I tried to argue the point, but eventually gave up. He responded with the prototypical lame responses: 1) pseudorandom frequency hopping makes it “nearly impossible” for an attacker to get in, and 2) the range is only 8 feet, so the attacks are naturally limited. I told him that Bluetooth has only privacy and not per-packet authentication. Last year I had a conversation with an engineer involved with security for the Bluetooth wireless protocol.
Mike opened by quoting from the February 2003 issue of Bruce Schneier’s Crypto-Gram on the importance of authentication. He covered many attacks on the system that take advantage of bluetooth not authenticating its devices. He specifically covered the bluetooth HID profile from 2003 and the bluetooth 1.2 spec from the same time, which all current keyboards on the market implement. Michael Ossmann gave a really interesting talk on bluetooth keyboard security at ShmooCon.
0 kommentar(er)
