Threat Analysis for Wearable Health Devices and Environment Monitoring Internet of Things Integration System

Abstract

With the rapid development of Internet of Things (IoT) applications, heterogeneous device management issues tend to arise in architecture security due to hardware computing power, types of software, data transmission interfaces, and networking protocols. Even during data exchange between devices and systems, traditional IoT devices are prone to the disclosure of personal information, which compromises privacy. Thus, planning an effective information security management strategy has become an essential part of application development. This paper presents a strategy to achieve information security verification and risk assessment for an IoT-based personal health information system. Using several interfaces of IoT devices, including Wi-Fi and Bluetooth, we simulate possible attack hypotheses and define test methods and evaluation methods suitable for each device. In our application systems for information security analysis, we also consider and integrate weaknesses of the system architecture to achieve a more complete information security threat analysis.