https://devzone.nordicsemi.com/f/nordic-q-a/70215/issue-with-connection-kickHello, I have a security issue with a product with nr52840 because if a hacker connect to my device with nrf toolbox for example, when i stop the bluetooth connexion on my device, it will reconnect automatically so i can&#39;t communicate with the deviceen-USTelligent Community 13Thu, 07 Jan 2021 15:10:28 GMThttps://devzone.nordicsemi.com/thread/288002?ContentTypeID=1Thu, 07 Jan 2021 15:10:28 GMT137ad170-7792-4731-bb38-c0d22fbe4515:7c9f7063-42c5-4d3b-acfa-ed6579cbe42dEdvin<p>Yes. That is in fact the common way to do that. But note that whitelisting is <strong>typically&nbsp;</strong>used together with bonding (storing connection encryption for future use). If you want to try it out, you can try to connect to the ble_app_gls example example from SDK17.0.2\examples\ble_peripheral\ble_app_gls folder. Note that the first time you connect, you need to enter a 6-digit passkey that is printed in the log from the nRF, while the next time you don&#39;t need to do that. After entering this passkey, only the bonded device will be able to connect, unless you press the button2 on the DK with a long press. Look at the implementation of the&nbsp;BSP_EVENT_WHITELIST_OFF.</p> <p>Alternatively you can delete the bonding information by holding button 2 is held while you power on or reset the device (or erase the flash on the nRF).</p> <p></p> <p>Best regards,</p> <p>Edvin</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/287981?ContentTypeID=1Thu, 07 Jan 2021 14:38:41 GMT137ad170-7792-4731-bb38-c0d22fbe4515:90b8f129-87ca-4ece-8a8a-20f969e3c168MarcAntoineProtiere<p>Okay thank you Edvin this is really helpful,</p> <p>Is it possible that the program runs without a whitelist on the beginning and that we set a whitelist after when all the devices adresses authorized are known by the device ?&nbsp;</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/287979?ContentTypeID=1Thu, 07 Jan 2021 14:31:47 GMT137ad170-7792-4731-bb38-c0d22fbe4515:29892bd4-4ca6-45e8-a68c-5807eacafc17Edvin<p>Hello,</p> <p>There is no such thing as a blacklist in BLE. However, you can check the BLE address of the connected device (which I assume is what you mean by MAC address) in the connection event. If this is not the device you want to connect to, you can disconnect from the device from within this event.</p> <p>There is however something called whitelisting in BLE. This is usually used together with something called bonding. But this would require you to know what device you want to connect to, by knowing the BLE address of that device. If so, you can add this address to the whitelist, and the peripheral will only accept connection requests from devices in the whitelist.</p> <p>If you do not use a whitelist when you advertise, then anyone can connect to the device, so the peripheral will have to decide whether or not to disconnect after the connection event.</p> <p></p> <p>Best regards,</p> <p>Edvin</p><div style="clear:both;"></div>