BCG and ECG-based secure communication for medical devices in Body Area Networks. Beck, N.; Zuo, S.; and Sigg, S. In The 19th International Conference on Pervasive Computing and Communications (PerCom 2021), adjunct, 2021.
abstract   bibtex   
An increasing amount of medical devices, such as pace makers or insulin pumps, is able to communicate in wireless Body Area Networks (BANs). While this facilitates interaction between users and medical devices, something that was previously more complicated or - in the case of implanted devices - often impossible, it also raises security and privacy questions. We exploit the wide availability of ballistocardiographs (BCG) and electocardiographs (ECG) in consumer wearables and propose MEDISCOM, an ad-hoc, implicit and secure communication protocol for medical devices in local BANs. Deriving common secret keys from a body’s BCG or ECG signal. MEDISCOM ensures confidentiality and integrity of sensitive medical data and also continuously authenticates devices, requiring no explicit user interaction and maintaining a low computational overhead. We consider relevant attack vectors and show how MEDISCOM is resilient towards them. Furthermore, we validate the security of the secret keys that our protocol derives on BCG and ECG data from 29 subjects.
@inproceedings{Beck2020BCGECG,
  title={BCG and ECG-based secure communication for medical devices in Body Area Networks},
  author={Nils Beck and Si Zuo and Stephan Sigg},
  booktitle={The 19th International Conference on Pervasive Computing and Communications (PerCom 2021), adjunct},
  year={2021},
  abstract={An increasing amount of medical devices, such as pace makers or insulin pumps, is able to communicate in wireless Body Area Networks (BANs). While this facilitates interaction between users and medical devices, something that was previously more complicated or - in the case of implanted devices - often impossible, it also raises security and privacy questions. We exploit the wide availability of ballistocardiographs (BCG) and electocardiographs (ECG) in consumer wearables and propose MEDISCOM, an ad-hoc, implicit and secure communication protocol for medical devices in local BANs. Deriving common secret keys from a body’s BCG or ECG signal. MEDISCOM ensures confidentiality and integrity of sensitive medical data and also continuously authenticates devices, requiring no explicit user interaction and maintaining a low computational overhead. We consider relevant attack vectors and show how MEDISCOM is resilient towards them. Furthermore, we validate the security of the secret keys that our protocol derives on BCG and ECG data from 29 subjects.
},
  group = {ambience},
  project = {abacus}
}
Downloads: 0