https://devzone.nordicsemi.com/f/nordic-q-a/8805/uart-service-security-problemI found in ble_app_uart example, any device with UART app can connect to uart service and send something to COM port or just block the connection of other devices. So can I take some action to prevent specified devices connecting to my dongle runningen-USTelligent Community 13Wed, 26 Aug 2015 16:52:05 GMThttps://devzone.nordicsemi.com/thread/32316?ContentTypeID=1Wed, 26 Aug 2015 16:52:05 GMT137ad170-7792-4731-bb38-c0d22fbe4515:d3a21789-8d2c-4d20-bf39-01e26d175384Stian R&#248;ed Hafskjold<p>Okay, so these nRF51 devices are placed outside somewhere in a public place, where everyone are able to connect to them? I&#39;m not quite sure what the general way to handle this scenario is, but I can ask around and come back to you tomorrow</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/32315?ContentTypeID=1Wed, 26 Aug 2015 15:19:04 GMT137ad170-7792-4731-bb38-c0d22fbe4515:f1b3da7d-4191-4635-91dc-84d569d8712dyiran<p>My scenario is that some customers&#39; mobile phones installing our app connect my two 51822 ble uart devices and send some text. I am afraid some bad guys will use similar app to keep connect to us to block our customers. The current strategy is allowing any phone to connect to us, but we will disconnect it automatically in two seconds, which is long enough for customer mobile phone sending text. But this action still reduce performance, and if crackers use many mobile phones connect to our system, like DDOS, our customers have no chance to establish connection.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/32314?ContentTypeID=1Tue, 25 Aug 2015 14:07:51 GMT137ad170-7792-4731-bb38-c0d22fbe4515:5c7a2d62-fedf-4102-afb1-43ce5bdafc8fStian R&#248;ed Hafskjold<p>You cannot whitelist 10000 devices. You could maybe store 10000 addresses in flash, and filter on them after it has connected, and then disconnect it. But it would take up a lot of flash and would probably be too slow. What is the use case for this scenario?</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/32312?ContentTypeID=1Thu, 20 Aug 2015 09:20:08 GMT137ad170-7792-4731-bb38-c0d22fbe4515:6276f263-b232-429c-8796-48a89549b92eyiran<p>it is better to allow 10000 specific devices and block every one else if I can. If it is impossible, black list mode is also ok</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/32313?ContentTypeID=1Thu, 20 Aug 2015 08:26:57 GMT137ad170-7792-4731-bb38-c0d22fbe4515:2f098bd5-2364-4cf4-8b16-32ba75981710Stian R&#248;ed Hafskjold<p>So you want to allow every device to connect except a few ones you know the address of, or do you want to allow 10000 specific devices and block every one else?</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/32311?ContentTypeID=1Thu, 20 Aug 2015 01:07:57 GMT137ad170-7792-4731-bb38-c0d22fbe4515:f8680baa-7766-44f3-822d-a7f170e4a859yiran<p>At the beginning I considered whitelist mode, however whitelist seems not to work with UART service. What&#39;s more, the number of devices I want to store in white list will be more than 10,000, perhaps whitelist cannot have so large storage space.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/32310?ContentTypeID=1Wed, 19 Aug 2015 11:07:42 GMT137ad170-7792-4731-bb38-c0d22fbe4515:345fba70-ac3c-4329-bd83-ccc0efa0b5e1Stian R&#248;ed Hafskjold<p>I believe what you want to do is to use the device manager to bond the device you connect, and then use whitelisting to only allow this device to be connected in the future.</p> <p>You can read about the device manager here: <a href="http://infocenter.nordicsemi.com/topic/com.nordic.infocenter.sdk51.v9.0.0/group__device__manager.html">Device manager</a></p> <p>An example that demonstrates bonding and whitelisting is the ble_app_proximity example. <a href="http://infocenter.nordicsemi.com/topic/com.nordic.infocenter.sdk51.v9.0.0/ble_sdk_app_proximity.html?cp=4_1_0_4_4_14">This is documented here</a></p><div style="clear:both;"></div>