SoK: Security and Privacy in Implantable Medical Devices and Body Area Networks

Rushanan, Michael; Rubin, Aviel D.; Kune, Denis Foo; Swanson, Colleen M.

doi:10.1109/sp.2014.40

Cited by 202 publications

(163 citation statements)

References 68 publications

Supporting

Mentioning

138

Contrasting

Order By: Relevance

“…Some on-body or implantable medical devices use body channel communication to transmit and receive sensor readings, either to and from each other or to establish communication with an external device which is used to monitor and program the implantable devices. An extensive survey and overview of literature about the security and privacy of body area networks and implantable medical devices can be found in [25].…”

Section: Related Workmentioning

confidence: 99%

Device Pairing at the Touch of an Electrode

Roeschlin

Martinovic

Rasmussen

2018

Proceedings 2018 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

Abstract-Device pairing is the problem of having two devices securely establish a key that can be used to secure subsequent communication. The problem arises every time two devices that do not already share a secret need to bootstrap a secure communication channel. Many solutions exist, all suited to different situations, and all with their own strengths and weaknesses.In this paper, we propose a novel approach to device pairing that applies whenever a user wants to pair two devises that can be physically touched at the same time. The pairing process is easy to perform, even for novice users. A central problem for a device (Alice) running a device pairing protocol, is determining whether the other party (Bob) is in fact the device that we are supposed to establish a key with. Our scheme is based on the idea that two devices can perform device pairing, if they are physically held by the same person (at the same time). In order to pair two devices, a person touches a conductive surface on each device. While the person is in contact with both devices, the human body acts as a transmission medium for intra-body communication and the two devices can communicate through the body. This body channel is used as part of a pairing protocol which allows the devices to agree on a mutual secret and, at the same time, extract physical features to verify that they are being held by the same person. We prove that our device pairing protocol is secure in our threat model and we build a proof of concept set-up and conduct experiments with 15 people to verify the idea in practice.

show abstract

Section: Related Workmentioning

confidence: 99%

Device Pairing at the Touch of an Electrode

Roeschlin

Martinovic

Rasmussen

2018

Proceedings 2018 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…Malicious cyber attacks to WBSN can change the designated address of packages and disturb the routing, steal medical data by illegal listening to wireless communication environment, detect the location of patient and track his activities, make changes to data, create fake emergence signals in medical data, can carry out DoS-attacks (Denial of Service), interventions to physical devices and "jamming" attacks, side channel attacks, exhausting energy source -the battery, analogous sensor injection, and other attacks [32,33].…”

Section: Information Security In Wireless Body Sensor Networkmentioning

confidence: 99%

Problems of Information Security in E-Health

İmamverdiyev¹

2017

JPIS

View full text Add to dashboard Cite

show abstract

“…Therefore, these techniques can hardly be applied to satisfy user privacy protection requirements in a collaborative and transparent interaction environment. Most scholars use traditional information security methods, for instance, encryption or anonymity, to perform research on privacy data protection in cloud computing [5][6][7][8].…”

Section: Introductionmentioning

confidence: 99%

Privacy Data Decomposition and Discretization Method for SaaS Services

Huang

Xiao

et al. 2017

Mathematical Problems in Engineering

View full text Add to dashboard Cite

In cloud computing, user functional requirements are satisfied through service composition. However, due to the process of interaction and sharing among SaaS services, user privacy data tends to be illegally disclosed to the service participants. In this paper, we propose a privacy data decomposition and discretization method for SaaS services. First, according to logic between the data, we classify the privacy data into discrete privacy data and continuous privacy data. Next, in order to protect the user privacy information, continuous data chains are decomposed into discrete data chain, and discrete data chains are prevented from being synthesized into continuous data chains. Finally, we propose a protection framework for privacy data and demonstrate its correctness and feasibility with experiments.

show abstract

SoK: Security and Privacy in Implantable Medical Devices and Body Area Networks

Cited by 202 publications

References 68 publications

Device Pairing at the Touch of an Electrode

Device Pairing at the Touch of an Electrode

Problems of Information Security in E-Health

Privacy Data Decomposition and Discretization Method for SaaS Services

Contact Info

Product

Resources

About