Securing bluetooth low energy locks from unauthorizedaccess and surveillance - Critical Infrastructure Protection XI
Conference Papers Year : 2017

Securing bluetooth low energy locks from unauthorizedaccess and surveillance

Abstract

This chapter describes several vulnerabilities that affect commercial and residential Bluetooth Low Energy security devices and outlines methods for exploiting plaintext, obfuscated and hard-coded passwords, brute forcing passwords and hashes, fuzzing commands and performing man-in-the-middle attacks. Evaluations reveal that 75% of the tested security and access control systems have vulnerabilities that grant unauthorized access. In addition to obtaining access, malicious actors can extract sensitive information that can be used to develop patterns of human behavior. This chapter discusses five solutions for preventing or mitigating Bluetooth Low Energy security breaches, most of which involve minimal implementation overhead on the part of developers.
Fichier principal
Vignette du fichier
460140_1_En_16_Chapter.pdf (986.43 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01819142 , version 1 (20-06-2018)

Licence

Identifiers

Cite

Anthony Rose, Jason Bindewald, Benjamin Ramsey, Mason Rice, Barry Mullins. Securing bluetooth low energy locks from unauthorizedaccess and surveillance. 11th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2017, Arlington, VA, United States. pp.319-338, ⟨10.1007/978-3-319-70395-4_16⟩. ⟨hal-01819142⟩
130 View
649 Download

Altmetric

Share

More