How is the LESC OOB data generated?https://devzone.nordicsemi.com/f/nordic-q-a/64121/how-is-the-lesc-oob-data-generatedThe OOB data for LESC pairing contains the BLE GAP Address 256bit random and 256bit confirm value, and is generated by sd_ble_gap_lesc_oob_data_get using the connection handle and public key. sd_ble_gap_lesc_oob_data_set sets the OOB data when the BLE_GAP_EVT_LESC_DHKEY_REQUESTen-USTelligent Community 13Wed, 29 Jul 2020 05:45:35 GMTRE: How is the LESC OOB data generated?https://devzone.nordicsemi.com/thread/262089?ContentTypeID=1Wed, 29 Jul 2020 05:45:35 GMT137ad170-7792-4731-bb38-c0d22fbe4515:c2276f50-d315-47cd-b25f-39383acf0079raccoon<p>The content of the OOB data is spec defined,<br /> so let&#39;s assume that you simply want to know how OOB data is generated according to the spec.<br /><br />By changing 2 Bytes - even on both sides - it is quite natural that you fail the pairing.<br />Have a look at the spec and notice that the confirmation value is a computed value.<br />It is something that peers compute on their own and then simply compare to what they received in the OOB data.</p> <p></p> <p>Have a look a the following python snippet I used once upon a time to understand on my own the OOB data:<br /><br /><pre class="ui-code" data-mode="python">from Crypto.Random import get_random_bytes from Crypto.Hash import CMAC from Crypto.Cipher import AES from Crypto.PublicKey import ECC &quot;&quot;&quot; From v5.1 Vol 3 - Part H - Section 2.2.6 The confirm value generation function makes use of the MAC function AES-CMAC_X, with a 128-bit key X. The inputs to function f4 are: - U is 256 bits - V is 256 bits - Z is 8 bits. For Numeric Comparison and OOB protocol - all zeros. - X is 128 bits U, V and Z are concatenated and used as input m to the function AES-CMAC. X is used as the key k. f4(U, V, X, Z) = AES-CMAC_X(U||V||Z) The inputs to f4 are different depending on different association models. For OOB f4(PKx, PKx, r, 0) where r is a random value. &quot;&quot;&quot; key = ECC.generate(curve=&#39;P-256&#39;) PKx = key.public_key()._point.x.to_bytes() Z = b&#39;\x00\x00\x00\x00\x00\x00\x00\x00&#39; r = get_random_bytes(16) cobj = CMAC.new(r, ciphermod=AES) cobj.update(PKx + PKx + Z) print(f&#39;For your reference, this is the private key: {key.d.to_bytes().hex()}&#39;) print(f&#39;OOB: PKx: {PKx.hex()}&#39;) print(f&#39;OOB: PKy: {key.public_key()._point.y.to_bytes().hex()}&#39;) print(f&#39;OOB: r: {r.hex()}&#39;) print(f&#39;OOB: Confirmation: {cobj.hexdigest()}&#39;) </pre></p><div style="clear:both;"></div>RE: How is the LESC OOB data generated?https://devzone.nordicsemi.com/thread/261588?ContentTypeID=1Fri, 24 Jul 2020 11:54:37 GMT137ad170-7792-4731-bb38-c0d22fbe4515:48e9814f-e10a-455f-ae44-c8267b10a0f6&#216;yvind<p><span>Hello,&nbsp;</span><br /><br /><span>The technical support team is currently understaffed and have too many support tickets to handle. We expect a more normal function on Monday, and I will have a look at your case then.&nbsp;</span><br /><br /><span>I&#39;m sorry for the inconvenience this may cause.&nbsp;</span><br /><br /><span>Kind regards,</span><br /><span>Øyvind</span></p><div style="clear:both;"></div>