Yongdae Kim is a KAIST Chair Professor in the Department of Electrical Engineering and an affiliate professor in the GSIS at KAIST. He received PhD degree from the computer science department at the University of Southern California under the guidance of Gene Tsudik. Between 2002 and 2012, he was an associate/assistant professor in the Department of Computer Science and Engineering at the University of Minnesota - Twin Cities. Before joining U of Minnesota, he worked as a research staff for two years in Sconce Group in UC Irvine. Before coming to the US, he worked 6 years in ETRI for securing Korean cyberinfrastructure. He received NSF career award on storage security and McKnight Land-Grant Professorship Award from University of Minnesota in 2005. Currently, he is serving as a steering committee member of NDSS and an associate editor for ACM Transactions on Information and System Security (TISSEC). His current research interests include security issues for various systems such as social networks, cellular networks, P2P systems, medical devices, storage systems, mobile/ad hoc/sensor/cellular networks, and anonymous communication systems.
[Abstract] Many of the cyber physical systems (such as smart grid, medical devices, and even small bluetooth headset) take input from sensors and take action based on the input. For example, insulin pump controls insulin injection level based on the amount of sugar in a patient's body. Using a cable between the sensor and actuator, as an antenna, we show how one can inject arbitrary input event to the sensor, which results in malfunctioning of actuator. Taking pacemaker as an example, we were able to inhibit pacing of pacemaker by injecting healthy individual's heart rhythm. We apply the same principle to a bluetooth headset to show that an attacker can inject arbitrary voice to a mike in the headset