Analyzing the Secure Simple Pairing in Bluetooth v4.0
Identifieur interne : 000107 ( Main/Exploration ); précédent : 000106; suivant : 000108Analyzing the Secure Simple Pairing in Bluetooth v4.0
Auteurs : Raphael C.-W. Phan [Royaume-Uni] ; Patrick Mingard [Suisse]Source :
- Wireless Personal Communications [ 0929-6212 ] ; 2012-06-01.
English descriptors
Abstract
Abstract: This paper analyzes the security of Bluetooth v4.0’s Secure Simple Pairing (SSP) protocol, for both the Bluetooth Basic Rate/Enhanced Data Rate (BR/EDR) and Bluetooth Low Energy (LE) operational modes. Bluetooth v4.0 is the latest version of a wireless communication standard for low-speed and low-range data transfer among devices in a human’s PAN. It allows increased network mobility among devices such as headsets, PDAs, wireless keyboards and mice. A pairing process is initiated when two devices desire to communicate, and this pairing needs to correctly authenticate devices so that a secret link key is established for secure communication. What is interesting is that device authentication relies on humans to communicate verification information between devices via a human-aided out-of-band channel. Bluetooth v4.0’s SSP protocol is designed to offer security against passive eavesdropping and man-in-the-middle (MitM) attacks. We conduct the first known detailed analysis of SSP for all its MitM-secure models. We highlight some issues related to exchange of public keys and use of the passkey in its models and discuss how to treat them properly.
Url:
DOI: 10.1007/s11277-010-0215-1
Affiliations:
Links toward previous steps (curation, corpus...)
- to stream Istex, to step Corpus: 000610
- to stream Istex, to step Curation: 000610
- to stream Istex, to step Checkpoint: 000046
- to stream Main, to step Merge: 000108
- to stream Main, to step Curation: 000107
Le document en format XML
<record><TEI wicri:istexFullTextTei="biblStruct"><teiHeader><fileDesc><titleStmt><title xml:lang="en">Analyzing the Secure Simple Pairing in Bluetooth v4.0</title><author><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name></author><author><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name></author></titleStmt><publicationStmt><idno type="wicri:source">ISTEX</idno><idno type="RBID">ISTEX:8515EFC0AD7AA813DE345788FB0F2ECE7ABF134E</idno><date when="2010" year="2010">2010</date><idno type="doi">10.1007/s11277-010-0215-1</idno><idno type="url">https://api.istex.fr/document/8515EFC0AD7AA813DE345788FB0F2ECE7ABF134E/fulltext/pdf</idno><idno type="wicri:Area/Istex/Corpus">000610</idno><idno type="wicri:explorRef" wicri:stream="Istex" wicri:step="Corpus" wicri:corpus="ISTEX">000610</idno><idno type="wicri:Area/Istex/Curation">000610</idno><idno type="wicri:Area/Istex/Checkpoint">000046</idno><idno type="wicri:explorRef" wicri:stream="Istex" wicri:step="Checkpoint">000046</idno><idno type="wicri:doubleKey">0929-6212:2010:Phan R:analyzing:the:secure</idno><idno type="wicri:Area/Main/Merge">000108</idno><idno type="wicri:Area/Main/Curation">000107</idno><idno type="wicri:Area/Main/Exploration">000107</idno></publicationStmt><sourceDesc><biblStruct><analytic><title level="a" type="main" xml:lang="en">Analyzing the Secure Simple Pairing in Bluetooth v4.0</title><author><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name><affiliation wicri:level="1"><country xml:lang="fr">Royaume-Uni</country><wicri:regionArea>Electronic and Electrical Engineering, Loughborough University, Loughborough</wicri:regionArea><wicri:noRegion>Loughborough</wicri:noRegion></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Royaume-Uni</country></affiliation></author><author><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name><affiliation wicri:level="3"><country xml:lang="fr">Suisse</country><wicri:regionArea>La