https://devzone.nordicsemi.com/f/nordic-q-a/43780/secret-key-generation-based-off-of-physical-layerI&#39;m working on a project to get two devices to agree on a secret key based off of physical layer properties. My solution is for devices A and B to make 64 RSSI measurements based off of the channel to the other device and then generate a key using theseen-USTelligent Community 13Mon, 25 Feb 2019 08:31:33 GMThttps://devzone.nordicsemi.com/thread/172689?ContentTypeID=1Mon, 25 Feb 2019 08:31:33 GMT137ad170-7792-4731-bb38-c0d22fbe4515:2a9685d2-ac35-4ed8-8856-9a01a7a5d1a8Vidar Berg<p>You can read out the RSSI&nbsp; in p_ind-&gt;service.rssi for each received frame (see main.c-&gt;void mcps_data_ind(mcps_data_ind_t * p_ind))&nbsp;</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/171960?ContentTypeID=1Tue, 19 Feb 2019 16:35:33 GMT137ad170-7792-4731-bb38-c0d22fbe4515:fc9e0461-06e9-4c31-b6b1-c865b23ed945Kebab<p>I&#39;ve been looking at doing this in 802.15.4 as it seems a bit simpler. How can I implement the RSSI sampling and get each board to take 64 measurements?</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/171587?ContentTypeID=1Mon, 18 Feb 2019 10:22:46 GMT137ad170-7792-4731-bb38-c0d22fbe4515:a5d7f110-6fd3-45fa-8020-4a67dc8b1208Kebab<p>Ok thanks. I have seen a similar problem <a href="https://devzone.nordicsemi.com/f/nordic-q-a/42247/rssi-implementation-with-nrf52480-on-ble-uart-apk/164855#164855">here</a>&nbsp;but even doing this is a bit beyond me. I just don&#39;t know where to begin with adding the features I am looking for. For instance, where does the line &quot;BLE_GAP_EVT_CONNECTED&quot; come from or is there a source where this terminology is explained?</p> <p>Sorry about all the basic questions but I appreciate the help.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/171578?ContentTypeID=1Mon, 18 Feb 2019 10:05:01 GMT137ad170-7792-4731-bb38-c0d22fbe4515:4a08ad50-1c20-4c50-aa25-c2243747e151Vidar Berg<p>Ok, maybe you can start with the UART central and <a href="https://www.nordicsemi.com/DocLib/Content/SDK_Doc/nRF5_SDK/v15-2-0/ble_sdk_app_nus_eval">peripheral </a>example, then&nbsp;add&nbsp;RSSI sampling and an implementation of your own key generation. You may find this blog post useful (<a href="https://devzone.nordicsemi.com/b/blog/posts/intro-to-application-level-security-using-the-ecb-">link</a>) although it covers encryption with&nbsp;static keys.&nbsp;</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/171569?ContentTypeID=1Mon, 18 Feb 2019 09:28:05 GMT137ad170-7792-4731-bb38-c0d22fbe4515:b2c22f2e-49c3-483d-8eda-a1052a683d94Kebab<p>HI Vidar,</p> <p>Thanks for your reply however the purpose of the project is to develop and use the method I mentioned in the original post. I cannot use any already standardized methods to generate the key.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/171566?ContentTypeID=1Mon, 18 Feb 2019 09:14:35 GMT137ad170-7792-4731-bb38-c0d22fbe4515:e54dfc2e-429d-4a35-a2a2-79cfa847fec9Vidar Berg<p>Hi,</p> <p>You will likely get better security if you use the built-in Random number generator and a standardized key exchange method such as &quot;Diffie-hellman&quot; for creating the shared secret.&nbsp; The <a href="https://www.nordicsemi.com/DocLib/Content/SDK_Doc/nRF5_SDK/v15-2-0/lib_crypto_ecdh_example">ECDH Example</a>&nbsp;provided in SDK 15.2.0 should be a good starting point to get an understanding of the nRF crypto API. Also,&nbsp;we have BLE examples that support LESC pairing (diffie helman key exchange) for securing the link. ble_app_hrs is one of the examples that supports it.&nbsp;&nbsp;&nbsp;</p><div style="clear:both;"></div>