http://www.theregister.co.uk/2005/06/08/bl...th_mobo_attack/
basically, if there's an active bluetooth connection, you'd trigger a re-pairing key exchange and snoop the key exchange, and can crack the key very quickly.
sigh. so, basically, it's now 802.11 with WPA or nothing... not that I think any of my neighbours have got the know-how to sniff and break into my bluetooth link...
well, I never resolved my bluetooth problems, so I've got to get the wpa_supplicant working now :-/
Full Version: Bluetooth No Longer Secure
QUOTE(speculatrix @ Jun 8 2005, 09:18 PM)
http://www.theregister.co.uk/2005/06/08/bl...th_mobo_attack/
basically, if there's an active bluetooth connection, you'd trigger a re-pairing key exchange and snoop the key exchange, and can crack the key very quickly.
sigh. so, basically, it's now 802.11 with WPA or nothing... not that I think any of my neighbours have got the know-how to sniff and break into my bluetooth link...
well, I never resolved my bluetooth problems, so I've got to get the wpa_supplicant working now :-/
basically, if there's an active bluetooth connection, you'd trigger a re-pairing key exchange and snoop the key exchange, and can crack the key very quickly.
sigh. so, basically, it's now 802.11 with WPA or nothing... not that I think any of my neighbours have got the know-how to sniff and break into my bluetooth link...
well, I never resolved my bluetooth problems, so I've got to get the wpa_supplicant working now :-/
Found the entire article at:
http://www.eng.tau.ac.il/~yash/shaked-wool-mobisys05/
I never considered bluetooth secure to begin with. I never consider it for permanent connections. I only turn it on for quick file transfers or for the headset of my phone. I also presume that anyone can listen in when I'm on the phone anyways.
Not that IR connections are at all secure, but considering the very short range of IR and class 3 BT devices (most phones and CF cards), someone would have to be practically on top of you to even start snooping.
QUOTE(tumnus @ Jun 12 2005, 12:17 AM)
Not that IR connections are at all secure, but considering the very short range of IR and class 3 BT devices (most phones and CF cards), someone would have to be practically on top of you to even start snooping.
Not any more :/ , have you seen the bluetooth sniper rifle?
http://www.tomsnetworking.com/Sections-article106.php
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.