OESF Portal | OESF Forum | OESF Wiki | LinuxPDA | #planetgemini chat on matrix.org | #gemini-pda chat on Freenode | #zaurus and #alarmz chat on Freenode | ELSI (coming soon) | Ibiblio

IPB

Welcome Guest ( Log In | Register )

 
Reply to this topicStart new topic
> Bluetooth No Longer Secure, can force re-pairing and snaffle keys
speculatrix
post Jun 8 2005, 12:18 PM
Post #1





Group: Admin
Posts: 3,693
Joined: 29-July 04
From: Cambridge, England
Member No.: 4,149



http://www.theregister.co.uk/2005/06/08/bl...th_mobo_attack/

basically, if there's an active bluetooth connection, you'd trigger a re-pairing key exchange and snoop the key exchange, and can crack the key very quickly.

sigh. so, basically, it's now 802.11 with WPA or nothing... not that I think any of my neighbours have got the know-how to sniff and break into my bluetooth link...

well, I never resolved my bluetooth problems, so I've got to get the wpa_supplicant working now :-/
Go to the top of the page
 
+Quote Post
azalin
post Jun 9 2005, 06:33 AM
Post #2





Group: Members
Posts: 33
Joined: 7-March 05
Member No.: 6,589



QUOTE(speculatrix @ Jun 8 2005, 09:18 PM)
http://www.theregister.co.uk/2005/06/08/bl...th_mobo_attack/

basically, if there's an active bluetooth connection, you'd trigger a re-pairing key exchange and snoop the key exchange, and can crack the key very quickly.

sigh. so, basically, it's now 802.11 with WPA or nothing... not that I think any of my neighbours have got the know-how to sniff and break into my bluetooth link...

well, I never resolved my bluetooth problems, so I've got to get the wpa_supplicant working now :-/
*


Found the entire article at:
http://www.eng.tau.ac.il/~yash/shaked-wool-mobisys05/
Go to the top of the page
 
+Quote Post
bluedevils
post Jun 9 2005, 06:50 AM
Post #3





Group: Members
Posts: 1,284
Joined: 31-January 04
From: Vancouver, BC -> NYC, NY
Member No.: 1,633



I never considered bluetooth secure to begin with. I never consider it for permanent connections. I only turn it on for quick file transfers or for the headset of my phone. I also presume that anyone can listen in when I'm on the phone anyways.
Go to the top of the page
 
+Quote Post
tumnus
post Jun 11 2005, 03:17 PM
Post #4





Group: Members
Posts: 1,176
Joined: 3-October 03
From: UK
Member No.: 547



Not that IR connections are at all secure, but considering the very short range of IR and class 3 BT devices (most phones and CF cards), someone would have to be practically on top of you to even start snooping.
Go to the top of the page
 
+Quote Post
Rev.Tigger
post Jun 22 2005, 01:42 AM
Post #5





Group: Members
Posts: 48
Joined: 21-May 05
From: Staffs, UK
Member No.: 7,176



QUOTE(tumnus @ Jun 12 2005, 12:17 AM)
Not that IR connections are at all secure, but considering the very short range of IR and class 3 BT devices (most phones and CF cards), someone would have to be practically on top of you to even start snooping.
*



Not any more :/ , have you seen the bluetooth sniper rifle?

http://www.tomsnetworking.com/Sections-article106.php
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



RSS Lo-Fi Version Time is now: 6th December 2019 - 05:49 PM