Trust Exploitation – Data Extraction

Back to Infographic

Exploitation is an area of great agility and opportunity in the penetration test. The cyber/kinetic nature of AR devices allow for a great deal of potential for using the devices in novel ways to circumvent and defeat protection mechanisms. In addition, this area provides the greatest degree of potential complexity in a penetration test. Due to the kinetic impact factors (the device exists in a defined enterprise state and captures data, actively and passively about the environment in which it exists) full scope testing requires that the device be engaged in its typical operational environment. Testing in the operational environment(s) provides a much greater degree of fidelity in determining potential attack opportunities, vector transition options and impact effects.

Although it typically lies in the domain of the penetration tester to determine exploit methods within the attack chain, a developer or owner/operator of AR devices should be aware of the novel exploit potential that exist with AR devices. Using this AR Security Framework allows stakeholders to provide more specific direction to penetration test teams to focus and address the risk factors of these methods:

• Using spatial mapping to identify the behaviours of security personnel.
• Using spatial mapping to locate security devices, cameras, and alarms.
• Using spatial mapping to capture physical protection mechanisms.
• Using video capture to gather data on air-gapped systems.
• Using image capture to gather data on identification badges.
• Using video capture to gather authentication data (passwords, etc.) from the environment.
• Using cloud-based spatial anchors to spoof a legitimate interface to capture passwords.
• Using spatial mapping to locate target items or systems.

AR-unique threat types