wi fi told me everything about you
play

Wi-Fi told me everything about you Mathieu Cunche INSA-Lyon CITI, - PowerPoint PPT Presentation

Apr 07, 2023 •472 likes •851 views

Wi-Fi told me everything about you Mathieu Cunche INSA-Lyon CITI, INRIA-Privatics 6 mars 2014 M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 1 / 37 Wi-Fi networking IEEE 802.11 standard Specifications for MAC

  1. Wi-Fi told me everything about you Mathieu Cunche INSA-Lyon CITI, INRIA-Privatics 6 mars 2014 M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 1 / 37

  2. Wi-Fi networking IEEE 802.11 standard Specifications for MAC and Physical layers Information transmitted by frames Data : upper layer datagrams Management : beacon, probe request/response, ... Control : acknowledgement, ready to send, ... M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 2 / 37

  3. 802.11 frame Address fields contain MAC addresses (src., dest., ...) MAC address: a unique identifier allocated to a network interface M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 3 / 37

  4. Wi-Fi service discovery I Discover surrounding APs and Networks Passive mode: Wi-Fi Beacons Active mode: Probe requests and Probe Responses Probe requests contain an SSID field to specify the searched network Active is less costly in energy Preferred mode for mobile devices Passive Active M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 4 / 37

  5. Active service discovery Information available in cleartext (headers are not encrypted) Broadcasted: dest. Addr. = FF:FF:FF:FF:FF:FF M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 5 / 37

  6. Active service discovery Probing frequency Depends on model, OS version, ... Several cycles per minutes (every 20/30 secs) 40000 35000 30000 Nb occurence 25000 20000 15000 10000 5000 0 0 50 100 150 200 250 Delta frame (seconds) Figure: Delta between probes of a Samsung phone. M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 6 / 37

  7. Wi-Fi Fingerprint Wi-Fi Fingerprint = List of SSIDs broadcasted by a device M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 7 / 37

  8. Monitoring probe requests What about encryption (WPA,WPA2, ...)? Only payload of DATA frames are is encrypted Header are not encrypted Management and Control frame are not encrypted (Probe Requests) M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 8 / 37

  9. Monitoring probe requests (Demo.) Wi-Fi interface supporting monitoring mode Traffic capture and analysis tools M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 9 / 37

  10. Personal information from SSIDs SSIDs: name of the previously connected networks Stored in the Configured Network List (CNL) Observed up to 80 configured networks ! SSIDs: personal data Travel history GPS coordinates Social links M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 10 / 37

  11. Personal information found in SSIDs Link with a company/university/organisation INRIA-interne, INSA-INVITE, GlobalCorp Ltd. Attended conferences WiSec14, PETs, CCS Visited places (hotel, restaurant, coffee-shop, airport) Hilton-NY WiFi, Aloha Hotel WiFi, Brasserie de l’Est, Sydney-airport-WiFi Individual’s identity Marc Dupont’s iPhone, Bob Fhisher’s Network M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 11 / 37

  12. Precise geolocation information From SSIDs to precise geolocation 1 1 Ben Greenstein et al. “Can ferris bueller still have his day off? protecting privacy in an era of wireless devices”. In: In HotOS XI . 2007. M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 12 / 37

  13. Precise geolocation information WiGLE: Wireless Geographic Logging Engine: Making maps of wireless networks since 2001 SSID, BSSID, channel, security, GPS coordinates, ... Other databases exist (CIA, Google, Apple, ...) M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 13 / 37

  14. Inferring social links I Hypothesis: similarity between Wi-Fi fingerprint can betray social links People tends to share their Wi-Fi network with people who are close The experiment: ”I know who you will meet this evening” 2 A wild dataset: fingerprints of 8000+ devices A control dataset: fingerprint with 30 existing social links 2 Mathieu Cunche, Mohamed-Ali Kaafar, and Roksana Boreli. “Linking wireless devices using information contained in Wi-Fi probe requests”. In: Pervasive and Mobile Computing (2013), pp. –. M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 14 / 37

  15. Inferring social links I Frequency of SSIDs Some are frequent (ex. NETGEAR) Other are rare (ex. Freebox YTC689) 14 12 Fraction of device (%) 10 8 6 4 2 T N D l A C M u C u T d W B b i O E L n p i n a s e e o e k t c y I M T I p y D w i f l s f a R i l k N s e d n G y l e R t u E g i I K o i d S r n Z s a n a l L o 5 E S e c t O i l a r E 4 A t _ e C H N o l d S g R W e B o r ’ S E e s n D t i F s @ F _ p i F _ R o r T E e t S r e y a i E d _ l W W n e i i y F F i i F e r r i e s M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 15 / 37

