Side-Channel Information: Exploiting Side-Channels to Extract Information Across Domains


Information within systems can be extracted through side-channels; unintended communication channels that leak information. Reviewed is the exploitation of side-channels across cybersecurity, medical diagnostics, and human-computer interaction. Despite the diversity of domains, shared properties of system structure, information sources, channel modalities, sensing strategies and information recovery techniques reveal a common structure. This structure is formalised as the field of Side-Channel Information (SCI): using sensor data in non-trivial ways to recover hidden or unintended information. Insights drawn from case studies formulate the SCI framework; a systematic approach for detecting, extracting and validating SCI, allowing side-channel concepts to be extended across domains.


Journal Articles

[1] Aaron Spence and Shaun Bangay. Security beyond cybersecurity: side-channel attacks against non-cyber systems and their countermeasures. International Journal of Information Security, 2021. [PDF] [BibTeX]

[2] Aaron Spence and Shaun Bangay. Side-channel sensing: Exploiting side-channels to extract information for medical diagnostics and monitoring. IEEE Journal of Translational Engineering in Health and Medicine, 8(4900213):1–13, 2020. [PDF] [BibTeX]