摘要
文章从设备架构和数据通信两方面研究了智能穿戴设备广泛存在的安全问题。以Apple Watch为例,基于智能手表上敏感数据的存储和传输方式,提出敏感数据的提取模型,该模型创新性地结合设备本机及配对设备来分析智能穿戴设备收集存储的敏感数据存在的安全风险。文章通过提取实例验证了模型的有效性,智能手表类穿戴计算设备不仅具有采集大量敏感数据的能力,且在数据存储和配对机制方面存在安全与隐私威胁。文章提出的模型及实验验证过程对进一步研究物联网环境下的各类智能终端设备安全具有重要意义。
This paper studied the widespread security problems of smart wearable devices from two aspects:device architecture and data communication.Taking Apple Watch as an example,this paper proposed an extraction model of sensitive data based on the storage and transmission mode of sensitive data on the smart watch.This model innovatively combined the device itself and paired device,analyzed the sensitive data collected and stored by smart wearable devices and the existing security risks.Finally,the feasibility and validity of the proposed model was confirmed through the experiments.Wearable computing devices not only have the ability to collect a large amount of sensitive data,but also have security and privacy threats in data storage and pairing mechanism.The proposed model and the process of experimental verification is of great significance for further research on the security of various intelligent terminal devices in the Internet of Things.
作者
倪雪莉
王群
梁广俊
NI Xueli;WANG Qun;LIANG Guangjun(Department of Computer Information and Cyber Security,Jiangsu Police Institute,Nanjing 210031,China;Jiangsu Electronic Data Forensics and Analysis Engineering Research Center^Nanjing 210031,China)
出处
《信息网络安全》
CSCD
北大核心
2022年第10期98-107,共10页
Netinfo Security
基金
江苏省高校自然科学研究重大项目[20KJA520004]
江苏省公安厅科技研究项目[2020KX008]。
