dc.contributor.author | Alendal, Gunnar | |
dc.contributor.author | Axelsson, Stefan | |
dc.contributor.author | Dyrkolbotn, Geir Olav | |
dc.date.accessioned | 2022-04-20T13:16:57Z | |
dc.date.available | 2022-04-20T13:16:57Z | |
dc.date.created | 2022-01-18T13:02:27Z | |
dc.date.issued | 2021 | |
dc.identifier.citation | IFIP Advances in Information and Communication Technology. 2021, 612 111-133. | en_US |
dc.identifier.issn | 1868-4238 | |
dc.identifier.uri | https://hdl.handle.net/11250/2991686 | |
dc.description.abstract | Modern consumer devices present major challenges in digital forensic investigations due to security mechanisms that protect user data. The entire physical attack surface of a seized device such as a mobile phone must be considered in an effort to acquire data of forensic value.
Several USB protocols have been introduced in recent years, including Power Delivery, which enables negotiations of power delivery to or from attached devices. A key feature is that the protocol is handled by dedicated hardware that is beyond the control of the device operating systems. This self-contained design is a security liability with its own attack surface and undocumented trust relationships with other peripherals and the main system-on-chips.
This chapter presents a methodology for vulnerability discovery in USB Power Delivery implementations for Apple devices. The protocol and Apple-specific communications are reverse engineered, along with the firmware of the dedicated USB Power Delivery hardware. The investigation of the attack surface and potential security vulnerabilities can facilitate data acquisition in digital forensic investigations. | en_US |
dc.language.iso | eng | en_US |
dc.publisher | Springer | en_US |
dc.title | Leveraging The USB Power Delivery Implementation For Digital Forensic Acquisition | en_US |
dc.type | Peer reviewed | en_US |
dc.type | Journal article | en_US |
dc.description.version | acceptedVersion | en_US |
dc.source.pagenumber | 111-133 | en_US |
dc.source.volume | 612 | en_US |
dc.source.journal | IFIP Advances in Information and Communication Technology | en_US |
dc.identifier.doi | 10.1007/978-3-030-88381-2_6 | |
dc.identifier.cristin | 1983556 | |
dc.relation.project | Norges forskningsråd: 248094 | en_US |
dc.description.localcode | This is the authors' accepted manuscript to an article published by Springer. Locked until 15/10-2022 due to copyright restrictions. | en_US |
cristin.ispublished | true | |
cristin.fulltext | postprint | |
cristin.qualitycode | 1 | |