Non-intrusive and Unconstrained Keystroke Inference in VR Platforms via Infrared Side Channel
Tao Ni
Network and Distributed System Security (NDSS) Symposium 2025 · Day 2 · Side Channels 1
As virtual reality (VR) technologies become increasingly integrated into daily life, spanning immersive gaming, healthcare, online meetings, and industrial design, the security implications of these platforms are growing in significance. This talk, presented by Tao Ni from City University of Hong Kong, unveils a novel and critical privacy vulnerability in widely adopted VR devices. The research identifies an **infrared (IR) side channel** stemming from the core tracking mechanisms of VR controllers, which can be exploited to infer virtual keystrokes typed by users.
AI review
Genuinely novel hardware side-channel attack on a class of devices that the security community has barely touched. The model-free, unconstrained approach is the real contribution here — no training data, no ML overhead, just physics and signal processing doing the work against Meta Quest 2 and Pico 4 in real deployment conditions. Not a 5 because the attack surface is narrowing as eye/hand-tracking displaces controller IR, and the LLM post-processing stage feels bolted on rather than integral.