Computer attacks with laser light
IT systems that are physically isolated from the outside world (air-gapped) can still be attacked. This has been demonstrated by computer security experts in the LaserShark project.
The researchers showed that data can be transmitted to LEDs of regular office devices using a directed laser. With this, attackers can secretly communicate with air-gapped computer systems over distances of several meters. So in addition to conventional information and communication technology security, critical IT systems need to be protected optically as well.
Early December 2021, researchers of KIT, TU Braunschweig, and TU Berlin presented the LaserShark attack at the 37th Annual Computer Security Applications Conference (ACSAC). This research project focuses on hidden communication via optical channels. Computers or networks in critical infrastructures are often physically isolated to prevent external access. “Air-gapping” means that these systems have neither wired nor wireless connections to the outside world. Previous attempts to bypass such protection via electromagnetic, acoustic, or optical channels merely work at short distances or low data rates. Moreover, they frequently allow for data exfiltration only, that is, receiving data.
The Intelligent System Security Group of KASTEL – Institute of Information Security and Dependability of KIT, in cooperation with researchers from TU Braunschweig and TU Berlin, have demonstrated a new attack: With a directed laser beam, an adversary can introduce data into air-gapped systems and retrieve data without additional hardware on-side at the attacked device. “This hidden optical communication uses light-emitting diodes already build into office devices, for instance, to display status messages on printers or telephones,” explains group head Prof Christian Wressnegger. LEDs can receive light, although they are not designed to do so.
By directing laser light to already installed LEDs and recording their response, the researchers establish a hidden communication channel over a distance of up to 25 meters that can be used bidirectionally. It reaches data rates of 18.2 kilobits per second inwards and 100 kilobits per second outwards. This optical attack is possible in commercially available office devices used at companies, universities, and authorities. “The LaserShark project demonstrates how important it is to additionally protect critical IT systems optically next to conventional information and communication technology security measures,” Christian Wressnegger says.
To foster future research on covert communication channels and bridging the air gap, the IT security researchers publish the program code used in their experiments as well as the raw data of their measurements on the LaserShark project website intellisec.de/research/lasershark.
Reference: N. Kühnapfel et al.: LaserShark: Establishing Fast, Bidirectional Communication into Air-Gapped Systems, Proc. 37th Annual Computer Security Applications Conference (ACSAC), 2021; DOI: 10.1145/3485832.348591, [preprint at intellisec.de]
Company
Karlsruher Institut für Technologie (KIT)Kaiserstraße 12
76131 Karlsruhe
Germany
most read
Heitec takes over Artschwager + Kohl
Through the acquisition, the company aims to expand its range of warehouse logistics solutions and open up new market segments.
Hoerbiger takes over Physik Instrumente
With 1,900 employees, PI will form the new Positioning Division at Hoerbiger as an independent unit.
Stefan Schönegger becomes CTO at ABB Machine Automation
He has worked in various roles at Machine Automation since 2006 and has extensive experience in B&R technologies.
5 robotics trends for 2026
The International Federation of Robotics reports on the five most important trends for the robotics industry in 2026.
Lapp Group takes over JJ-Lapp completely
JJ-Lapp will now become a wholly-owned subsidiary of the Group, with financial details remaining confidential.