  16. Inferring social links I Quantifying the similarity between fingerprints Metric considering size and rarity of the intersection Cosine-IDF and Jaccard index � idf x 2 J ( X , Y ) = | X ∩ Y | x ∈ X ∩ Y Cosine-idf ( X , Y ) = �� �� | X ∪ Y | idf x 2 idf y 2 x ∈ X y ∈ Y where idf x : inverse document frequency of x Adamic, modified Adamic 1 1 � � Adamic ( X , Y ) = Psim- q ( X , Y ) = f q log f x x x ∈ X ∩ Y x ∈ X ∩ Y where f x : document frequency of x M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 16 / 37

  17. Inferring social links I 1 0.9 0.8 0.7 0.6 TPR 0.5 0.4 0.3 0.2 cosine_idf jaccard 0.1 adamic Psim-3 0 0 0 0 0 0 0 0 0 0 0 1 1 . . 2 . 3 4 . . 5 . 6 7 . . 8 . 9 FPR Performances: detects 80% of social links with less than 8% of error. M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 17 / 37

  18. The end of broadcasted SSIDs ? The good news: Broadcast Probe Requests SSID field is left empty AP must responds to all Broadcast Probe Requests Adopted by major vendors to reduce privacy risks The bad news: Hidden Wi-Fi networks Hidden: not broadcasting beacons Probing with SSID is the only way to discover Device continuously broadcast SSID of the network M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 18 / 37

  19. A short parenthesis on RFID Privacy concerns over RFID Chip embedded in goods (clothes) A combination of RFIDs can constitute a unique ID ”How would you like it if, for instance, one day you realized your underwear was reporting on your whereabouts?” – US Senator Bowen on RFID chips. 2003. 3 3 http://digitalcourage.de/ M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 19 / 37

  20. Wi-Fi tracking Wi-Fi enabled smartphone: portable personal beacon Broadcast a unique ID Several 10s meters range Wi-Fi tracking system 4 Set of sensors collect Wi-Fi signal Detect and track Wi-Fi devices and their owners 4 A. B. M. Musa and Jakob Eriksson. “Tracking unmodified smartphones using Wi-Fi monitors”. In: Proceedings of the 10th ACM Conference on Embedded Network Sensor Systems . 2012. M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 20 / 37

  21. Wi-Fi tracking: applications Road monitoring Measure point-to-point travel time Detect traffic jam M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 21 / 37

  22. Wi-Fi tracking: applications Retail, shopping center monitoring Physical analytics Similar to Web Analytics Frequency and length of visit, number of visitor, peak hour .... M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 22 / 37

  23. Wi-Fi tracking: applications Trajectory reconstruction Triangulation based on signal strength M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 23 / 37

  24. Wi-Fi tracking: applications Illustration: monitoring Dx3 2014 5 5 Credits: Aislelabs M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 24 / 37

  25. Wi-Fi tracking: applications Current state of Wi-Fi tracking (in the US) More than 12 tracker companies: Euclid, Navizon, ... Major retailers are getting involved 50 millions individual tracked by Euclid in less than 5 months of activity M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 25 / 37

  26. Wi-Fi tracking: privacy Privacy concerns ”People have a fundamental right to privacy, and I think neglecting to ask consumers for their permission to track them violates that right” – Senator Al Franken M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 26 / 37

  27. Wi-Fi tracking: privacy Response to privacy concerns MAC addr. does not contain personal information User notification Opt-out mechanisms MAC addr. is ”anonymized” (Hash function) M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 27 / 37

  28. Wi-Fi tracking: privacy The MAC address: not a personal information ? Unique identifier Collected by mobile applications The missing link between physical and online profile M. Cunche (INSA-Lyon / INRIA ) Wi-Fi told me everything about you 6 mars 2014 28 / 37

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Hey, listen, ____& ____, like I told you when I called you the other day that I had recently

Hey, listen, ____& ____, like I told you when I called you the other day that I had recently

KITCHEN TABLE PRESENTATION for ROLE PLAY! Use FORM Building Rapport: Family, Occupation, Recreation, Motivation. 2-3 minutes tops. INTRO: This will vary according to what you told them on the phone call. Hey, listen, ____& ____, like I told

336 views • 5 slides
12 And they told Mordecai what Esther had said. 13 Then Mordecai told them to reply to Esther,

12 And they told Mordecai what Esther had said. 13 Then Mordecai told them to reply to Esther,

Esther 4:12-17 12 And they told Mordecai what Esther had said. 13 Then Mordecai told them to reply to Esther, Do not think to yourself that in the king's palace you will escape any more than all the other Jews. 14 For if you keep silent at

560 views • 30 slides
Our Kindergarten Philosophy When I was 5 years old, my mother always told me that happiness

Our Kindergarten Philosophy When I was 5 years old, my mother always told me that happiness

Our Kindergarten Philosophy When I was 5 years old, my mother always told me that happiness was the key to life. When I went to school, they asked me what I wanted to be when I grew up. I wrote down happy. They told me I didnt

