Sunday, September 27, 2009

Reasons Why Bluetooth is not secure

Hey Everyone! Zac here!

Now I'm sure most of you know what Bluetooth is, the thing with the funny logo that allows you to send files to other people's computers and connect your phone to your car for hands free calling (but it can do a h*ll of a lot more then that!), now I'm sure we all love it and it's simplicity, but 1 thing we overlook is that it sometimes isn't as secure as we think it is! Now I'm NOT saying Bluetooth isn't secure, I'm just saying it shouldn't be considered completely secure!
Here are the reasons why it shouldn't be considered hack-proof/completely secure:
1. Passkeys are the same as passwords, they can be unencrypted, meaning someone could soon have access to whatever you're sending (so much for not having that guys phone number exposed to that guy sitting right next to me!)
2. Bluetooth operates by opening a stream to the other device's bluetooth rig, then closing it when the operation is complete, but if a hacker finds out where the stream is, they can tap into it and see what it is you're sending, who it is going to, and all sorts of info about the thing you are sending or streaming
3. When you're in discoverable mode, everyone within 10m around you can see your computer or other bluetooth device, this means anyone can connect to you, which could mean something bad for your device's security, but most systems have something that prevents this, like prompting you if someone tries to access your device it'll prompt you for permission to allow it

So that's all the advice I have for you right now, post a comment and tell me if you have any others!

Peace,
Zac