IoT Devices Software Security Analysis (IDSSA)
The goal of this project is to provide a thorough analysis of security vulnerabilities in the software associated with various Internet of Things (IoT) devices. Using a reverse engineering procedure crafted by the team, we analyze the Bluetooth Low Energy communication protocols behind the Nike+ Fueldband and Xiaomi Mi Band fitness bands and introduce modifications to the mobile companion apps in order to expose possible security holes. We also analyze security vulnerabilities in the Nest Thermostat in an effort to help automate the introduction of custom patches onto the device that are developed by the Security in Silicon Lab research team. Our aim is to bring to light any exploits that may help companies produce more secure versions of these devices in future product iterations.