450 views • 19 slides
My Story Slides Statements If I told you my story, You would hear Hope that wouldn't let go And

My Story Slides Statements If I told you my story, You would hear Hope that wouldn't let go And

My Story Slides Statements If I told you my story, You would hear Hope that wouldn't let go And if I told you my story, You would hear Love that never gave up And if I told you my story, You would hear Life, but it wasn't mine He offered me

66 views • 4 slides
What we told CVPR 18 ACs Slides edited by: DAF, from slides by DAF, Ivan, Deva, Aude Outline

What we told CVPR 18 ACs Slides edited by: DAF, from slides by DAF, Ivan, Deva, Aude Outline

SSID: UofT Username: acmeeting2018 password: cvpr2018 What we told CVPR 18 ACs Slides edited by: DAF, from slides by DAF, Ivan, Deva, Aude Outline Quick reflections on our state What we told ACs minus a bunch of

383 views • 21 slides
environmental storytelling Allison Parrish the story told by the game-world as if the player

environmental storytelling Allison Parrish the story told by the game-world as if the player

environmental storytelling Allison Parrish the story told by the game-world as if the player wasn't there Richard Rouse III at GDC 2010 "the story can be told through objects" (Fernndez-Vara 2011) "no ideas but

306 views • 20 slides
Equity Monitors March 2013 ACTIVITY Rules: Do not open papers until told to do so Do

Equity Monitors March 2013 ACTIVITY Rules: Do not open papers until told to do so Do

Equity Monitors March 2013 ACTIVITY Rules: Do not open papers until told to do so Do not allow anyone to see what is on your paper Close the paper when told to do so Remain silent during the activity Respectful Communication

845 views • 52 slides
should we fix privacy? Some citizens complain about being under surveillance, but they are told

should we fix privacy? Some citizens complain about being under surveillance, but they are told

should we fix privacy? Some citizens complain about being under surveillance, but they are told that if they have nothing to hide, they have nothing to fear. @KirilsSolovjovs, 2019. https://kirils.org Still, news media regularly cover cases

875 views • 63 slides
go out and fix privacy! Some citizens complain about being under surveillance, but they are told

go out and fix privacy! Some citizens complain about being under surveillance, but they are told

go out and fix privacy! Some citizens complain about being under surveillance, but they are told that if they have nothing to hide, they have nothing to fear. @KirilsSolovjovs, 2019. https://kirils.org Still, news media regularly cover cases

1.21k views • 74 slides
Motivation We are given a data set, and are told that it was generated from a mixture of

Motivation We are given a data set, and are told that it was generated from a mixture of

Dirichlet Process Mixtures A gentle tutorial Graphical Models 10708 Khalid El-Arini Carnegie Mellon University November 6 th , 2006 1 Motivation We are given a data set, and are told that it was generated from a mixture of Gaussians.

503 views • 13 slides
Stability, Told by it Developers The authors of the present manuscript would like to insist on

Stability, Told by it Developers The authors of the present manuscript would like to insist on

Stability, as Told by its Developers Antonio Lor a Elena Panteley C.N.R.S Laboratoire de Signaux et Syst` emes - Sup elec CentraleSup elec, Gif sur Yvette, France. http ://antonio.loria.lss.supelec.fr A. Lor a and E.

1.09k views • 97 slides
M ISSIONAL E NGAGEMENT I NITIATIVE (MEI) God has told you, O mortal, what is good; and what

M ISSIONAL E NGAGEMENT I NITIATIVE (MEI) God has told you, O mortal, what is good; and what

M ISSIONAL E NGAGEMENT I NITIATIVE (MEI) God has told you, O mortal, what is good; and what does the Lord require of you but to do justice, and to love kindness, and to walk humbly with your God? Micah 6:8 C ELEBRATION ! Saturday,

1.38k views • 84 slides
The Barren Fig ig Tree There were some present at that very time who told him about the

The Barren Fig ig Tree There were some present at that very time who told him about the

The Barren Fig ig Tree There were some present at that very time who told him about the Galileans whose blood Pilate had mingled with their sacrifices. And he answered them, Do you think that these Galileans were worse sinners than all

345 views • 15 slides
6/18/2018 What Is Good To God? He has told you, O man, what is good; and what does the Lord

6/18/2018 What Is Good To God? He has told you, O man, what is good; and what does the Lord

6/18/2018 What Is Good To God? He has told you, O man, what is good; and what does the Lord require of you Micah 6:8 , ESV 1 6/18/2018 What Is Good To God? This OT prophet summarizes the life God expects from his people, condensing it

436 views • 5 slides
Being told does not change any thing The relationship between knowing about CCS as an idea and

Being told does not change any thing The relationship between knowing about CCS as an idea and

