Tone: An experimental Chrome extension for instant sharing over audio

I&#x27;ve been poking this the last few hours. It uses both audible and inaudible (ultrasonic) frequencies. The URL is passed to a Google service called Copresence to transform it into a short token - it&#x27;s this token that&#x27;s played. The Copresence client, and the playing&#x2F;listening code are part of Chromium&#x2F;Chrome 43.x. I think earlier versions won&#x27;t work with the extension.<p>Google Tone is similar to <a href="http:&#x2F;&#x2F;chirp.io&#x2F;" rel="nofollow">http:&#x2F;&#x2F;chirp.io&#x2F;</a>, which has iOS and Android apps. There are third-party transmitters (but not listeners) which work across browsers. <a href="http:&#x2F;&#x2F;piupiu.ga&#x2F;" rel="nofollow">http:&#x2F;&#x2F;piupiu.ga&#x2F;</a> is the most complete. I wrote a bookmarklet <a href="https:&#x2F;&#x2F;moreati.github.io&#x2F;chirpweb&#x2F;" rel="nofollow">https:&#x2F;&#x2F;moreati.github.io&#x2F;chirpweb&#x2F;</a>.

Note that this technique has a pretty neat malicious use case: bridging air gaps, in a way that removing&#x2F;disabling wireless chips won&#x27;t stop. You&#x27;d have to have already installed malware to the airgapped machine, of course, but once that&#x27;s done, chances are it&#x27;ll frequently be in range of (presumably easier to compromise) Internet-connected machines, and ultrasound allows slow but bidirectional communication.<p>This was alleged in 2013 to have been done in a piece of malware dubbed &quot;badBIOS&quot;, but said malware is likely imaginary.<p><a href="http:&#x2F;&#x2F;arstechnica.com&#x2F;security&#x2F;2013&#x2F;10&#x2F;meet-badbios-the-mysterious-mac-and-pc-malware-that-jumps-airgaps&#x2F;" rel="nofollow">http:&#x2F;&#x2F;arstechnica.com&#x2F;security&#x2F;2013&#x2F;10&#x2F;meet-badbios-the-mys...</a>

Oh hey, I actually built something extremely similar in a hacknight recently [1]. Except instead of just converting URLs to fixed size tokens (also how chirp.io works), I allowed arbitrary bit streams and forward error correction.<p>[1] <a href="https:&#x2F;&#x2F;github.com&#x2F;rraval&#x2F;pied-piper" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;rraval&#x2F;pied-piper</a>

I think it&#x27;s worth mentioning that this is yet another fairly cool project that relies on an always-on* microphone. I don&#x27;t remember who said it, but there was a very nice quote on HN recently about the currency of freedom i.e. it&#x27;s not something you should never spend, but you should be certain you&#x27;re getting your money&#x27;s worth. :I<p>*I realize you can turn it on and off, but it&#x27;s not designed to be done easily.

I guess this is like how the Square device and modems work, except the tones are played out loud?

It would be interesting to see something like this with but tweaked to produce sounds like, say, the background bleep bloop perchweeep noises in Star Trek.

Cool concept, with perhaps the most utterly pointless &quot;demo video&quot; I&#x27;ve ever seen!

would be nice if humans and computers could both produce&#x2F;consume the audio. That way you would have a secret language that you could perfectly communicate to computers with.