Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices

Shujahat Ali Khan; Hasan Raza Bajwa; Jawahar Sundaram; Bharanidharan Shanmugam

doi:10.1109/InCACCT61598.2024.10550999

Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices

Shujahat Ali Khan, Hasan Raza Bajwa, Jawahar Sundaram, Pritika, Bharanidharan Shanmugam

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper published in Proceedings › peer-review

2 Citations (Scopus)

Abstract

Wearable devices are becoming more popular these days due to its unique features and its effectiveness. The evolution of Internet of Things (IoT) that combined health care devices and sensors has entirely changed the scenario in the healthcare infrastructure. This innovation will confidently improve the existing healthcare facilities and practices due to the continuous observing of patient's health even in the remote places. Regardless of their effectiveness, IoT devices are insecure and are vulnerable to security threats that should need to be overcome. The main issue is to protect from outside entities or attacks that may obstruct the advancement and put the individual's information at risk. This study focuses on outlining the vulnerabilities focusing on smartwatches in the healthcare IoT domain. Furthermore, it has been observed that a limited Bluetooth Low Energy (BLE) based smartwatches has a very weak or no security defense system making these devices vulnerable to various security threats such as Brute-force attacks, Man-in-The-Middle (MiTM) attacks, Denial of Service (DoS) attacks, and Phishing. Experimental testing has been performed to test the vulnerabilities in smartwatch devices to verify the data integrity concerns. By using Bluetooth sniffing tools, the security of the smart wearable devices has been tested to identify its weaknesses and to target the BLE devices. Attempts have been made to tamper its parameters by gaining access to the devices through Bluetooth connection. The overall result reveals that these devices are vulnerable to different exploits. This study provides the foundation to assess possible vulnerabilities in smart wearable devices. Furthermore, it highlights the loopholes existed in these devices which can be exploited.

Original language	English
Title of host publication	Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024
Editors	Rakesh Kumar, Rakesh Kumar, Meenu Gupta, Meenu Gupta
Place of Publication	Gharuan
Publisher	IEEE, Institute of Electrical and Electronics Engineers
Pages	911-916
Number of pages	6
ISBN (Electronic)	9798350371314
ISBN (Print)	9798350371321
DOIs	https://doi.org/10.1109/InCACCT61598.2024.10550999
Publication status	Published - 2024
Event	2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024 - Gharuan, India Duration: 2 May 2024 → 3 May 2024

Publication series

Name	Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024

Conference

Conference	2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024
Country/Territory	India
City	Gharuan
Period	2/05/24 → 3/05/24

Bibliographical note

Publisher Copyright:
© 2024 IEEE.

Access to Document

10.1109/InCACCT61598.2024.10550999

Cite this

Khan, S. A., Bajwa, H. R., Sundaram, J., Pritika , & Shanmugam, B. (2024). Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices. In R. Kumar, R. Kumar, M. Gupta, & M. Gupta (Eds.), Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024 (pp. 911-916). (Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024). IEEE, Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/InCACCT61598.2024.10550999

Khan, Shujahat Ali ; Bajwa, Hasan Raza ; Sundaram, Jawahar et al. / Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices. Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024. editor / Rakesh Kumar ; Rakesh Kumar ; Meenu Gupta ; Meenu Gupta. Gharuan : IEEE, Institute of Electrical and Electronics Engineers, 2024. pp. 911-916 (Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024).

@inproceedings{a92fc2ee2c62452eaf68583404246f04,

title = "Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices",

abstract = "Wearable devices are becoming more popular these days due to its unique features and its effectiveness. The evolution of Internet of Things (IoT) that combined health care devices and sensors has entirely changed the scenario in the healthcare infrastructure. This innovation will confidently improve the existing healthcare facilities and practices due to the continuous observing of patient's health even in the remote places. Regardless of their effectiveness, IoT devices are insecure and are vulnerable to security threats that should need to be overcome. The main issue is to protect from outside entities or attacks that may obstruct the advancement and put the individual's information at risk. This study focuses on outlining the vulnerabilities focusing on smartwatches in the healthcare IoT domain. Furthermore, it has been observed that a limited Bluetooth Low Energy (BLE) based smartwatches has a very weak or no security defense system making these devices vulnerable to various security threats such as Brute-force attacks, Man-in-The-Middle (MiTM) attacks, Denial of Service (DoS) attacks, and Phishing. Experimental testing has been performed to test the vulnerabilities in smartwatch devices to verify the data integrity concerns. By using Bluetooth sniffing tools, the security of the smart wearable devices has been tested to identify its weaknesses and to target the BLE devices. Attempts have been made to tamper its parameters by gaining access to the devices through Bluetooth connection. The overall result reveals that these devices are vulnerable to different exploits. This study provides the foundation to assess possible vulnerabilities in smart wearable devices. Furthermore, it highlights the loopholes existed in these devices which can be exploited.",

keywords = "Bluetooth Low Energy, Healthcare IOT, Security assessment, Security threats, Smart watch, Vulnerabilities",

author = "Khan, {Shujahat Ali} and Bajwa, {Hasan Raza} and Jawahar Sundaram and Pritika and Bharanidharan Shanmugam",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024 ; Conference date: 02-05-2024 Through 03-05-2024",

year = "2024",

doi = "10.1109/InCACCT61598.2024.10550999",

language = "English",

isbn = "9798350371321",

series = "Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024",

publisher = "IEEE, Institute of Electrical and Electronics Engineers",

pages = "911--916",

editor = "Rakesh Kumar and Rakesh Kumar and Meenu Gupta and Meenu Gupta",

booktitle = "Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024",

address = "United States",

}

Khan, SA, Bajwa, HR, Sundaram, J, Pritika, & Shanmugam, B 2024, Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices. in R Kumar, R Kumar, M Gupta & M Gupta (eds), Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024. Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024, IEEE, Institute of Electrical and Electronics Engineers, Gharuan, pp. 911-916, 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024, Gharuan, India, 2/05/24. https://doi.org/10.1109/InCACCT61598.2024.10550999

Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices. / Khan, Shujahat Ali; Bajwa, Hasan Raza; Sundaram, Jawahar et al.
Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024. ed. / Rakesh Kumar; Rakesh Kumar; Meenu Gupta; Meenu Gupta. Gharuan: IEEE, Institute of Electrical and Electronics Engineers, 2024. p. 911-916 (Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper published in Proceedings › peer-review

TY - GEN

T1 - Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices

AU - Khan, Shujahat Ali

AU - Bajwa, Hasan Raza

AU - Sundaram, Jawahar

AU - Pritika, null

AU - Shanmugam, Bharanidharan

PY - 2024

Y1 - 2024

N2 - Wearable devices are becoming more popular these days due to its unique features and its effectiveness. The evolution of Internet of Things (IoT) that combined health care devices and sensors has entirely changed the scenario in the healthcare infrastructure. This innovation will confidently improve the existing healthcare facilities and practices due to the continuous observing of patient's health even in the remote places. Regardless of their effectiveness, IoT devices are insecure and are vulnerable to security threats that should need to be overcome. The main issue is to protect from outside entities or attacks that may obstruct the advancement and put the individual's information at risk. This study focuses on outlining the vulnerabilities focusing on smartwatches in the healthcare IoT domain. Furthermore, it has been observed that a limited Bluetooth Low Energy (BLE) based smartwatches has a very weak or no security defense system making these devices vulnerable to various security threats such as Brute-force attacks, Man-in-The-Middle (MiTM) attacks, Denial of Service (DoS) attacks, and Phishing. Experimental testing has been performed to test the vulnerabilities in smartwatch devices to verify the data integrity concerns. By using Bluetooth sniffing tools, the security of the smart wearable devices has been tested to identify its weaknesses and to target the BLE devices. Attempts have been made to tamper its parameters by gaining access to the devices through Bluetooth connection. The overall result reveals that these devices are vulnerable to different exploits. This study provides the foundation to assess possible vulnerabilities in smart wearable devices. Furthermore, it highlights the loopholes existed in these devices which can be exploited.

AB - Wearable devices are becoming more popular these days due to its unique features and its effectiveness. The evolution of Internet of Things (IoT) that combined health care devices and sensors has entirely changed the scenario in the healthcare infrastructure. This innovation will confidently improve the existing healthcare facilities and practices due to the continuous observing of patient's health even in the remote places. Regardless of their effectiveness, IoT devices are insecure and are vulnerable to security threats that should need to be overcome. The main issue is to protect from outside entities or attacks that may obstruct the advancement and put the individual's information at risk. This study focuses on outlining the vulnerabilities focusing on smartwatches in the healthcare IoT domain. Furthermore, it has been observed that a limited Bluetooth Low Energy (BLE) based smartwatches has a very weak or no security defense system making these devices vulnerable to various security threats such as Brute-force attacks, Man-in-The-Middle (MiTM) attacks, Denial of Service (DoS) attacks, and Phishing. Experimental testing has been performed to test the vulnerabilities in smartwatch devices to verify the data integrity concerns. By using Bluetooth sniffing tools, the security of the smart wearable devices has been tested to identify its weaknesses and to target the BLE devices. Attempts have been made to tamper its parameters by gaining access to the devices through Bluetooth connection. The overall result reveals that these devices are vulnerable to different exploits. This study provides the foundation to assess possible vulnerabilities in smart wearable devices. Furthermore, it highlights the loopholes existed in these devices which can be exploited.

KW - Bluetooth Low Energy

KW - Healthcare IOT

KW - Security assessment

KW - Security threats

KW - Smart watch

KW - Vulnerabilities

UR - http://www.scopus.com/inward/record.url?scp=85196646999&partnerID=8YFLogxK

U2 - 10.1109/InCACCT61598.2024.10550999

DO - 10.1109/InCACCT61598.2024.10550999

M3 - Conference Paper published in Proceedings

AN - SCOPUS:85196646999

SN - 9798350371321

T3 - Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024

SP - 911

EP - 916

BT - Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024

A2 - Kumar, Rakesh

A2 - Gupta, Meenu

PB - IEEE, Institute of Electrical and Electronics Engineers

CY - Gharuan

T2 - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024

Y2 - 2 May 2024 through 3 May 2024

ER -

Khan SA, Bajwa HR, Sundaram J, Pritika , Shanmugam B. Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices. In Kumar R, Kumar R, Gupta M, Gupta M, editors, Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024. Gharuan: IEEE, Institute of Electrical and Electronics Engineers. 2024. p. 911-916. (Proceedings - 2nd International Conference on Advancement in Computation and Computer Technologies, InCACCT 2024). doi: 10.1109/InCACCT61598.2024.10550999

Vulnerability Analysis and Exploitation Attacks on Smart Wearable Devices

Abstract

Publication series

Conference

Bibliographical note

Access to Document

Other files and links

Fingerprint

Cite this