- Researchers at Graz University of Technology present FROST, a side-channel attack on the browser
- The method can reveal visited websites and open desktop applications, but requires the creation of large files.
- There are limitations, but the study highlights how modern browser features expand the attack surface for surveillance.
Security researchers have come up with a new way to spy on Internet users and they call it FROST. Recently, more than half a dozen researchers from the Graz University of Technology (Austria) published a new report called “FROST: Fingerprinting Remotelyusing OPFS-based SSD Timing” in which they claim that there is a way to spy on user activities directly through the browser.
This is a remote side channel technique that exploits a standard browser feature called Origin Private File System (OPFS). Generally, a side-channel attack is a way to steal secrets by measuring physical side effects, such as how long an action takes and how much energy it uses. In this case, researchers measured access speeds to solid state drives (SSDs), allowing them to track which websites a victim visited and which desktop applications they opened.
“Web browsers have evolved from simple document viewers to complex platforms capable of running sophisticated applications,” the research paper says. “Companies like Google, Microsoft and Adobe have developed complete office suites, photo and video editors, or even integrated development environments (IDE) that run entirely within the browser.”
There are limitations
“While these features enhance the capabilities of web applications and enable completely novel use cases, they also increase the attack surface of the browser, and some have already been shown to introduce new vulnerabilities.”
Unlike real-life exploits, those discovered in controlled environments have limitations, making them somewhat more difficult to perform in the wild. For example, the attack only works if the victim’s activity and the browser are running on the same SSD. The attack requires the creation of an exceptionally large file to bypass the computer’s cache, which can noticeably deplete free space on the victim’s disk, and since Firefox limits storage space per website to 10 GB, the attack is a little more difficult to perform on that specific browser.
It was also said that the attacker cannot perform a quick and short measurement, because the large file must first be deleted from the system cache. And finally, if a user runs software that completely moves their browser profile into RAM, the zero-interaction attack is successfully blocked.
Still, if you’re worried about someone using FROST to spy on you, make sure you keep only one tab open at a time.
Through Ars Technique
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds.
