This course aims to educate learners on Bluetooth Smart technology, covering its design, vulnerabilities, and solutions. By the end of the course, students will understand the workings of Bluetooth Smart from the PHY layer to the application layer, identify weaknesses in its key exchange process, and implement a secure fix using Elliptic Curve Diffie-Hellman. The course teaches skills such as sniffing and recovering encryption keys, implementing secure key exchange protocols, and using tools like Wireshark for analysis. The teaching method includes theoretical explanations, live demonstrations, and practical examples. This course is intended for individuals interested in understanding Bluetooth Smart technology, its security implications, and implementing secure communication protocols.
Bluetooth Smart - The Good, The Bad, The Ugly, and The Fix
Overview
Syllabus
Intro
Why Bluetooth Smart? (2)
What is Bluetooth Smart?
Protocol Stack
Hopping
Example GATT Service: Heart Rate
Ubertooth Block Diagram
PHY Layer.. Link Layer..
Wireshark Awesomeness
Custom key Exchange Protocol
LTK Reuse
The Ugly: Recap
My Qualifications
Why Secure Simple Pairing?
SSP in Bluetooth Smart
Backward Compatibility
Demo
Summary
Capabilities
Software
Happy Birthday
Taught by
Black Hat
