TY - GEN
T1 - Secure key-exchange protocol for implants using heartbeats
AU - Seepers, Robert M.
AU - Weber, Jos H.
AU - Erkin, Zekeriya
AU - Sourdis, Ioannis
AU - Strydis, Christos
PY - 2016/5/16
Y1 - 2016/5/16
N2 - The cardiac interpulse interval (IPI) has recently been pro-posed to facilitate key exchange for implantable medical de-vices (IMDs) using a patient's own heartbeats as a source of trust. While this form of key exchange holds promise for IMD security, its feasibility is not fully understood due to the simplified approaches found in related works. For exam-ple, previously proposed protocols have been designed with-out considering the limited randomness available per IPI, or have overlooked aspects pertinent to a realistic system, such as imperfect heartbeat detection or the energy overheads im-posed on an IMD. In this paper, we propose a new IPI-based key-exchange protocol and evaluate its use during medical emergencies. Our protocol employs fuzzy commitment to tolerate the expected disparity between IPIs obtained by an external reader and an IMD, as well as a novel way of tack-ling heartbeat misdetection through IPI classification. Using our protocol, the expected time for securely exchanging an 80-bit key with high probability (1-106) is roughly one minute, while consuming only 88 μJ from an IMD.
AB - The cardiac interpulse interval (IPI) has recently been pro-posed to facilitate key exchange for implantable medical de-vices (IMDs) using a patient's own heartbeats as a source of trust. While this form of key exchange holds promise for IMD security, its feasibility is not fully understood due to the simplified approaches found in related works. For exam-ple, previously proposed protocols have been designed with-out considering the limited randomness available per IPI, or have overlooked aspects pertinent to a realistic system, such as imperfect heartbeat detection or the energy overheads im-posed on an IMD. In this paper, we propose a new IPI-based key-exchange protocol and evaluate its use during medical emergencies. Our protocol employs fuzzy commitment to tolerate the expected disparity between IPIs obtained by an external reader and an IMD, as well as a novel way of tack-ling heartbeat misdetection through IPI classification. Using our protocol, the expected time for securely exchanging an 80-bit key with high probability (1-106) is roughly one minute, while consuming only 88 μJ from an IMD.
UR - https://www.scopus.com/pages/publications/84978471938
U2 - 10.1145/2903150.2903165
DO - 10.1145/2903150.2903165
M3 - Conference proceeding
AN - SCOPUS:84978471938
T3 - ACM International Conference on Computing Frontiers
SP - 119
EP - 126
BT - 2016 ACM International Conference on Computing Frontiers - Proceedings
PB - Association for Computing Machinery (ACM)
T2 - ACM International Conference on Computing Frontiers, CF 2016
Y2 - 16 May 2016 through 18 May 2016
ER -