Breaking News
Comments
Susan Rambo
User Rank
Blogger
Blame the user?
Susan Rambo   5/21/2014 1:22:51 PM
NO RATINGS
Hi Jessica, what did the Broadcom executive say about why the user is the "security hole"? 

y_sasaki
User Rank
CEO
RSA key exhange over Bluetooth
y_sasaki   5/21/2014 6:41:34 PM
NO RATINGS
As long as I've read Bluetooth 4.1 Core Specification, Bluetooth LE pairing (key exchange) is done with pseudo-random and hash. In other words, it is not based on RSA public-key key exchange. There is notion that says future version of Bluetooth will include "elliptic curve cryptography and Diffie-Hellman public key exchanges" (Volume 3, Part H, Section 2.3.1), but still no mention to RSA public key exchange.

 

RSA is well-defined, widely adopted, relatively lightweight (compare to DH or EC), considered to be very secure public key algorithm. Security on internet (SSL/TLS) is almost dominated by RSA (though TLS also supports DH, rarely used in practice). RSA is also popular in WiFi enterprise security, which uses essentially same TLS protocol over EAP framework.

Definately 4Kbit hardware-accelarated RSA engine is something "nice to have". However, as long as I read Bluetooth core spec, RSA is not adopted as standard as I wrote above.

In the end my question is, is RSA-based Bluetooth security is propriately to Broadcomm chipset, or are they (Broadcomm) want it to be part of Bluetooth SIG standard?

Lauree
User Rank
Rookie
Re: RSA key exhange over Bluetooth
Lauree   5/24/2014 2:30:43 AM
NO RATINGS
Even I have heard about this that Bluetooth LE pairing is not based on RSA public-key key exchange.

I am too waiting for the answer.


Thanks,

Lauree

Ruby on Rails Developer

 



EE Life
Frankenstein's Fix, Teardowns, Sideshows, Design Contests, Reader Content & More
Max Maxfield

10 Top Video Parodies on User Interfaces
Max Maxfield
10 comments
As you may know, the people of Scotland are holding a referendum today to decide whether they wish to remain part of the United Kingdom (UK) or to become fully independent and "go it ...

EDN Staff

11 Summer Vacation Spots for Engineers
EDN Staff
20 comments
This collection of places from technology history, museums, and modern marvels is a roadmap for an engineering adventure that will take you around the world. Here are just a few spots ...

Glen Chenier

Engineers Solve Analog/Digital Problem, Invent Creative Expletives
Glen Chenier
15 comments
- An analog engineer and a digital engineer join forces, use their respective skills, and pull a few bunnies out of a hat to troubleshoot a system with which they are completely ...

Larry Desjardin

Engineers Should Study Finance: 5 Reasons Why
Larry Desjardin
46 comments
I'm a big proponent of engineers learning financial basics. Why? Because engineers are making decisions all the time, in multiple ways. Having a good financial understanding guides these ...

Flash Poll
Top Comments of the Week
Like Us on Facebook
EE Times on Twitter
EE Times Twitter Feed

Datasheets.com Parts Search

185 million searchable parts
(please enter a part number or hit search to begin)