Analyzing the Secure Simple Pairing in Bluetooth v4.0
Identifieur interne : 000107 ( Main/Exploration ); précédent : 000106; suivant : 000108Analyzing the Secure Simple Pairing in Bluetooth v4.0
Auteurs : Raphael C.-W. Phan [Royaume-Uni] ; Patrick Mingard [Suisse]Source :
- Wireless Personal Communications [ 0929-6212 ] ; 2012-06-01.
English descriptors
Abstract
Abstract: This paper analyzes the security of Bluetooth v4.0’s Secure Simple Pairing (SSP) protocol, for both the Bluetooth Basic Rate/Enhanced Data Rate (BR/EDR) and Bluetooth Low Energy (LE) operational modes. Bluetooth v4.0 is the latest version of a wireless communication standard for low-speed and low-range data transfer among devices in a human’s PAN. It allows increased network mobility among devices such as headsets, PDAs, wireless keyboards and mice. A pairing process is initiated when two devices desire to communicate, and this pairing needs to correctly authenticate devices so that a secret link key is established for secure communication. What is interesting is that device authentication relies on humans to communicate verification information between devices via a human-aided out-of-band channel. Bluetooth v4.0’s SSP protocol is designed to offer security against passive eavesdropping and man-in-the-middle (MitM) attacks. We conduct the first known detailed analysis of SSP for all its MitM-secure models. We highlight some issues related to exchange of public keys and use of the passkey in its models and discuss how to treat them properly.
Url:
DOI: 10.1007/s11277-010-0215-1
Affiliations:
Links toward previous steps (curation, corpus...)
- to stream Istex, to step Corpus: 000610
- to stream Istex, to step Curation: 000610
- to stream Istex, to step Checkpoint: 000046
- to stream Main, to step Merge: 000108
- to stream Main, to step Curation: 000107
Le document en format XML
<record><TEI wicri:istexFullTextTei="biblStruct"><teiHeader><fileDesc><titleStmt><title xml:lang="en">Analyzing the Secure Simple Pairing in Bluetooth v4.0</title>
<author><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name>
</author>
<author><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name>
</author>
</titleStmt>
<publicationStmt><idno type="wicri:source">ISTEX</idno>
<idno type="RBID">ISTEX:8515EFC0AD7AA813DE345788FB0F2ECE7ABF134E</idno>
<date when="2010" year="2010">2010</date>
<idno type="doi">10.1007/s11277-010-0215-1</idno>
<idno type="url">https://api.istex.fr/document/8515EFC0AD7AA813DE345788FB0F2ECE7ABF134E/fulltext/pdf</idno>
<idno type="wicri:Area/Istex/Corpus">000610</idno>
<idno type="wicri:explorRef" wicri:stream="Istex" wicri:step="Corpus" wicri:corpus="ISTEX">000610</idno>
<idno type="wicri:Area/Istex/Curation">000610</idno>
<idno type="wicri:Area/Istex/Checkpoint">000046</idno>
<idno type="wicri:explorRef" wicri:stream="Istex" wicri:step="Checkpoint">000046</idno>
<idno type="wicri:doubleKey">0929-6212:2010:Phan R:analyzing:the:secure</idno>
<idno type="wicri:Area/Main/Merge">000108</idno>
<idno type="wicri:Area/Main/Curation">000107</idno>
<idno type="wicri:Area/Main/Exploration">000107</idno>
</publicationStmt>
<sourceDesc><biblStruct><analytic><title level="a" type="main" xml:lang="en">Analyzing the Secure Simple Pairing in Bluetooth v4.0</title>
<author><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name>
<affiliation wicri:level="1"><country xml:lang="fr">Royaume-Uni</country>
<wicri:regionArea>Electronic and Electrical Engineering, Loughborough University, Loughborough</wicri:regionArea>
<wicri:noRegion>Loughborough</wicri:noRegion>
</affiliation>
<affiliation wicri:level="1"><country wicri:rule="url">Royaume-Uni</country>
</affiliation>
</author>
<author><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name>
<affiliation wicri:level="3"><country xml:lang="fr">Suisse</country>
