https://devzone.nordicsemi.com/f/nordic-q-a/9761/dos-immunity-at-general-advertising-modeHello, My question based on case, I&#39;ve experienced recently. nRF device that could advertise in general mode for limited time by pressing on button and continuously in whitelist mode after bonding. The windows was paired with this device before. Ien-USTelligent Community 13Tue, 20 Oct 2015 13:35:18 GMThttps://devzone.nordicsemi.com/thread/36161?ContentTypeID=1Tue, 20 Oct 2015 13:35:18 GMT137ad170-7792-4731-bb38-c0d22fbe4515:a0bc63a3-9f16-4605-9f32-eac7827415c3Hung Bui<p>Hi Valer,</p> <p>It&#39;s true that it could be a risk that we can be DoS attacked by attacker by do continuous scanning and sending connect request.</p> <p>Unfortunately, with the current Bluetooth stack, we don&#39;t have a way to do a blacklist advertising to avoid being connected by a central device (the attacker can spoof and change the address of the central device anyway).</p> <p>Your solution to reduce the TxPower sounds like a good idea. You can set that mode so that the first connection and bond should be performed with short distance.</p> <p>Another solution is that you do non-connectable advertising at the beginning then you do active scanning from the central device you want to connect to. The previously bonded device will also do active scanning but you should be able to detect him. By having active scan, you should be able to find the address of the new device you want to allow connection.</p> <p>Then you can start advertising with whitelist for only the specific device. This way you can block the connect request from the other device. However, it won&#39;t help if the previously device keep sending connect request on every single advertising packet (jamming the connection).</p> <p>So, what you proposed is a proper workaround.</p><div style="clear:both;"></div>