IoT Droplocks: Wireless Fingerprint Theft Using Hacked Smart Locks
Conference Publication ResearchOnline@JCUAbstract
Electronic locks can provide security- and convenience-enhancing features, with fingerprint readers an increasingly common feature in these products. When equipped with a wireless radio, they become a smart lock and join the billions of IoT devices proliferating our world. However, such capabilities can also be used to transform smart locks into fingerprint harvesters that compromise an individual's security without their knowledge. We have named this the "droplock" attack. This paper demonstrates how the harvesting technique works, shows that off-the-shelf smart locks can be invisibly modified to perform such attacks, discusses the implications for smart device design and usage, and calls for better manufacturer and public treatment of this issue.
Journal
N/A
Publication Name
IEEE iThings-2022: 15th IEEE International Conference on Internet of Things
Volume
N/A
ISBN/ISSN
978-1-6654-5417-9
Edition
N/A
Issue
N/A
Pages Count
6
Location
Espoo, Finland
Publisher
Institute of Electrical and Electronics Engineers
Publisher Url
N/A
Publisher Location
Piscataway, NJ, USA
Publish Date
N/A
Url
N/A
Date
N/A
EISSN
N/A
DOI
10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics55523.2022.00054