TU Darmstadt / ULB / TUbiblio

Fitness Trackers: Fit for Health but Unfit for Security and Privacy

Fereidooni, Hossein and Frassetto, Tommaso and Miettinen, Markus and Sadeghi, Ahmad-Reza and Conti, Mauro (2017):
Fitness Trackers: Fit for Health but Unfit for Security and Privacy.
In: The Second IEEE International Workshop on Safe, Energy-Aware, & Reliable Connected Health (CHASE-SEARCH), Philadelphia, Pennsylvania, USA, [Conference or Workshop Item]

Abstract

Wearable devices for fitness tracking and health monitoring have gained considerable popularity and become one of the fastest growing smart devices market. More and more companies are offering integrated health and activity monitoring solutions for fitness trackers. Recently insurances are offering their customers better conditions for health and condition monitoring. However, the extensive sensitive information collected by tracking products and accessibility by third party service providers poses vital security and privacy challenges on the employed solutions. In this paper, we present our security analysis of a representative sample of current fitness tracking products on the market. In particular, we focus on malicious user setting that aims at injecting false data into the cloud-based services leading to erroneous data analytics. We show that none of these products can provide data integrity, authenticity and confidentiality.

Item Type: Conference or Workshop Item
Erschienen: 2017
Creators: Fereidooni, Hossein and Frassetto, Tommaso and Miettinen, Markus and Sadeghi, Ahmad-Reza and Conti, Mauro
Title: Fitness Trackers: Fit for Health but Unfit for Security and Privacy
Language: German
Abstract:

Wearable devices for fitness tracking and health monitoring have gained considerable popularity and become one of the fastest growing smart devices market. More and more companies are offering integrated health and activity monitoring solutions for fitness trackers. Recently insurances are offering their customers better conditions for health and condition monitoring. However, the extensive sensitive information collected by tracking products and accessibility by third party service providers poses vital security and privacy challenges on the employed solutions. In this paper, we present our security analysis of a representative sample of current fitness tracking products on the market. In particular, we focus on malicious user setting that aims at injecting false data into the cloud-based services leading to erroneous data analytics. We show that none of these products can provide data integrity, authenticity and confidentiality.

Title of Book: The Second IEEE International Workshop on Safe, Energy-Aware, & Reliable Connected Health (CHASE-SEARCH)
Divisions: 20 Department of Computer Science
20 Department of Computer Science > System Security Lab
Event Location: Philadelphia, Pennsylvania, USA
Date Deposited: 18 Jul 2017 11:49
Identification Number: TUD-CS-2017-0188
Export:
Suche nach Titel in: TUfind oder in Google

Optionen (nur für Redakteure)

View Item View Item