ? Forensic Recovery of Scrambled Telephones."
The "FROST" hack in action, via Friedrich-Alexander University.
The strange and involved process of bypassing Android encryption is not likely a concern to end users of Android devices, but could be an issue for corporations and governments that carry highly sensitive information on mobile devices. The researchers said that while they tested their methods with the Galaxy Nexus, other Android phones are also likely to be vulnerable.
Freezing the phone reportedly aids in the hacking of Android because the low temperatures cause data to fade from internal chips more slowly. Researchers used this phenomenon to obtain encryption keys and unscramble the phone's encrypted data.
Comments
And now the spin: "Apple phones just break when they're that cold! At least Android keeps working!"
PS: Beat you to it, [B]GTR[/B].
deleted
my wife often reaches these temperatures in bed.
Any system of any kind with decrypted data in memory (as it must be when in use) is vulnerable to direct memory access attacks like this.
How cold was it?
It was so cold I froze my gona... er, ah, my encryption off!
Edit: It's also affecting AAPL -- up about $5 in the last 5 minutes.
Wait a minute...
Quote:
"This loophole let them start it up with some custom-built software rather than its onboard Android operating system," the report said.
So they had to 1) physically access the device 2) freeze it 3) bypass Android to complain Android's encryption isn't good?
Regardless of device or type, if you can physically alter it, odds are you can get to the data eventually.
Quote:
Originally Posted by thataveragejoe
Wait a minute...
So they had to 1) physically access the device 2) freeze it 3) bypass Android to complain Android's encryption isn't good?
yes, or otherwise known as 'Thursday' in Germany.
The exploit is obviously reliant on characteristics of the hardware and the OS is actually near irrelevant. I am impressed that Android's encryption is good enought to be such a serious obstacle to require such a HW level exploit.
Cold temps can do wonders for a harddrive.
A few years ago, the drive on a Macbook that I had suddenly died. It sounded like it had the click of death, because all it would do is make these nasty, loud clicking sounds every once in a while. The drive was totally done with. It wouldn't boot up at all and no data could be accessed from it.
After some quick online research, I decided to put the drive in a ziplock bag, and I threw it in the freezer overnight. The next day I removed it from the freezer and I immediately hooked it up to a Mac, and I was able to retrieve most of the data that was on the drive. It worked for almost an hour, then it died again, and remained dead for good.
I thought Android freezes irrespective of temperature.
you can just do it with a much smaller freezer.
Quote:
Originally Posted by DeanSolecki
The research is interesting, but it really should have been said that, incidentally, this was done on an android phone. If there exists a reason that this couldn't have been achieved on an iPhone or WinPhone, the article doesn't express that (or macbook, or vaio, for that matter.)
Er, because you can't remove an iPhone battery? Who knew that was actually a security feature!
Cool! VERY cool!