Wearable tracking devices have gained widespread usage and popularity because of the valuable services they offer, monitoring human's health parameters and, in general, assisting persons to take a better care of themselves. Nevertheless, the security risks associated with such devices can represent a concern among consumers, because of the sensitive information these devices deal with, like sleeping patterns, eating habits, heart rate and so on. In this paper, we analyse the key security and privacy features of two entry level health trackers from leading vendors (Jawbone and Fitbit), exploring possible attack vectors and vulnerabilities at several system levels. The results of the analysis show how these devices are vulnerable to several attacks (perpetrated with consumer-level devices equipped with just bluetooth and Wi-Fi) that can compromise users' data privacy and security, and eventually call the tracker vendors to raise the stakes against such attacks.
|Title of host publication||Proceedings of the 31st ACM Symposium on Applied Computing (SAC’16)|
|Number of pages||6|
|Publication status||Published - 2016|
|Event||31st Annual ACM Symposium on Applied Computing 2016 - Pisa, Italy|
Duration: 4 Apr 2016 → 8 Apr 2016
Conference number: 31
|Conference||31st Annual ACM Symposium on Applied Computing 2016|
|Period||04/04/2016 → 08/04/2016|
Bibliographical noteIn, track on HEALTHCARE: A Growing Scenario for Applied Computing, 2016, ACM.
- Wearable health rackers