Nothing is safe today. Adobe has recently released a patch for a security hole in different graphical application, so why should Bluetooth be safe? Bluetooth is no longer safe of course.
Two researchers of the Tel Aviv University School of Electrical Engineering Systems say they have discovered a method for taking control of Bluetooth-enabled mobile rings. After you have established a connection with another mobile phone, the attacker can fundamentally make calls along together along with your phone. If there is a Bluetooth connection with a PC, the hacker may even transfer knowledge between his Bluetooth tool / mobile phone & the hacked computer. Bluetooth can be dangerous as you can see! Even when the handsets have security features switched on, your mobile phone is not save at all!
Avishai Wool, senior lecturer & Yaniv Shaked, graduate student & both researchers of the Tel Aviv University School of Electrical Engineering Systems have published recently a paper about methods for forcing a repeat of the pairing method, "Cracking the Bluetooth PIN"
In this paper, a passive assault is described, in which an attacker can find the PIN used in the work of the pairing method.
The eye-opening conclusion of these researchers: "Our results show that using algebraic optimizations, the most common Bluetooth PIN can be cracked within less than 0.06-0.3 seconds. If Bluetooth devices perform pairing in a hostile area, they are vulnerable to this assault."
Ollie Whitehousen security researcher of @stake, a digital security consulting firm has written in October 2003 a paper that "examines methods of assessing the security of Bluetooth devices in relation to the protocol's design & implementation flaws”.
In general, the most critical point is the 'pairing' - connection procedure of Bluetooth devices. When a Bluetooth tool asks you to re-enter the PIN number for re-pairing, time the devices are re-connected, the hacker can now fundamentally crack the PIN code.
0 komentar:
Posting Komentar