Is Your Bluetooth Chip Leaking Secrets via RF Signals?

100 pointsposted 14 hours ago
by transpute
(semanticscholar.org)

20 Comments

ryukoposting

8 hours ago

As someone who finally recently escaped bluetooth firmware development: yes, Bluetooth is leaking secrets and it doesn't even require any silly RF shenanigans. Almost nothing actually implements LESC. Apple refuses to implement OOB pairing, so no peripherals can force you to use it, so everything is subject to MITM attacks. The entire ecosystem is a mess of consultants and underpaid devs copy-pasting Nordic sample code, with no time or financial incentive to do more than the bare minumum. Never trust any product that moves sensitive data through Bluetooth.

matthewdgreen

7 hours ago

Apple claims to have implemented an entire second security level for their Bluetooth apps based on iMessage, but I trust it not at all.

(To be clear, I trust the iMessage protocol with reasonable confidence. I judge the probability that Apple has applied this extra layer of security uniformly to all sensitive data to be about 8%.)

ggm

3 hours ago

8.75% surely? you need at least two digits of specious precision on that non-random number.

cozzyd

5 hours ago

Text written with a non-apple Bluetooth keyboard is green?

SXX

4 hours ago

Just curious if it that insecure how does Magic Keyboard with Touch ID works? Does it use some apple proprietary "magic"?

makeitdouble

4 hours ago

> "magic"

They're on an proprietary extension of Bluetooth, standard compatible but closed to their devices. They usually don't talk much about it, Phil Schiller was the most explicit I think (it was about the airpod's W1 but it's the same deal)

https://www.theverge.com/2016/9/7/12829190/apple-w1-chip-iph...

> Apple’s Phil Schiller described Apple’s move to a new wireless chip as “fixing the challenges” of wireless audio

3abiton

10 hours ago

I read the abstract, while not familiar with the topic, how would we go about limiting the inpact?

Retr0id

9 hours ago

Rotating keys frequently would probably help. But the best thing to do is use implementations that are less leaky in the first place (which is easier said than done).

vardump

11 hours ago

A side channel attack revealing AES key from just 90,000 traces.

Sigh, side channel attacks seem to be everywhere now.

barbegal

11 hours ago

That 90,000 traces did take 225 hours to capture so it is truly a huge amount of data and not a trivial attack.

karlgkk

10 hours ago

On the other hand, I’d argue that it’s close enough to trivial to be considered trivial. How many embedded devices transmit sensitive information?

Now, I know that pretty much every Bluetooth based credit card reading device explicitly defends against a channel such as this, but there are tons of access control solutions, and medical devices that don’t

Would you notice a raspberry pi tucked into the mess of wires beneath the security guard guards desk?

throwaway89201

9 hours ago

> How many embedded devices transmit sensitive information?

Every Zigbee device uses AES keys to secure the network, although the security of the protocol is pretty weak in most deployments, especially when new devices join the network. Leaking the network key would provide access to the entire network. The ARM Cortex-M4 is often used, which the side-channel attack in the article is about.

kragen

4 hours ago

That's less than two weeks.

userbinator

2 hours ago

For one key, assuming it does not change within that time.

sitzkrieg

11 hours ago

people are finally aware everything leaks, it's just a matter of how closely you look

boulevard

11 hours ago

Everything leaks if you stare at it long enough

czbond

10 hours ago

Everything has data exhaust.... the exhaust type just differs.

formerly_proven

11 hours ago

There's a lot of signal left between you and the noise floor!

namibj

10 hours ago

Worse: noise floor is a matter of definition.