• State Not Answered
  • Replies 10 replies
  • Subscribers 73 subscribers
  • Views 12329 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 125727
Options
This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

Which method is recommend for BLE security?

MarcoTull

Hi,

I am wondering which is the best method for BLE security to avoid MITM, protect the data (sniffers) and limit connection only to allowed devices for a massive number of BLE devices, example 500 > random and new devices.

Peer manager is the recommend for this task? or something like Application-level Security Using the ECB Peripheral?

devzone.nordicsemi.com/.../

info: NRF52 and SDK13

Regards, Marco

Parents
  • 0

    My mistake, I didn't see sniffers in the parentheses there.

    If you don't have any inputs you have two options (from a Bluetooth perspective):

    -Legacy pairing with Just Works. This does not offer protection against MITM or passive eavesdropping during the pairing process, but if there is no attack during the pairing process the encryption is secure.

    -LESC pairing with Just Works. Offers protection against passive eavesdropping, but not against MITM during the pairing process. If there is not attack during the pairing process the encryption is secure.

Reply
  • 0

    My mistake, I didn't see sniffers in the parentheses there.

    If you don't have any inputs you have two options (from a Bluetooth perspective):

    -Legacy pairing with Just Works. This does not offer protection against MITM or passive eavesdropping during the pairing process, but if there is no attack during the pairing process the encryption is secure.

    -LESC pairing with Just Works. Offers protection against passive eavesdropping, but not against MITM during the pairing process. If there is not attack during the pairing process the encryption is secure.

Children
No Data
Related
Terms of service