Trondheim, June 16 th 2011 6 th Trondheim Conference on C0 2 Capture, Transport and Storage TCCS-6 Being told does not change any thing The relationship between knowing about CCS as an idea and supporting practical experiments Hans Y. Torvatn a ,

383 views • 13 slides
Luke 15:1-32 These parables were told in response to a complaint of the Pharisees and

Luke 15:1-32 These parables were told in response to a complaint of the Pharisees and

Luke 15:1-32 These parables were told in response to a complaint of the Pharisees and scribes (Luke 15:1-2). This man receives sinners and eats with them. The lesson is the same in each parable. Each shows the joy found

331 views • 22 slides
Practical Statistics for Particle Physics Kyle Cranmer, New York University 1 Kyle Cranmer

Practical Statistics for Particle Physics Kyle Cranmer, New York University 1 Kyle Cranmer

Center for Cosmology and Particle Physics Practical Statistics for Particle Physics Kyle Cranmer, New York University 1 Kyle Cranmer (NYU) CERN Summer School, July 2013 Introduction Center for Cosmology and Particle Physics Statistics

1.19k views • 80 slides
Rough paths methods 3: Second order structures Samy Tindel Purdue University University of

Rough paths methods 3: Second order structures Samy Tindel Purdue University University of

Rough paths methods 3: Second order structures Samy Tindel Purdue University University of Aarhus 2016 Samy T. (Purdue) Rough Paths 3 Aarhus 2016 1 / 49 Outline Heuristics 1 Controlled processes 2 Differential equations 3 Additional

708 views • 49 slides
CoolEmAll A focus on Power Consumption of Applications Leandro Fontoura Cupertino, Georges Da

CoolEmAll A focus on Power Consumption of Applications Leandro Fontoura Cupertino, Georges Da

CoolEmAll A focus on Power Consumption of Applications Leandro Fontoura Cupertino, Georges Da Costa, Amal Sayah, Jean-Marc Pierson SEPIA Team IRIT - Toulouse Institute of Computer Science Research UPS - University of Toulouse (Paul Sabatier)

592 views • 47 slides
Progress on the Real -Conjecture Pascal Koiran LIP, Ecole Normale Sup erieure de Lyon

Progress on the Real -Conjecture Pascal Koiran LIP, Ecole Normale Sup erieure de Lyon

Progress on the Real -Conjecture Pascal Koiran LIP, Ecole Normale Sup erieure de Lyon Fields Institute, May 2012 The -Conjecture [Shub-Smale95] ( f ) = length of smallest straight-line program for f Z [ X ]. No constants are

980 views • 58 slides
Introduction to signatures Nikolas Tapia NTNU Trondheim Feb. 26, 2019 @ Magic 2019, Ilsetra N.

Introduction to signatures Nikolas Tapia NTNU Trondheim Feb. 26, 2019 @ Magic 2019, Ilsetra N.

Introduction to signatures Nikolas Tapia NTNU Trondheim Feb. 26, 2019 @ Magic 2019, Ilsetra N. Tapia (NTNU) Introduction to signatures Feb. 26, 2019 @ Magic 2019, Ilsetra 1 / 29 Goals Goals N. Tapia (NTNU) Introduction to signatures Feb.

729 views • 29 slides
Evidence from a Randomized Field Experiment in Rural Indonesia Ayu Pratiwi Aya Suzuki Faculty

Evidence from a Randomized Field Experiment in Rural Indonesia Ayu Pratiwi Aya Suzuki Faculty

Does Training Location Matter? Evidence from a Randomized Field Experiment in Rural Indonesia Ayu Pratiwi Aya Suzuki Faculty of Health and Well-being Graduate School of Frontier Sciences Turku University of Applied Sciences the University of

497 views • 26 slides
Semi-Automatic Region-Based Memory Management for Real-Time Java Embedded Systems G. Salagnac,

Semi-Automatic Region-Based Memory Management for Real-Time Java Embedded Systems G. Salagnac,

Semi-Automatic Region-Based Memory Management for Real-Time Java Embedded Systems G. Salagnac, C. Rippert, S. Yovine Verimag Lab. Universit Joseph Fourier Grenoble, France http://www-verimag.imag.fr/~salagnac salagnac@imag.fr G. Salagnac

1.19k views • 72 slides
Polynomial equivalence problem for sums of affine powers ISSAC 2018 Ignacio Garcia-Marco 1 ,

Polynomial equivalence problem for sums of affine powers ISSAC 2018 Ignacio Garcia-Marco 1 ,

Polynomial equivalence problem for sums of affine powers ISSAC 2018 Ignacio Garcia-Marco 1 , Pascal Koiran 2 , Timoth ee Pecatte 2 1 Universidad de la Laguna, 2 LIP, Ecole Normale Sup erieure de Lyon 1 / 21 Models of interest 1 / 21

1.05k views • 83 slides

More recommend