Low Energy encryption information There are now two distinctive levels of security with Bluetooth low energy.

1. Bluetooth spec V4.0 and V4.1 have a security level that the a)

b) c) d) e) f)

sniffer can “crack” and calculate the LongTermKey (LTK). If the sniffer “listens/captures” the Pairing session between two devices then it can calculate the same LTK as they devices are using The LTK is needed by the sniffer to decode the encrypted traffic. The sniffer needs to have the same LTK as the devices are using. The LTK is never sent over the air. The LTK can be detected in the Host Control Interface (HCI) It is possible to use a special mode called Debug Mode on a device. If one of the devices is in Debug mode then Sodera or the BPA600 can calculate the LTK. Debug mode is something that the user need to know how to enable. This is not always easy or information that is available from the module maker.

Low Energy encryption information

2.

Bluetooth V4.2 is using a more secure form of encryption (similar to Secure Simple Pairing SSP in Classic Bluetooth) a) NO sniffer can “Crack” V4.2 Security mode. It is NOT possible to calculate the LTK by listening to the pairing session b) In order to decrypt V4.2 we need to enter the LTK c) With the BPA600, you need to use the same LTK as the devices are using DURING the capture (it is not possible to enter the LTK and decrypt AFTER the capture) d) With Sodera, it is possible to enter the LTK at any time (before or after capture). e) It is possible to use a special mode called Debug Mode on a device. If one of the devices is in Debug mode then Sodera or the BPA600 can calculate the LTK. Debug mode is something that the user need to know how to enable. This is not always easy or information that is available from the module maker.

ELEXO 20 Rue de Billancourt 92100 Boulogne-Billancourt Téléphone : 33 (0) 1 41 22 10 00 Télécopie : 33 (0) 1 41 22 10 01 Courriel : [email protected] TVA : FR00722063534