Overview
Syllabus
Intro
loT/Wearable Ecosystem
Case Study: In-ear fitness coach
Challenges: Securing a never-before gadget
Challenges - Technical
Proposal : Securing a never-before gadget
Introducing SPDL
Security topics
Hardware & Firmware Security Paradigms
SW Security Paradigms: application SW
Cloud Software & Infrastructure Security
Ecosystem security challenges
Device communication
The Problem - Prelude
Root Cause
Example - Wearable Ecosystem 1
Example - Wearable Ecosystem 2
Environment
Our Recommendation
Ecosystem overview
Target : Sign-up and Profile pages
Exploit Scenario: The attack
Victim - logs in
Attacker's c&c
Access to admin portal
Regulatory Guidelines and Privacy Laws
Privacy Breaches
Quantifying Privacy Vulnerabilities
Taught by
Black Hat