|
|
Back to UserFriendly Strip Comments Index
|
bluejacking | by texteditor | 2006-11-19 12:55:59 |
|
Bluetooth is about as safe to use as Windows. | by LurkerMo | 2003-11-06 16:36:01 |
|
Couple of things about Bluetooth | by Tomo | 2003-11-06 16:43:41 |
|
the thing is | by texteditor | 2003-11-06 17:20:23 |
|
True | by Tomo | 2003-11-06 17:32:56 |
| I think we are talking about different things |
by texteditor |
2006-11-19 12:55:59 |
I'm talking bout future situations and it seems your talking bout current. However I ran across this ( click ) during our discussion.
The author makes several good points.
"...There is a problem in the usability of the Bluetooth devices, too. The use of the PIN code in the initialization process of two Bluetooth devices is tacky. When you have to enter the PIN code twice every time you connect two devices, it gets annoying even with shorter codes. If there is an ad hoc network of Bluetooth devices and every machine is to be initialized separately, it is unbearable. And it does not make upholding the security very easy. "
"...When using 4 digit PIN codes there are only 10.000 different possibilities. Adding the fact that 50% of used PINs are "0000", the trustworthiness of the initialization key is quite low."
"...There is also a problem in the unit key scheme. Authentication and encryption are based on the assumption that the link key is the participants' shared secret. All other information used in the procedures is public. Now, suppose that devices A and B use A's unit key as their link key. At the same time (or later on), device C may communicate with device A and use A's unit key as the link key. This means that device B, having obtained A's unit key earlier, can use the unit key with a faked device address to calculate the encryption key and therefore listen to the traffic. It can also authenticate itself to device A as device C and to device C as device A."
|
|
[ Reply ] |
|
editors note: | by texteditor | 2003-11-06 19:19:40 |
|
|
[Todays Cartoon Discussion]
[News Index]
|
|
