Security assessment of audience response systems using software defined radios
MetadataShow full item record
Citation (published version)Khai Phan, D Starobinski, Liangxiao Xin. 2016. "Security Assessment of Audience Response Systems using Software Defined Radios." 2016 IEEE MIT Undergraduate Research Technology Conference
Audience response systems, also known as clickers, are used at many academic institutions to offer active learning environments. Since these systems are used to administer graded assignments, and sometimes even exams, it is crucial to assess their security. Our work seeks to exploit and document potential vulnerabilities of clickers. For this purpose, we use software defined radios to perform eavesdropping attacks on an audience response system in production. The results of our study demon- strate that clickers are easily exploitable. We build a prototype and show that it is practically possible to covertly steal answers from a peer or even the entire classroom, with high levels of confidence. As a result of this study, we discourage using clickers for high-stake assessments, unless manufacturers provide proper security protection.