HubBub: Contention-Based Side-Channel Attacks on USB Hubs
Junpeng Wan
34th USENIX Security Symposium (USENIX Security '25) · Day 2 · Hardware Security 2
The "HubBub" talk at USENIX Security unveils a novel class of side-channel attacks that exploit hardware contention within Universal Serial Bus (USB) hubs. Presented by Junpeng Wan from Purdue University, this research highlights how the shared nature of USB bus resources, a fundamental aspect of hub design, can be leveraged by attackers to infer sensitive information from co-located devices. This work is particularly pertinent given the increasing reliance on USB hubs in modern computing environments, especially with the proliferation of laptops featuring fewer integrated ports, necessitating external expansion.
AI review
HubBub is legitimate academic security research that surfaces a genuinely underexplored attack surface — USB hub contention as a side channel. The threat model is realistic, the implementation is rigorous, and 98% website fingerprinting accuracy across 15+ distinct hub configurations is not a cherry-picked lab result. Solid USENIX-tier work from a grad student who clearly did the grind.