A Case Study Exploring Side-Channel Attacks On Pet Wearables

Alla Levina; Vladimir Varyukhin; Dmitry Kaplun; Anna Zamansky; Dirk van der Linden

A Case Study Exploring Side-Channel Attacks On Pet Wearables

Alla Levina, Vladimir Varyukhin, Dmitry Kaplun, Anna Zamansky, Dirk van der Linden

Department of Information Systems

Research output: Contribution to journal › Article › peer-review

Abstract

IoT has long since come to the pet industry resulting in a proliferation of data-intensive devices including tracking anything from activity, health, to location. The resulting ‘Internet of Pets’ is generating large volumes of animal data which, due to the close link between the digital profile of companion animals held as pets (e.g., cats and dogs) and their caregivers holds significant security and privacy implications. In this case study we explore the vulnerability of such pet wearables to side-channel attacks, describing our implementation of an electromagnetic attack on a now discontinued dog activity tracker. We show how we were able to successfully exfiltrate data from the device during the Base64 encoding process and discuss what implications this holds for the security of these devices, given the lack of protection that animal data is afforded under extant existing data protection policy and legislation.

Original language	English
Article number	IJCS_48_4_04
Journal	IAENG International Journal of Computer Science
Volume	48
Issue number	4
State	Published - 2021

Bibliographical note

Publisher Copyright:
© 2021. IAENG International Journal of Computer Science. All Rights Reserved.

Keywords

Base64 encoding algorithm
Bluetooth
Electromagnetic attack
Pet wearables
Side-channel attack
Traces

ASJC Scopus subject areas

General Computer Science

Cite this

@article{5fbd1ddab446410b9cff7486f6fa13d6,

title = "A Case Study Exploring Side-Channel Attacks On Pet Wearables",

abstract = "IoT has long since come to the pet industry resulting in a proliferation of data-intensive devices including tracking anything from activity, health, to location. The resulting {\textquoteleft}Internet of Pets{\textquoteright} is generating large volumes of animal data which, due to the close link between the digital profile of companion animals held as pets (e.g., cats and dogs) and their caregivers holds significant security and privacy implications. In this case study we explore the vulnerability of such pet wearables to side-channel attacks, describing our implementation of an electromagnetic attack on a now discontinued dog activity tracker. We show how we were able to successfully exfiltrate data from the device during the Base64 encoding process and discuss what implications this holds for the security of these devices, given the lack of protection that animal data is afforded under extant existing data protection policy and legislation.",

keywords = "Base64 encoding algorithm, Bluetooth, Electromagnetic attack, Pet wearables, Side-channel attack, Traces",

author = "Alla Levina and Vladimir Varyukhin and Dmitry Kaplun and Anna Zamansky and {van der Linden}, Dirk",

year = "2021",

language = "English",

volume = "48",

journal = "IAENG International Journal of Computer Science",

issn = "1819-656X",

publisher = "International Association of Engineers",

number = "4",

}

TY - JOUR

T1 - A Case Study Exploring Side-Channel Attacks On Pet Wearables

AU - Levina, Alla

AU - Varyukhin, Vladimir

AU - Kaplun, Dmitry

AU - Zamansky, Anna

AU - van der Linden, Dirk

PY - 2021

Y1 - 2021

N2 - IoT has long since come to the pet industry resulting in a proliferation of data-intensive devices including tracking anything from activity, health, to location. The resulting ‘Internet of Pets’ is generating large volumes of animal data which, due to the close link between the digital profile of companion animals held as pets (e.g., cats and dogs) and their caregivers holds significant security and privacy implications. In this case study we explore the vulnerability of such pet wearables to side-channel attacks, describing our implementation of an electromagnetic attack on a now discontinued dog activity tracker. We show how we were able to successfully exfiltrate data from the device during the Base64 encoding process and discuss what implications this holds for the security of these devices, given the lack of protection that animal data is afforded under extant existing data protection policy and legislation.

AB - IoT has long since come to the pet industry resulting in a proliferation of data-intensive devices including tracking anything from activity, health, to location. The resulting ‘Internet of Pets’ is generating large volumes of animal data which, due to the close link between the digital profile of companion animals held as pets (e.g., cats and dogs) and their caregivers holds significant security and privacy implications. In this case study we explore the vulnerability of such pet wearables to side-channel attacks, describing our implementation of an electromagnetic attack on a now discontinued dog activity tracker. We show how we were able to successfully exfiltrate data from the device during the Base64 encoding process and discuss what implications this holds for the security of these devices, given the lack of protection that animal data is afforded under extant existing data protection policy and legislation.

KW - Base64 encoding algorithm

KW - Bluetooth

KW - Electromagnetic attack

KW - Pet wearables

KW - Side-channel attack

KW - Traces

UR - http://www.scopus.com/inward/record.url?scp=85122434365&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:85122434365

SN - 1819-656X

VL - 48

JO - IAENG International Journal of Computer Science

JF - IAENG International Journal of Computer Science

IS - 4

M1 - IJCS_48_4_04

ER -

A Case Study Exploring Side-Channel Attacks On Pet Wearables

Abstract

Bibliographical note

Keywords

ASJC Scopus subject areas

Other files and links

Fingerprint

Cite this