English

False Reality: Uncovering Sensor-induced Human-VR Interaction Vulnerability

Cryptography and Security 2026-05-26 v2 Human-Computer Interaction

Abstract

Virtual Reality (VR) techniques, serving as the bridge between the real and virtual worlds, have boomed and are widely used in manufacturing, remote healthcare, gaming, etc. Specifically, VR systems offer users immersive experiences that include both perceptions and actions. Various studies have demonstrated that attackers can manipulate VR software to influence users' interactions, including perception and actions. However, such attacks typically require strong access and specialized expertise. In this paper, we are the first to present a systematic analysis of physical attacks against VR systems and introduce False Reality, a new attack threat to VR devices without requiring access to or modification of their software. False Reality disturbs VR system services by tampering with sensor measurements, and further spoofing users' perception even inducing harmful actions, e.g., inducing dizziness or causing users to crash into obstacles, by exploiting perceptual and psychological effects. We formalize these threats through an attack pathway framework and validate three representative pathways via physical experiments and user studies on five commercial VR devices. Finally, we further propose a defense prototype to mitigate such threats. Our findings shall provide valuable insights for enhancing the security and resilience of future VR systems.

Keywords

Cite

@article{arxiv.2508.08043,
  title  = {False Reality: Uncovering Sensor-induced Human-VR Interaction Vulnerability},
  author = {Yancheng Jiang and Yan Jiang and Ruochen Zhou and Yi-Chao Chen and Xiaoyu Ji and Wenyuan Xu},
  journal= {arXiv preprint arXiv:2508.08043},
  year   = {2026}
}

Comments

The paper is being extensively rewritten

R2 v1 2026-07-01T04:44:27.948Z