Wearable Devices Information Security: An Overview
Angelo Brichetto, Santiago Criollo-C, Ángel Jaramillo-Alcázar, Sergio Luján-Mora
Proceedings of the XV Multidisciplinary International Congress on Science and Technology (CIT 2020), p. 316-327, Quito (Ecuador), October 26-30, 2020. ISBN: 978-3-030-68079-4. https://doi.org/10.1007/978-3-030-68080-0_24
(CIT'20)
Congreso internacional / International conference
Resumen
Wearable technology has become a subject of research and analysis. However, the importance of the information carried across these devices incentivizes malicious individuals to look for ways to attack them and intercept such information for various illicit purposes, it makes information security a major concern for users and manufacturers. The purpose of this research is to analyze wearable devices security through different parameters centered on two different models found after a thorough research based on scientific articles, where the authors demonstrate their importance and effectiveness in the analysis of computer security. The first model selected was the DREAD model, which analyzes the Damage, Reproducibility, Exploitability, Affectability, and Discoverability of each attack examined. The second model chosen is the STRIDE model, this one allows to classify attacks within the main categories of threats, which are: denial of services, elevation of privileges, repudiation, among others. The analysis performed shows the injection of code attack as the one that represents a higher level of risk for wearable devices. On the other hand, the threat of information disclosure ends up being to which these devices are most susceptible because it houses the most attacks analyzed.