• State Not Answered
  • Replies 10 replies
  • Subscribers 73 subscribers
  • Views 12331 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 125727
Options
This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

Which method is recommend for BLE security?

MarcoTull

Hi,

I am wondering which is the best method for BLE security to avoid MITM, protect the data (sniffers) and limit connection only to allowed devices for a massive number of BLE devices, example 500 > random and new devices.

Peer manager is the recommend for this task? or something like Application-level Security Using the ECB Peripheral?

devzone.nordicsemi.com/.../

info: NRF52 and SDK13

Regards, Marco

Parents
  • 0

    The SoftDevice implements the security features that are in the Bluetooth specification. Then you can use the Peer Manager to manage these features. In general we recommend to use the Peer Manager.

    It is difficult to suggest a "best" method without knowing more about your application.

    What kind of device are you making? Does it have any input? Buttons? Keypad? NFC? Does it have any output? LEDs? Screen? NFC? What about its peers? What kind of I/O do they have? Do they peers have support for LESC pairing? Will you be pairing the devices in a safe environment?

    You say you want to protect against MITM attacks, what about passive eavesdropping? Is that a concern?

Reply
  • 0

    The SoftDevice implements the security features that are in the Bluetooth specification. Then you can use the Peer Manager to manage these features. In general we recommend to use the Peer Manager.

    It is difficult to suggest a "best" method without knowing more about your application.

    What kind of device are you making? Does it have any input? Buttons? Keypad? NFC? Does it have any output? LEDs? Screen? NFC? What about its peers? What kind of I/O do they have? Do they peers have support for LESC pairing? Will you be pairing the devices in a safe environment?

    You say you want to protect against MITM attacks, what about passive eavesdropping? Is that a concern?

Children
No Data
Related
Terms of service