and darkest secrets with wearable tech. Yet, time after time the
organisations entrusted to protect such data have shown they
cannot be trusted. In light of these shortcomings the question
arises whether appropriate security controls are in place to protect
the sensitive personal information within wearable technology.
This talk will investigate a selection of the leading Smart Watches
on the market, where we will present our research addressing the
question: “How secure are our wearable tech devices?”
We will investigate what sensitive and PII data these devices
hold, how this is secured, and what the implications could be
should these devices be discarded, lost or stolen. Then we’ll
look at the system APIs that are exposed for developers to use
and analyse how these could be misused and fuzzed in order to
gain additional system access not intended by the manufacturer.
Once the attack surface is better understood, we will map out
the landscape for malware on Smart Watches, what potential
damage it could cause and how it could replicate.
Elliot Ward is a security consultant working for Gotham Digital
Science performing penetration tests and code review for thickclient,
web and mobile applications. He has previously worked for
Xbox writing code for both the Xbox 360 and Xbox One platforms.