Phone Light Sensor: A Potential Tool for Unauthorized Surveillance

By Ngoma Manuel Computer & Electronics, Cybernetics, Mobile Phones, Tech Hacker, Phone Comments Off

In increasingly mobile-dependent lives, people entrust their smartphones with various sensitive tasks, from financial transactions to work-related activities and even documenting personal musings through apps like Notes. However, a recent study conducted by MIT researchers sheds light on a potential privacy threat associated with the unassuming ambient light sensor in most phones.

The Vulnerability of Ambient Light Sensors

While smartphones often require user permissions for apps to access features like the camera or microphone, ambient light sensors typically operate without such constraints. According to the MIT team led by Yang Liu, hackers could exploit this vulnerability to track and reconstruct a user’s activities.

The researchers developed an algorithm capable of utilizing variations captured by the light sensor to reconstruct images of a person’s touch interactions with their phone, such as scrolling or swiping. Testing the algorithm on an off-the-shelf Android tablet in various scenarios, including interactions with a dummy and gestures during video playback, revealed that light sensor data could recreate screen interactions.

Privacy Threat and Current Limitations

Despite the potential privacy threat, the study assures that the risk is not imminent. The rate at which images could be retrieved was relatively slow, at one frame every 3.3 minutes. This limitation would make it challenging for any potential threat to keep up with real-time phone interactions. Additionally, images retrieved from a natural video source were found to be relatively blurry.

Mitigating Potential Risks

To address potential risks, the researchers propose several recommendations. They emphasize the need to restrict access to ambient light sensors, requiring user permission similar to camera or microphone requests. Furthermore, they suggest imposing limitations on the sensor’s precision and speed to prevent the creation of high-resolution images. Placing the sensor on the side of the device where it cannot capture revealing gestures is also suggested as a protective measure.

In conclusion, while the threat of exploiting ambient light sensors to invade privacy has been demonstrated, implementing suggested software restrictions and precautions can help mitigate the risks associated with this emerging vulnerability.

Read the original article on Science Advances.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Phone Light Sensor: A Potential Tool for Unauthorized Surveillance