<wicri:regionArea>La Mobilière, Lausanne</wicri:regionArea>
<placeName><settlement type="city">Lausanne</settlement>
<region nuts="3" type="region">Canton de Vaud</region>
</placeName>
</affiliation>
<affiliation wicri:level="1"><country wicri:rule="url">Suisse</country>
</affiliation>
</author>
</analytic>
<monogr></monogr>
<series><title level="j">Wireless Personal Communications</title>
<title level="j" type="sub">An International Journal</title>
<title level="j" type="abbrev">Wireless Pers Commun</title>
<idno type="ISSN">0929-6212</idno>
<idno type="eISSN">1572-834X</idno>
<imprint><publisher>Springer US; http://www.springer-ny.com</publisher>
<pubPlace>Boston</pubPlace>
<date type="published" when="2012-06-01">2012-06-01</date>
<biblScope unit="volume">64</biblScope>
<biblScope unit="issue">4</biblScope>
<biblScope unit="page" from="719">719</biblScope>
<biblScope unit="page" to="737">737</biblScope>
</imprint>
<idno type="ISSN">0929-6212</idno>
</series>
</biblStruct>
</sourceDesc>
<seriesStmt><idno type="ISSN">0929-6212</idno>
</seriesStmt>
</fileDesc>
<profileDesc><textClass><keywords scheme="KwdEn" xml:lang="en"><term>Association models</term>
<term>Bluetooth v4.0</term>
<term>Low Energy (LE)</term>
<term>Secure Simple Pairing</term>
</keywords>
</textClass>
<langUsage><language ident="en">en</language>
</langUsage>
</profileDesc>
</teiHeader>
<front><div type="abstract" xml:lang="en">Abstract: This paper analyzes the security of Bluetooth v4.0’s Secure Simple Pairing (SSP) protocol, for both the Bluetooth Basic Rate/Enhanced Data Rate (BR/EDR) and Bluetooth Low Energy (LE) operational modes. Bluetooth v4.0 is the latest version of a wireless communication standard for low-speed and low-range data transfer among devices in a human’s PAN. It allows increased network mobility among devices such as headsets, PDAs, wireless keyboards and mice. A pairing process is initiated when two devices desire to communicate, and this pairing needs to correctly authenticate devices so that a secret link key is established for secure communication. What is interesting is that device authentication relies on humans to communicate verification information between devices via a human-aided out-of-band channel. Bluetooth v4.0’s SSP protocol is designed to offer security against passive eavesdropping and man-in-the-middle (MitM) attacks. We conduct the first known detailed analysis of SSP for all its MitM-secure models. We highlight some issues related to exchange of public keys and use of the passkey in its models and discuss how to treat them properly.</div>
</front>
</TEI>
<affiliations><list><country><li>Royaume-Uni</li>
<li>Suisse</li>
</country>
<region><li>Canton de Vaud</li>
</region>
<settlement><li>Lausanne</li>
</settlement>
</list>
<tree><country name="Royaume-Uni"><noRegion><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name>
</noRegion>
<name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name>
</country>
<country name="Suisse"><region name="Canton de Vaud"><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name>
</region>
<name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name>
</country>
</tree>
</affiliations>
</record>
Pour manipuler ce document sous Unix (Dilib)
EXPLOR_STEP=$WICRI_ROOT/Wicri/Musique/explor/XenakisV1/Data/Main/Exploration
HfdSelect -h $EXPLOR_STEP/biblio.hfd -nk 000107 | SxmlIndent | more
Ou
HfdSelect -h $EXPLOR_AREA/Data/Main/Exploration/biblio.hfd -nk 000107 | SxmlIndent | more
Pour mettre un lien sur cette page dans le réseau Wicri
{{Explor lien |wiki= Wicri/Musique |area= XenakisV1 |flux= Main |étape= Exploration |type= RBID |clé= ISTEX:8515EFC0AD7AA813DE345788FB0F2ECE7ABF134E |texte= Analyzing the Secure Simple Pairing in Bluetooth v4.0 }}
This area was generated with Dilib version V0.6.33. |