• DocumentCode
    3445878
  • Title

    Practical Man-in-the-Middle Attacks Against Bluetooth Secure Simple Pairing

  • Author

    Haataja, Keijo ; Toivanen, Pekka

  • Author_Institution
    Dept. of Comput. Sci., Univ. of Kuopio, Kuopio
  • fYear
    2008
  • fDate
    12-14 Oct. 2008
  • Firstpage
    1
  • Lastpage
    5
  • Abstract
    We propose two practical MITM (Man-In-The-Middle) attacks against Bluetooth SSP (Secure Simple Pairing). Our first attack requires some kind of visual contact to the victim devices in order to mislead the user to select a less secure option instead of using a more secure OOB (Out-Of-Band) channel. Our second attack illustrates how widely used Bluetooth headsets and hands-free devices are susceptible to MITM attacks without even requiring the attacker to have visual contact to the victim devices. Moreover, we propose countermeasures that render these attacks impractical although not totally eliminating their potential danger.
  • Keywords
    Bluetooth; security of data; Bluetooth secure simple pairing; man-in-the-middle attacks; Bluetooth; Computer science; Directional antennas; Jamming; Microprogramming; Mobile handsets; Personal area networks; Radio frequency; Security; Wireless communication;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Wireless Communications, Networking and Mobile Computing, 2008. WiCOM '08. 4th International Conference on
  • Conference_Location
    Dalian
  • Print_ISBN
    978-1-4244-2107-7
  • Electronic_ISBN
    978-1-4244-2108-4
  • Type

    conf

  • DOI
    10.1109/WiCom.2008.1153
  • Filename
    4679061
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3445878