Hi,
I have looked around the internet and am trying to understand the ble security options. I cannot understand the correct approach to take for our application.
Our situation is that we have a peripheral which is only allowed to connect a specific windows application for a specific client. Different clients have different peripherals it can connect to and use the same windows application. They are not allowed to connect to each others peripherals. and third party central apps like phone apps and other widows applications etc. are not allowed to connect.
How do we authenticate the correct application being used and prevent any other device from interacting?
I am leaning towards an open security on the bluetooth level and implement an encryption/authentication on application level, but that is not as ble is intended. Another option is OOB and use the internet on the windows machine to get the pairing information for the specific peripheral. But the windows machines are not always in range of wifi when used with the ble periheral, so we really like to prevent internet usage on the windows machine. NFC is not an option, we do have NFC on the peripheral device. But it is not practically reachable in the machines being used. I see an option where the peripheral pairing information is downloaded in the office and it can be used when interacting with the peripheral when no internet is available?
Any advice would be great.
Thank you!