Mobilière, Lausanne</wicri:regionArea><placeName><settlement type="city">Lausanne</settlement><region nuts="3" type="region">Canton de Vaud</region></placeName></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Suisse</country></affiliation></author></analytic><monogr></monogr><series><title level="j">Wireless Personal Communications</title><title level="j" type="sub">An International Journal</title><title level="j" type="abbrev">Wireless Pers Commun</title><idno type="ISSN">0929-6212</idno><idno type="eISSN">1572-834X</idno><imprint><publisher>Springer US; http://www.springer-ny.com</publisher><pubPlace>Boston</pubPlace><date type="published" when="2012-06-01">2012-06-01</date><biblScope unit="volume">64</biblScope><biblScope unit="issue">4</biblScope><biblScope unit="page" from="719">719</biblScope><biblScope unit="page" to="737">737</biblScope></imprint><idno type="ISSN">0929-6212</idno></series></biblStruct></sourceDesc><seriesStmt><idno type="ISSN">0929-6212</idno></seriesStmt></fileDesc><profileDesc><textClass><keywords scheme="KwdEn" xml:lang="en"><term>Association models</term><term>Bluetooth v4.0</term><term>Low Energy (LE)</term><term>Secure Simple Pairing</term></keywords></textClass><langUsage><language ident="en">en</language></langUsage></profileDesc></teiHeader><front><div type="abstract" xml:lang="en">Abstract: This paper analyzes the security of Bluetooth v4.0’s Secure Simple Pairing (SSP) protocol, for both the Bluetooth Basic Rate/Enhanced Data Rate (BR/EDR) and Bluetooth Low Energy (LE) operational modes. Bluetooth v4.0 is the latest version of a wireless communication standard for low-speed and low-range data transfer among devices in a human’s PAN. It allows increased network mobility among devices such as headsets, PDAs, wireless keyboards and mice. A pairing process is initiated when two devices desire to communicate, and this pairing needs to correctly authenticate devices so that a secret link key is established for secure communication. What is interesting is that device authentication relies on humans to communicate verification information between devices via a human-aided out-of-band channel. Bluetooth v4.0’s SSP protocol is designed to offer security against passive eavesdropping and man-in-the-middle (MitM) attacks. We conduct the first known detailed analysis of SSP for all its MitM-secure models. We highlight some issues related to exchange of public keys and use of the passkey in its models and discuss how to treat them properly.</div></front></TEI><affiliations><list><country><li>Royaume-Uni</li><li>Suisse</li></country><region><li>Canton de Vaud</li></region><settlement><li>Lausanne</li></settlement></list><tree><country name="Royaume-Uni"><noRegion><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name></noRegion><name sortKey="Phan, Raphael C W" sort="Phan, Raphael C W" uniqKey="Phan R" first="Raphael C.-W." last="Phan">Raphael C.-W. Phan</name></country><country name="Suisse"><region name="Canton de Vaud"><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name></region><name sortKey="Mingard, Patrick" sort="Mingard, Patrick" uniqKey="Mingard P" first="Patrick" last="Mingard">Patrick Mingard</name></country></tree></affiliations></record>Pour manipuler ce document sous Unix (Dilib)
EXPLOR_STEP=$WICRI_ROOT/Wicri/Musique/explor/XenakisV1/Data/Main/Exploration
HfdSelect -h $EXPLOR_STEP/biblio.hfd -nk 000107 | SxmlIndent | more
Ou
HfdSelect -h $EXPLOR_AREA/Data/Main/Exploration/biblio.hfd -nk 000107 | SxmlIndent | more
Pour mettre un lien sur cette page dans le réseau Wicri
{{Explor lien
|wiki= Wicri/Musique
|area= XenakisV1
|flux= Main
|étape= Exploration
|type= RBID
|clé= ISTEX:8515EFC0AD7AA813DE345788FB0F2ECE7ABF134E
|texte= Analyzing the Secure Simple Pairing in Bluetooth v4.0
}}
| This area was generated with Dilib version V0.6.33. |  |