Bluetooth: With Low Energy Comes Low Security

  Переглядів 22,478

Mike Ryan

Mike Ryan

День тому

Bluetooth Smart (BLE) is popping up everywhere. Unfortunately, its security has a fundamental flaw that allows attackers to crack the encryption and read your sensitive data. This talk describes Mike's work sniffing BLE with Ubertooth and describes crackle, a tool to automatically break BLE's encryption.
github.com/mikeryan/crackle/
This talk was presented at USENIX Security WOOT 2013.

КОМЕНТАРІ: 16
@farhan00
@farhan00 8 років тому
Was watching this video while reading the paper by Mike Ryan. Excellent.
@runewhiz
@runewhiz 6 років тому
Hey im doing a project at the moment, and could you give me a nudge in the right direction into how to force re-pairing?
@SpectatorAlius
@SpectatorAlius 6 років тому
It was true when he said it, that "key exchange is broken". But now in Bluetooth 4.2 they support Diffie-Helman Key Exchange -- as they should have done in the first place.
@tonyferber3252
@tonyferber3252 6 років тому
What is the IRC channel please, and are they receptive to enquiries, or is it just for dev questions thanks?
@Markus451
@Markus451 3 роки тому
As of 2020, what's the status of the broken encryption on BT Smart?
@santospoland
@santospoland 10 років тому
Nice job.
@cyberhuman6640
@cyberhuman6640 3 роки тому
Hey Mike! I think you're awesome and appreciate your videos/research. I am currently getting my masters and my thesis research will include BLE... if you had a few minutes that I could pick your brain, I would be super appreciative! If you do, comment back and I'll leave my email for you (I just don't want to post it right now so the crazies can get it haha). Thanks for your consideration!!
@romanbogza
@romanbogza 7 років тому
Can you clarify as why implementing security layer on top of GATT is a bad idea? (referring to 23:05), as that is what I did for my project:). Excellent talk BTW.
@mpeg4codec
@mpeg4codec 7 років тому
Building secure crypto systems is so hard that expert cryptographers with years of experience still make mistakes. Although flawed, BLE crypto is secure enough for most scenarios. A crypto system created by a non-expert is likely to be significantly more flawed.
@greencoder1594
@greencoder1594 3 роки тому
Link to the paper: www.usenix.org/system/files/conference/woot13/woot13-ryan.pdf
@ANTIMONcom
@ANTIMONcom 7 років тому
do they still use the same bad key agreement protocol?
@SpectatorAlius
@SpectatorAlius 6 років тому
Yes, if you use the same pairing method you used with 4.0. But there is a better option available now: the "LE Secure Connection". This option even uses the Elliptic Curve version of Diffie-Helman Key Exchange, finally addressing the absurd flaw Ryan exposed so well in this video.
@kekkettoful
@kekkettoful Рік тому
hello can i do packet injection with ubertooth?
@santospoland
@santospoland 10 років тому
Real Exchange key protocol. Hopping patterns/sequence is not gonna secure you.
@joshway5599
@joshway5599 7 років тому
He doesn't know "why networking people call 'octets', 'bytes'..."? I get the comments tort, but it made him sound really uneducated. Otherwise a decent overview.
@mpeg4codec
@mpeg4codec 7 років тому
It was intended as a joke but didn't land quite right I guess. Thanks for the feedback.
Bluetooth Low Energy Hacking Part 2 - Sniffing Bluetooth Low Energy
17:30
Дід Толя з онуком розривають своїми жартами | Розсміши Коміка по-новому 2024 Випуск 6
43:54
Awesome device for automatic lens cleaning! #funny
00:28
SMOL WOW
Переглядів 12 млн
Bluetooth Low Energy - Protocol Stack (Part 1)
8:39
Bina Bhatt
Переглядів 53 тис.
Using Web BLE to detect and get GATT information
19:41
Sayanee Basu
Переглядів 26 тис.
How To Reverse Engineer A Bluetooth Device
11:53
Hacking Modern Life
Переглядів 37 тис.
new linux exploit is absolutely insane
8:29
Low Level Learning
Переглядів 10 тис.
Top 10 Wireshark Filters // Filtering with Wireshark
12:13
Chris Greer
Переглядів 662 тис.
How does Bluetooth Work?
21:35
Branch Education
Переглядів 8 млн
Everything you need to know about Bluetooth Low Energy advertising
1:03:22
Nordic Semiconductor
Переглядів 30 тис.
Ellisys Bluetooth Video 7: Security Part 1
9:25
Ellisys
Переглядів 27 тис.
Сварочник SWM-10 Полезный обзор
42:37
Дмитрий Коржевский
Переглядів 50 тис.