COMPUTER SCIENCE SENIOR DESIGN

SPRING 2015

IoT Devices Software Security Analysis (IDSSA)

 

 
Andrew Mendoza

Andrew Mendoza

Igor Prokopenko

Igor Prokopenko

Thomas Louisville

Thomas Louisville

 


 

Project Description

The goal of this project is to provide a thorough analysis of security vulnerabilities in the software associated with various Internet of Things (IoT) devices. Using a reverse engineering procedure crafted by the team, we analyze the Bluetooth Low Energy communication protocols behind the Nike+ Fueldband and Xiaomi Mi Band fitness bands and introduce modifications to the mobile companion apps in order to expose possible security holes. We also analyze security vulnerabilities in the Nest Thermostat in an effort to help automate the introduction of custom patches onto the device that are developed by the Security in Silicon Lab research team. Our aim is to bring to light any exploits that may help companies produce more secure versions of these devices in future product iterations.

Project Files