Abstract: Smartwatches such as the Apple Watch collect vast amounts of intimate health and fitness data as we wear them. Users have little choice regarding how this data is processed: The Apple Watch can only be used with Apple’s iPhones, using their software and their cloud services. We are the first to publicly reverse-engineer the watch’s wireless protocols, which led to discovering multiple security issues in Apple’s proprietary implementation. With WatchWitch, our custom Android reimplementation, we break out of Apple’s walled garden – demonstrating practical interoperability with enhanced privacy controls and data autonomy. We thus pave the way for more consumer choice in the smartwatch ecosystem, offering users more control over their devices.
WatchWitch: Interoperability, Privacy, and Autonomy for the Apple Watch
- von derleiti
- Allgemein