https://devzone.nordicsemi.com/f/nordic-q-a/43856/oob-provisioning-and-oob-authenticationI am trying to understand the provisioning process as defined in the Bluetooth Mesh Profile v1.01 specification. In particular, I don&#39;t understand the following paragraph 5 After the provisioning bearer is established, the Provisioner establishes aen-USTelligent Community 13Thu, 21 Feb 2019 09:05:49 GMThttps://devzone.nordicsemi.com/thread/172248?ContentTypeID=1Thu, 21 Feb 2019 09:05:49 GMT137ad170-7792-4731-bb38-c0d22fbe4515:3cfec533-71ca-422b-b4ab-673543d9567aJoakim Jakobsen<p>Hi.</p> [quote user=""]I have no idea what &quot;enables the authentication&quot; means. Is that statement redundant?[/quote] <p>It wouldn&#39;t say redundant, but the two statements might be a little repetitive.</p> <p>___________________________________________________</p> <p>The OOB methods are steps that can happen after the public key exchange. I really recommend you to read through section &quot;5.4.2 Provisioning behavior&quot; in the Mesh Profile specification. The subsections correspond to the various stages that provisioning goes through. Section 5.4.2.3 is the public key exchange, and section 5.4.2.4 (called &quot;Authentication&quot;) is the one where the Static/Output/Input OOB methods can be applied.</p> [quote user=""]Can my devices generate their OOB information from the MAC and a private algorithm and this be used for both initial key exchange and authentication?[/quote] <p>&nbsp;I don&#39;t see why that shouldn&#39;t be possible, but i don&#39;t think this is something that is supported in our SDK. </p> <p>I think using a 128-bit randomly generated Static OOB value should be considered as a secure way to provision your device.</p> <p>Best regards.</p><div style="clear:both;"></div>