CERIAS - Center for Education and Research in Information Assurance and Security

Skip Navigation
CERIAS Logo
Purdue University - Discovery Park
Center for Education and Research in Information Assurance and Security

Friend or Foe? Your Wearable Devices Reveal Your Personal PIN

Xiaonan Guo - IUPUI

Oct 04, 2017

Size: 132.4MB

Download: Video Icon MP4 Video  
Watch in your Browser   Watch on Youtube Watch on YouTube

Abstract

The proliferation of wearable devices, e.g., smartwatches and activity trackers, with embedded sensors has already shown its great potential on monitoring and inferring human daily activities. In this talk, I will present a serious security breach of wearable devices in the context of divulging secret information (i.e., key entries) while people accessing key-based security systems. Existing methods of obtaining such secret information relies on installations of dedicated hardware (e.g., video camera or fake keypad), or training with labeled data from body sensors, which restrict use cases in practical adversary scenarios. I will show that a wearable device can be exploited to discriminate mm-level distances and directions of the user’s fine-grained hand movements, which enable attackers to reproduce the trajectories of the user’s hand and further to recover the secret key entries.

About the Speaker

Xiaonan Guo received his Ph.D. degree in computer science and engineering from the Hong Kong University of Science and Technology under the guidance of Prof. Lionel M. Ni in 2013. Prior to joining IUPUI as an Assistant Professor at CIT department, he was a research associate working with Prof.Yingying Chen in the Electrical and Computer Engineering Department at Stevens Institute of Technology. His research interests include Cyber security and privacy, Security in mobile devices, intrusion detection using Wi-Fi for smart homes, Mobile healthcare and large data analysis on mobile devices. He received the Best Paper Award from ACM Conference on Information, Computer and Communications Security (ASIACCS) 2016​.

Unless otherwise noted, the security seminar is held on Wednesdays at 4:30P.M. STEW G52, West Lafayette Campus. More information...

Disclaimer

The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.