Friend or Foe? Your Wearable Devices Reveal Your Personal PIN
Xiaonan Guo - IUPUI
Oct 04, 2017Size: 132.4MB
Download: MP4 Video
Watch in your Browser Watch on YouTube
AbstractThe proliferation of wearable devices, e.g., smartwatches and activity trackers, with embedded sensors has already shown its great potential on monitoring and inferring human daily activities. In this talk, I will present a serious security breach of wearable devices in the context of divulging secret information (i.e., key entries) while people accessing key-based security systems. Existing methods of obtaining such secret information relies on installations of dedicated hardware (e.g., video camera or fake keypad), or training with labeled data from body sensors, which restrict use cases in practical adversary scenarios. I will show that a wearable device can be exploited to discriminate mm-level distances and directions of the user’s fine-grained hand movements, which enable attackers to reproduce the trajectories of the user’s hand and further to recover the secret key entries.
About the SpeakerXiaonan Guo received his Ph.D. degree in computer science and engineering from the Hong Kong University of Science and Technology under the guidance of Prof. Lionel M. Ni in 2013. Prior to joining IUPUI as an Assistant Professor at CIT department, he was a research associate working with Prof.Yingying Chen in the Electrical and Computer Engineering Department at Stevens Institute of Technology. His research interests include Cyber security and privacy, Security in mobile devices, intrusion detection using Wi-Fi for smart homes, Mobile healthcare and large data analysis on mobile devices. He received the Best Paper Award from ACM Conference on Information, Computer and Communications Security (ASIACCS) 2016.
The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.