Concepts – USB as a charge port
The concept is simple, leading smart phones on the market have been designed to utilize the same port for charging the phone as data transfer. This opens the opportunity to trick a user in need of a charge to expose their phone’s data port. The attack encompasses many facets of information security, including security design, user awareness, attacks against system design/code, as well a bit of social engineering.
Information security is all about risk analysis. One standard to quantify this risk is Risk=Vulnerability*Exposure. Vulnerability can be considered leaving your car unlocked, Exposure is when the thief identifies this and opens the door. Your risk factor will increase if either factor is changed (e.g.. you left your car door unlocked, with the keys inside, or you leave your car unattended in a public parking lot vs. your home garage.)
With juice jacking, the vulnerability or attack vector is the phone’s USB port, the exposure factor is dependent on the user’s awareness of this possible attack method and their phone’s battery life. When these two factors come together, the unsuspecting user plugs their phone into a malicious system, the attack is able to take place. In the age where business executives travel regularly, and depend on access to their phones to respond to emails, check their schedule, etc.. (basic work functionality) this vector may come up more often then people presume.
There is no reason to presume the kiosks filling airports and other public places are inherently malicious. It is important for the public to know that the threat exists, which is why it’s a concern and a defense should be put in place. Options of defending against this possible attack are easy, and can be approached from many angles.
Below is an example of what our first proof of concept looked liked in action.