Understanding BLE Security in EECS 582 - Spring 2015

Slide Note
Embed
Share

Delve into the realm of Bluetooth Low Energy (BLE) security as covered in EECS 582 during the Spring of 2015. Explore topics including BLE refresher, attacks, improvements, authentication, and privacy. Gain insights into the BLE layers, connection establishment, encryption methods, and more to enhance your understanding of BLE security.

timo
timo Follow

Uploaded on Aug 13, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. BLE Security EECS 582 -- Spring 2015

  2. Overview BLE Refresher Attacks Improvements Authentication Privacy Discussion

  3. BLE: Quick/Simplified Refresh Application Layer GATT ATT L2CAP Link Layer Physical Layer

  4. Link Layer State Machine

  5. Link Layer Connections - Steps 1. Initiate Connection 2. Exchange keys <- Attack! 3. Authenticate 4. Send encrypted messages

  6. BLE CONNECT_REQ Packet

  7. Initiating a BLE Connection Peripheral advertises Initiator starts connection o hopInterval o hopIncrement o accessAddress o crcInit Initiator and peripheral move to next channel

  8. Sniffing an on going connection Eliminate false positives (how do you know what is a packet) o Look for 16-bit header for empty packet, take prior 32-bits as AA o crcInit can be reversed, by running the packet through the LFSR in reverse (magic, magic, math, math...) o Access Address is set in each packet. Wait on a channel and observe subsequent packets, record time between Wait for a packet on two separate data channels

  9. Encryption - BLE 4.0 & 4.1 Custom key exchange o Select TK (128 bit AES key) o Use TK to agree upon LTK What s TK? o Just WorksTM: key == 0 o 6-digit passkey: key in 0-999,999 o Out of Band: You re on your own.

  10. BLE 4.2 - Secure Simple Pairing Elliptic Curve Diffie Hellman o 96 bits of entropy with P-192 or 128 bits with P-256 Protects against passive eavesdropping Does not protect against MITM Association models (anti-MITM) o Numeric comparison o Out of Band o Passkey Secure Connections Only Mode

  11. Link Layer Encryption TCP/IP o No encryption o No authentication o Relies on application layer o Vulnerable to passive listener BLE o Node-to-node encryption o Impractical authentication (for many IoT) o Simply Secure is safe from passive listener

  12. Could I be tracked? Device Address Randomization o Access Address generated by identity key (IRK) o IRK exchanged during bonding Do people use it? o We do not currently employ Bluetooth Smart in this capability. o ...we do not use randomize device address. o As far as we are aware, our two products that use BLE do not utilize this feature.

  13. Summary Proven link-layer encryption scheme node to node (in 4.2) No protection against MITM without traditional I/O Option for randomizing device address

  14. Wishlist Better way to do authentication o Many IoT class devices don t have classical I/O o How to I control what devices are connected to my gateway? o How can I control what gateways I connect to? Multihop communication o Do I trust the nodes in between the gateway and destination? o What happens if one of my devices is compromised? Do I trust my gateway?

  15. References https://lacklustre.net/bluetooth/Ryan_Bluetooth_Low_Energy_USENIX_WOOT. pdf https://eprint.iacr.org/2013/309.pdf https://www.bluetooth.org/DocMan/handlers/DownloadDoc.ashx?doc_id=28643 9

  16. What does IoT need? Confidentiality o I don t want people monitoring my habits at home ...but people can already see if my lights are on o Communication between nodes should be kept secret Authentication o We want to know what nodes are on our network and that they re legit. Preventing pivots o If a node is compromised, it should be hard for that node to pop other devices. Do I want people to know what devices I have in my house? Prevent neighbors from turning off lights General framework that different classes of devices can inherit from: medical IoT can specify something that fitness IoT needn t have.

Related


STM32WB BLE Secure Connections Overview

STM32WB BLE Secure Connections Overview

jeffreys_n
Introduction to Bluetooth Low Energy (BLE) Technology

Introduction to Bluetooth Low Energy (BLE) Technology

tariquef
Introduction to Operating Systems: EECS 343 Lecture Overview

Introduction to Operating Systems: EECS 343 Lecture Overview

shea_l
Understanding Bluetooth Low Energy Addresses in IEEE 802.11-21/1535r0

Understanding Bluetooth Low Energy Addresses in IEEE 802.11-21/1535r0

elio
Understanding Math Fundamentals: Matrices and Vectors in EECS 442

Understanding Math Fundamentals: Matrices and Vectors in EECS 442

rart300
Address Prediction and Recovery in EECS 470 Lecture Winter 2024

Address Prediction and Recovery in EECS 470 Lecture Winter 2024

kenzie
STM32WB BLE SW Application Sequencer Architecture Overview

STM32WB BLE SW Application Sequencer Architecture Overview

jakub
Holistic Approach to IoT Communication: Connecting to BLE Devices

Holistic Approach to IoT Communication: Connecting to BLE Devices

liv_ch
Overview of Spring Boot Tutorials and Essential Scrum Practices

Overview of Spring Boot Tutorials and Essential Scrum Practices

bomb_cie
Comprehensive DevOps Security Training Overview

Comprehensive DevOps Security Training Overview

jahv_808
Understanding Spring IoC Container and Bean Scopes

Understanding Spring IoC Container and Bean Scopes

jeey145
Mobile Device and Platform Security in Spring 2017: Lecture Highlights

Mobile Device and Platform Security in Spring 2017: Lecture Highlights

jeremias
Understanding the Role of Security Champions in Organizations

Understanding the Role of Security Champions in Organizations

irvin
Understanding the Roles of a Security Partner

Understanding the Roles of a Security Partner

zaara
Spring Web Quest for 3rd Graders

Spring Web Quest for 3rd Graders

torben
Test Security Guidelines for 2015-16 CAASPP Administration

Test Security Guidelines for 2015-16 CAASPP Administration

stng400
Understanding Security in World Politics

Understanding Security in World Politics

eisenberg_k
Understanding HTTP Security Headers for Web Apps

Understanding HTTP Security Headers for Web Apps

pembroke_l
Understanding Security Testing and Architecture

Understanding Security Testing and Architecture

nataleaei
Comprehensive Course Review: Security Research Cornerstones at Carnegie Mellon University

Comprehensive Course Review: Security Research Cornerstones at Carnegie Mellon University

kol_lov
UIC Security Division Overview and International Activities

UIC Security Division Overview and International Activities

hadri
Automating Security Operations Using Phantom

Automating Security Operations Using Phantom

gwe_sad
Modular Security Analysis for Key Exchange and Authentication Protocols

Modular Security Analysis for Key Exchange and Authentication Protocols

area290
Land Reform in the Context of Devolution in Kenya

Land Reform in the Context of Devolution in Kenya

bciri

More Related Content