Imposing security awareness on wearables

Charles Walter, Matthew L. Hale, Rose F. Gamble

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Bluetooth reliant devices are increasingly proliferating into various industry and consumer sectors as part of a burgeoning wearable market that adds convenience and awareness to everyday life. Relying primarily on a constantly changing hop pattern to reduce data sniffing during transmission, wearable devices routinely disconnect and reconnect with their base station (typically a cell phone), causing a connection repair each time. These connection repairs allow an adversary to determine what local wearable devices are communicating to what base stations. In addition, data transmitted to a base station as part of a wearable app may be forwarded onward to an awaiting web API even if the base station is in an insecure environment (e.g. a public Wi-Fi). In this paper, we introduce an approach to increase the security and privacy associated with using wearable devices by imposing transmission changes given situational awareness of the base station. These changes are asserted via policy rules based on the sensor information from the wearable devices collected and aggregated by the base system. The rules are housed in an application on the base station that adapts the base station to a state in which it prevents data from being transmitted by the wearable devices without disconnecting the devices. The policies can be updated manually or through an over the air update as determined by the user.

Original languageEnglish (US)
Title of host publicationProceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016
PublisherAssociation for Computing Machinery, Inc
Pages29-35
Number of pages7
ISBN (Electronic)9781450341714
DOIs
StatePublished - May 14 2016
Event2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016 - Austin, United States
Duration: May 16 2016 → …

Publication series

NameProceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016

Other

Other2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016
CountryUnited States
CityAustin
Period5/16/16 → …

Fingerprint

Base stations
Repair
Wi-Fi
Bluetooth
Application programming interfaces (API)
Application programs
Sensors
Air
Industry

Keywords

  • Privacy
  • Security
  • Situational awareness
  • Wearables

ASJC Scopus subject areas

  • Software
  • Artificial Intelligence

Cite this

Walter, C., Hale, M. L., & Gamble, R. F. (2016). Imposing security awareness on wearables. In Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016 (pp. 29-35). (Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016). Association for Computing Machinery, Inc. https://doi.org/10.1145/2897035.2897038

Imposing security awareness on wearables. / Walter, Charles; Hale, Matthew L.; Gamble, Rose F.

Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016. Association for Computing Machinery, Inc, 2016. p. 29-35 (Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Walter, C, Hale, ML & Gamble, RF 2016, Imposing security awareness on wearables. in Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016. Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016, Association for Computing Machinery, Inc, pp. 29-35, 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016, Austin, United States, 5/16/16. https://doi.org/10.1145/2897035.2897038
Walter C, Hale ML, Gamble RF. Imposing security awareness on wearables. In Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016. Association for Computing Machinery, Inc. 2016. p. 29-35. (Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016). https://doi.org/10.1145/2897035.2897038
Walter, Charles ; Hale, Matthew L. ; Gamble, Rose F. / Imposing security awareness on wearables. Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016. Association for Computing Machinery, Inc, 2016. pp. 29-35 (Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016).
@inproceedings{c35f256a38a34addaa2babb27847eef8,
title = "Imposing security awareness on wearables",
abstract = "Bluetooth reliant devices are increasingly proliferating into various industry and consumer sectors as part of a burgeoning wearable market that adds convenience and awareness to everyday life. Relying primarily on a constantly changing hop pattern to reduce data sniffing during transmission, wearable devices routinely disconnect and reconnect with their base station (typically a cell phone), causing a connection repair each time. These connection repairs allow an adversary to determine what local wearable devices are communicating to what base stations. In addition, data transmitted to a base station as part of a wearable app may be forwarded onward to an awaiting web API even if the base station is in an insecure environment (e.g. a public Wi-Fi). In this paper, we introduce an approach to increase the security and privacy associated with using wearable devices by imposing transmission changes given situational awareness of the base station. These changes are asserted via policy rules based on the sensor information from the wearable devices collected and aggregated by the base system. The rules are housed in an application on the base station that adapts the base station to a state in which it prevents data from being transmitted by the wearable devices without disconnecting the devices. The policies can be updated manually or through an over the air update as determined by the user.",
keywords = "Privacy, Security, Situational awareness, Wearables",
author = "Charles Walter and Hale, {Matthew L.} and Gamble, {Rose F.}",
year = "2016",
month = "5",
day = "14",
doi = "10.1145/2897035.2897038",
language = "English (US)",
series = "Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016",
publisher = "Association for Computing Machinery, Inc",
pages = "29--35",
booktitle = "Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016",

}

TY - GEN

T1 - Imposing security awareness on wearables

AU - Walter, Charles

AU - Hale, Matthew L.

AU - Gamble, Rose F.

PY - 2016/5/14

Y1 - 2016/5/14

N2 - Bluetooth reliant devices are increasingly proliferating into various industry and consumer sectors as part of a burgeoning wearable market that adds convenience and awareness to everyday life. Relying primarily on a constantly changing hop pattern to reduce data sniffing during transmission, wearable devices routinely disconnect and reconnect with their base station (typically a cell phone), causing a connection repair each time. These connection repairs allow an adversary to determine what local wearable devices are communicating to what base stations. In addition, data transmitted to a base station as part of a wearable app may be forwarded onward to an awaiting web API even if the base station is in an insecure environment (e.g. a public Wi-Fi). In this paper, we introduce an approach to increase the security and privacy associated with using wearable devices by imposing transmission changes given situational awareness of the base station. These changes are asserted via policy rules based on the sensor information from the wearable devices collected and aggregated by the base system. The rules are housed in an application on the base station that adapts the base station to a state in which it prevents data from being transmitted by the wearable devices without disconnecting the devices. The policies can be updated manually or through an over the air update as determined by the user.

AB - Bluetooth reliant devices are increasingly proliferating into various industry and consumer sectors as part of a burgeoning wearable market that adds convenience and awareness to everyday life. Relying primarily on a constantly changing hop pattern to reduce data sniffing during transmission, wearable devices routinely disconnect and reconnect with their base station (typically a cell phone), causing a connection repair each time. These connection repairs allow an adversary to determine what local wearable devices are communicating to what base stations. In addition, data transmitted to a base station as part of a wearable app may be forwarded onward to an awaiting web API even if the base station is in an insecure environment (e.g. a public Wi-Fi). In this paper, we introduce an approach to increase the security and privacy associated with using wearable devices by imposing transmission changes given situational awareness of the base station. These changes are asserted via policy rules based on the sensor information from the wearable devices collected and aggregated by the base system. The rules are housed in an application on the base station that adapts the base station to a state in which it prevents data from being transmitted by the wearable devices without disconnecting the devices. The policies can be updated manually or through an over the air update as determined by the user.

KW - Privacy

KW - Security

KW - Situational awareness

KW - Wearables

UR - http://www.scopus.com/inward/record.url?scp=84973468675&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84973468675&partnerID=8YFLogxK

U2 - 10.1145/2897035.2897038

DO - 10.1145/2897035.2897038

M3 - Conference contribution

AN - SCOPUS:84973468675

T3 - Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016

SP - 29

EP - 35

BT - Proceedings - 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2016

PB - Association for Computing Machinery, Inc

ER -