https://devzone.nordicsemi.com/f/nordic-q-a/72084/ble-secure-connection-with-le-secure-connectionHi, I am working on implementing the security aspect of our BLE application using nRF52832 MCU with SDK 17. The goal is to establish a secure connection between peripheral and phone, on the phone side I&#39;m using nrf connect. I have looked into differenten-USTelligent Community 13Thu, 04 Mar 2021 11:31:23 GMThttps://devzone.nordicsemi.com/thread/297764?ContentTypeID=1Thu, 04 Mar 2021 11:31:23 GMT137ad170-7792-4731-bb38-c0d22fbe4515:fd3e26b9-afe7-4da9-b61c-3e0193b43beaSimonr<p>Do you want the nRFConnect app to be prompted to enter a passkey as soon as it&#39;s connected to your device? If so, you should take another look at the <a href="https://infocenter.nordicsemi.com/index.jsp?topic=%2Fsdk_nrf5_v17.0.2%2Fble_sdk_app_gls.html">ble_app_gls </a>example, where a passkey will be prompted upon connection.</p> <p>Best regards,</p> <p>Simon</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/297388?ContentTypeID=1Wed, 03 Mar 2021 08:32:57 GMT137ad170-7792-4731-bb38-c0d22fbe4515:34e1d699-1b27-4ba2-9415-3f817a2ddd97Hamza_HK<p>Hi,&nbsp;<br /><br />I just checked the case you linked. It is similar to what I have been doing but nothing going forward. The issue is that&nbsp;</p> <div> <div><span>BLE_GAP_EVT_AUTH_KEY_REQUEST event is never triggered.&nbsp;<br /><br />The nRFConnect app on my phone is connected to the peripheral without the need of authorization (entering OOB key or something similar).&nbsp;<br /><br />Any tips on where to look into for&nbsp;this to work?</span></div> </div> <p>Best Regards,<br />Hamza</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/297362?ContentTypeID=1Wed, 03 Mar 2021 07:34:38 GMT137ad170-7792-4731-bb38-c0d22fbe4515:d4333fbe-13c4-413e-b534-3b7127f67f38Simonr<p>Hi</p> <p>The examples we have in our SDK (the <a href="https://infocenter.nordicsemi.com/topic/sdk_nrf5_v17.0.2/ble_sdk_app_gls.html">ble_app_gls </a>for instance) use randomly generated keys in order to do pairing and not pre-shared keys. You can&nbsp;check out<a href="https://devzone.nordicsemi.com/f/nordic-q-a/66209/modify-pre-shared-oob-key-for-legacy-connection/"> this case</a>&nbsp;regarding pre-shared keys.</p> <p>If you use the <a href="https://www.nordicsemi.com/Software-and-tools/Development-Tools/nRF-Connect-for-mobile">nRFConnect app on your phone</a> to connect and pair to your device, you should be able to see a log of what exactly happens after entering the passkey. Sorry for not mentioning this in my last reply.</p> <p>Best regards,</p> <p>Simon</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/297040?ContentTypeID=1Tue, 02 Mar 2021 07:14:02 GMT137ad170-7792-4731-bb38-c0d22fbe4515:c61d464c-adc6-41a3-ae98-acd9a2e8afacHamza_HK<p>Hi Simon!&nbsp;<br /><br />By default, the keys generated in nrf_ble_lesc_keypair_generate, are those random keys? How is that possible if both devices has to have the same shared secret to compute correct LTK?&nbsp;<br /><span><br />We want to simply have a pre-shared key on the our devices such that the phone application has to have the correct key (shared secret) for it to acquire the symmetric key, based on ECDH protocol.</span></p> <p><span>Regards,<br />Hamza</span></p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/296510?ContentTypeID=1Fri, 26 Feb 2021 11:43:39 GMT137ad170-7792-4731-bb38-c0d22fbe4515:d9524f0d-3fe3-4fbc-a4c5-3fc2092ed612Simonr<p>Hi</p> <p>Setting these defines in the peer manager settings, that should make connections go through this pairing process. In order to know if all the authentication steps are done we would need a sniffer trace of the pairing process. Please check out the <a href="https://www.nordicsemi.com/Software-and-tools/Development-Tools/nRF-Sniffer-for-Bluetooth-LE">nRFSniffer </a>to see how to capture a trace using an nRF52 DK as a sniffer device for instance.</p> <p>The keys are generated by the <a href="https://infocenter.nordicsemi.com/topic/sdk_nrf5_v17.0.2/group__nrf__ble__lesc.html">nrf_ble_lesc_keypair_generate</a>()&nbsp;</p> <p>Best regards,</p> <p>Simon</p><div style="clear:both;"></div>