Bruce Shneier report that Tel Aviv University researchers have demonstrated a passive attack that can recover the PIN used by bluetooth devices during the pairing protocol, allowing the attacker to eavesdrop on a Bluetooth network. The approach works for the four digit PINs adopted by industry. See their Mobisys 2005 paper or this news article.

Categories: Mobile Computing, Security, , Related posts: • iPods meet bluetooth;  • hackdiary: Ericsson Bluetooth phone as remote control;  • SonyEricssonClicker for wintels… coming in 2010…;   Trackback: link, Comments: