This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

Which method is recommend for BLE security?

Hi,

I am wondering which is the best method for BLE security to avoid MITM, protect the data (sniffers) and limit connection only to allowed devices for a massive number of BLE devices, example 500 > random and new devices.

Peer manager is the recommend for this task? or something like Application-level Security Using the ECB Peripheral?

devzone.nordicsemi.com/.../

info: NRF52 and SDK13

Regards, Marco

Top Replies

endnode over 7 years ago +3

BLE Secure Manager layer (which is all what gets implemented in SDK examples because that's the only "standard") is suited for "one to one" (or "few to few") scenarios where only few bonds need to be stored…

Parents

0 MarcoTull over 7 years ago

Hi Hung, I was wondering how can I enable "LESC pairing with Just Works" what settings are required on peer_manager_init?

sec_params.bond           = SEC_PARAMS_BOND;
sec_params.mitm           = SEC_PARAMS_MITM;
sec_params.lesc           = SEC_PARAMS_LESC;
sec_params.keypress       = SEC_PARAMS_KEYPRESS;
sec_params.io_caps        = SEC_PARAMS_IO_CAPABILITIES;
sec_params.oob            = SEC_PARAMS_OOB;
sec_params.min_key_size   = SEC_PARAMS_MIN_KEY_SIZE;
sec_params.max_key_size   = SEC_PARAMS_MAX_KEY_SIZE;

Reply

0 MarcoTull over 7 years ago

Hi Hung, I was wondering how can I enable "LESC pairing with Just Works" what settings are required on peer_manager_init?

sec_params.bond           = SEC_PARAMS_BOND;
sec_params.mitm           = SEC_PARAMS_MITM;
sec_params.lesc           = SEC_PARAMS_LESC;
sec_params.keypress       = SEC_PARAMS_KEYPRESS;
sec_params.io_caps        = SEC_PARAMS_IO_CAPABILITIES;
sec_params.oob            = SEC_PARAMS_OOB;
sec_params.min_key_size   = SEC_PARAMS_MIN_KEY_SIZE;
sec_params.max_key_size   = SEC_PARAMS_MAX_KEY_SIZE;

Children

No Data