Comment by syntaxing
2 years ago
Timing attacks have been attack vector for a while? I remember reading a tool on HN a couple years ago about it. You don’t even need audio, the rate of which you enter the keys into the password field is enough.
2 years ago
Timing attacks have been attack vector for a while? I remember reading a tool on HN a couple years ago about it. You don’t even need audio, the rate of which you enter the keys into the password field is enough.
How do you get the rate?
Maybe any one of your browser tabs has JS listening to the accelerometer. It doesn't even require a permission, AFAIK.
Looking at the traffic of an SSH session?
I seriously doubt that.