Breaking News

Japanese Researchers Design 3mm Transceiver for 5G Communications Youtube Simplifies Its Strikes System YouPorn Launches Standalone App For Mobiles Huawei Founder Remains Confident On Company's Future, Says No Data is Shared With China Qualcomm Launches New 7nm Snapdragon X55 5G Chip For Smartphones

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Legacy
    • Media Tests
    • DVD Media Formats

    • Glossary
    • FAQ
    • Firmware
    • Drivers
    • BIOS
    • Software
  • Forum
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

Bluetooth SIG Patches Security Vulnerability

Bluetooth SIG Patches Security Vulnerability

Enterprise & IT Jul 23,2018 0

The Bluetooth SIG has updated the Bluetooth specification to correct a security hole of the Bluetooth technology that could be used for man-in-the-middle attacks.

Researchers at the Israel Institute of Technology identified a security vulnerability in two related Bluetooth features: Secure Simple Pairing and LE Secure Connections.

The researchers identified that the Bluetooth specification recommends, but does not require, that a device supporting the Secure Simple Pairing or LE Secure Connections features validate the public key received over the air when pairing with a new device. It is possible that some vendors may have developed Bluetooth products that support those features but do not perform public key validation during the pairing procedure. In such cases, connections between those devices could be vulnerable to a man-in-the-middle attack that would allow for the monitoring or manipulation of traffic. For an attack to be successful, an attacking device would need to be within wireless range of two vulnerable Bluetooth devices that were going through a pairing procedure. The attacking device would need to intercept the public key exchange by blocking each transmission, sending an acknowledgement to the sending device, and then injecting the malicious packet to the receiving device within a narrow time window. If only one device had the vulnerability, the attack would not be successful.

To remedy the vulnerability, the Bluetooth SIG has updated the Bluetooth specification to require products to validate any public key received as part of public key-based security procedures. In addition, the Bluetooth SIG has added testing for this vulnerability within our Bluetooth Qualification Program.

The Bluetooth SIG says there is no evidence that the vulnerability has been exploited maliciously and that is not aware of any devices implementing the attack having been developed, including by the researchers who identified the vulnerability.

Tags: Bluetooth
Previous Post
Huawei Wants to be the First to Launch a Foldable Smartphone
Next Post
MiiiW Mouse Pad Can Charge Your Phone

Related Posts

  • Bluetooth Direction Finding Feature Enables Location Services Accurate to Within 10 cm

  • Bluetooth Gets Mesh Networking Capability

  • Bluetooth 5 Technology Brings Advancements In Terms Of Range, Speed And Capacity

  • Bluetooth 5 Quadruples Range, Doubles Speed, Increases Data Broadcasting Capacity

  • Bluetooth Technology to Gain Longer Range, Faster Speed

  • New Bluetooth Specifications Enable IP Connectivity, Deliver Privacy and Increased Speed

  • Updated Bluetooth 4.1 Adds New Usability Features

  • NFC And Bluetooth Groups To Promote Interoperability

0 Comments

Leave a Reply

More information about text formats

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

BBCode

  • No HTML tags allowed.
  • You may use these tags: [abbr], [acronym], [b], [center], [code], [color], [define], [font], [h1], [h2], [h3], [h4], [h5], [h6], [hr], [i], [img], [justify], [left], [list], [node], [php], [quote], [right], [s], [size], [sub], [sup], [u], [url], [wikipedia], [youtube], [align], [link], [ol], [ul]
  • Lines and paragraphs break automatically.
CAPTCHA
This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Enter the characters shown in the image.

Latest News

Japanese Researchers Design 3mm Transceiver for 5G Communications
Smartphones

Japanese Researchers Design 3mm Transceiver for 5G Communications

Youtube Simplifies Its Strikes System
Enterprise & IT

Youtube Simplifies Its Strikes System

YouPorn Launches Standalone App For Mobiles
Enterprise & IT

YouPorn Launches Standalone App For Mobiles

Huawei Founder Remains Confident On Company's Future, Says No Data is Shared With China
Enterprise & IT

Huawei Founder Remains Confident On Company's Future, Says No Data is Shared With China

Qualcomm Launches New 7nm Snapdragon  X55 5G Chip For Smartphones
Smartphones

Qualcomm Launches New 7nm Snapdragon X55 5G Chip For Smartphones

Popular Reviews

Zidoo Z9S 4K Media Player review

Zidoo Z9S 4K Media Player review

CeBIT 2005

CeBIT 2005

Akasa Elite HDD Case

Akasa Elite HDD Case

CeBIT 2006

CeBIT 2006

LiteOn iHBS112 review

LiteOn iHBS112 review

Nvidia GeForce RTX 2080 Ti and GeForce 2080 Founder's Edition review

Nvidia GeForce RTX 2080 Ti and GeForce 2080 Founder's Edition review

Sony NS955 DVD Player

Sony NS955 DVD Player

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

  • Home
  • News
  • Reviews
  • Legacy
    • Media Tests
    • DVD Media Formats

    • Glossary
    • FAQ
    • Firmware
    • Drivers
    • BIOS
    • Software
  • Forum
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed