Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
Springer Nature Link
Log in

Relay Attacks on Bluetooth Authentication and Solutions

  • Conference paper
Computer and Information Sciences - ISCIS 2004 (ISCIS 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3280))

Included in the following conference series:

Abstract

We describe relay attacks on Bluetooth authentication protocol. The aim of these attacks is impersonation. The attacker does not need to guess or obtain a common secret known to both victims in order to set up these attacks, merely to relay the information it receives from one victim to the other during the authentication protocol run. Bluetooth authentication protocol allows such a relay if the victims do not hear each other. Such a setting is highly probable. We analyze the attacks for several scenarios and propose practical solutions. Moreover, we simulate attacks to make sure about their feasibility. These simulations show that current Bluetooth specifications do not have defensive mechanisms for relay attacks. However, relay attacks create a significant partial delay during the connection that might be useful for detection.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 129.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Bluetooth SIG. Specification of the Bluetooth System – Bluetooth Core Specification, Vol. 0-3, Version 1.2 (2003), http://www.bluetooth.org

  2. Jakobsson, M., Wetzel, S.: Security Weaknesses in Bluetooth. In: Naccache, D. (ed.) CT-RSA 2001. LNCS, vol. 2020, pp. 176–191. Springer, Heidelberg (2001)

    Chapter  Google Scholar 

  3. Vainio. J.T.: Bluetooth Security (2000), http://www.niksula.cs.hut.fi/~jiitv/bluesec.html

  4. Kügler, D.: Man in the Middle Attacks on Bluetooth. In: Wright, R.N. (ed.) FC 2003. LNCS, vol. 2742, pp. 149–161. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  5. Welsh, E., Murphy, P., Frantz, P.: Improving Connection Times for Bluetooth Devices in Mobile Environments. In: International Conference on Fundamentals of Electronics, Communications and Computer Sciences (ICFS), Tokyo, Japan (2002)

    Google Scholar 

  6. Bray, J., Sturman, C.F.: Bluetooth: Connect Without Cables. Prentice-Hall, Englewood Cliffs (2000)

    Google Scholar 

  7. Bhagwat, P., Segall, A.: A Routing Vector Method (RVM) for Routing in Bluetooth Scatternets. In: IEEE International Workshop on Mobile Multimedia Communications, MoMuC 1999 (1999)

    Google Scholar 

  8. Wang, Z., Thomas, R.J., Haas, Z.: Bluenet - A New Scatternet Formation Scheme. In: 35th Annual Hawaii International Conference on System Sciences (2002)

    Google Scholar 

  9. Kapoor, R., Gerla, M.: A Zone Routing Protocol for Bluetooth scatternets. In: WCNC (2003)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Fac. of Eng. & Nat. Sci., Sabanci University, Orhanli, Tuzla, TR-34956, Istanbul, Turkey

    Albert Levi

  2. National Research Institute of Electronics and Cryptology Gebze, TUBITAK – UEKAE, TR-41470, Kocaeli, Turkey

    Erhan Çetintaş

  3. Dept. of Computer Engineering, Pamukkale University, Denizli, TR-20020, Turkey

    Murat Aydos

  4. School of Electr. Eng. & Comp. Sci., Oregon State Univ., Corvallis, OR, 97331, USA

    Çetin Kaya Koç

  5. Dept. of Computer Engineering, Boğaziçi University, Istanbul, TR-34342, Turkey

    M. Ufuk Çağlayan

Authors
  1. Albert Levi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Erhan Çetintaş
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Murat Aydos
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Çetin Kaya Koç
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. M. Ufuk Çağlayan
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computer Engineering, Bilkent University, TR-06800, Bilkent, Ankara, Turkey

    Cevdet Aykanat

  2. No Affiliation,  

    Tuǧrul Dayar

  3. Department of Computer Engineering, Bilkent University, 06800, Bilkent, Ankara, Turkey

    İbrahim Körpeoğlu

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Levi, A., Çetintaş, E., Aydos, M., Koç, Ç.K., Çağlayan, M.U. (2004). Relay Attacks on Bluetooth Authentication and Solutions. In: Aykanat, C., Dayar, T., Körpeoğlu, İ. (eds) Computer and Information Sciences - ISCIS 2004. ISCIS 2004. Lecture Notes in Computer Science, vol 3280. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30182-0_29

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-30182-0_29

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-23526-2

  • Online ISBN: 978-3-540-30182-0

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation