Blue tooth Security Awareness (Part 2)

In this article - Protecting data theft from Blue tooth devices

Click here to read part 1 of this article series -Making your employees security aware about blue tooth

Too Busy to read the article, see the short video by clicking the image

As explained in my previous article, Bluetooth technology is the most popular wireless connectivity solution today. Although it functions well as a wireless personal network technology, it can increase the risk to business information assets. For more information, read my previous article.

In this article, I am covering solutions to protect data from being stolen from Bluetooth devices.

 

 

Security Modes

Bluetooth has three different modes of security. Each Bluetooth device can operate in one mode only at a particular time. The three modes are the following:

Security Mode 1-Nonsecure mode

Security Mode 2-Service-level enforced security mode

Security Mode 3-Link-level enforced security mode

Devices configured with Mode 1 security employ no security mechanisms. This type of connection should never be used to share sensitive information. Mode 2 security is the most flexible of the three. Once two devices establish a physical channel, business policies can be applied to applications and services to dictate the level of security required.

Mode 3 security is the most secure but lacks the flexibility of Mode 2. When establishing a channel using Mode 3 restrictions, authentication and encryption negotiation begins before the establishment of the channel is complete. All information flowing between the devices is encrypted. Authorization is not required because it is typically assumed that two devices connected over a Mode 3 enabled channel should be able to access all available data and services available in each device.

Mode 2 and 3 security levels are implemented through a process known as pairing.

Failing to turn off discover/visible-to-all mode or to implement at least Mode 2 level security might expose an organization’s information in the following ways:

• Sensitive data is available for browsing

• An attacker can use a compromised telephone to make calls

• DoS attacks can be launched against the compromised device

• Address lists can be downloaded

• Malware can be installed for later infection of other devices, including network attached systems

• An attacker can install malware with the intent to gain ongoing control of the device

• Sensitive information that is not encrypted and that is transmitted between two wireless devices may be intercepted and disclosed.

• Malicious entities may steal the identity of legitimate users and masquerade as them on internal or external corporate networks.

• Sensitive data may be corrupted during improper synchronization.

• Malicious entities may be able to violate the privacy of legitimate users and be able to track their movements.

• Data may be extracted without detection from improperly configured devices.

• Handheld devices are easily stolen and can reveal sensitive information.

Top Security Tips for Protecting Bluetooth networks/devices

 

Click on the image to view the Top 10 Security Tips for Protecting Bluetooth networks devices video

 

 

Tips on how mobile users can protect their Bluetooth-enabled devices:

Stay offline
Turn off features that you are not using. If you have a Bluetooth-equipped device and do not need the function, then don’t turn it on.

Stay invisible
If you are using the Bluetooth function and don’t require your device ID to be visible to others, make sure the device’s visibility setting is set to “hidden” so malicious hackers will not be able to scan and search for it.

Only Pair with Known Devices
Don’t “pair” with unknown devices. Do not accept content or pair with devices from unknown users.

Verify incoming transmission
Do not accept and run attachments from unknown sources unless you are expecting them.For example, if you receive a message to install an application and you don’t know its origin, don’t run it.

Use passwords
Ideally, use passwords with a large number of digits. A four-digit PIN or password can be broken in less than a second, a six-digit PIN in about 10 seconds, while a 10-digit PIN would likely take weeks to crack

Change your PIN
Pair your device in private to make the permanent connection. And if your device comes with a default Personal Identification Number (PIN), change it to only one you know.

Intrusion Detection System (IDS)

An intrusion detection system (IDS) is an effective tool for determining whether unauthorized users are attempting to access, have already accessed, or have compromised the network. IDS for WLANs can be host-based, network-based, or hybrid, the hybrid combining features of host- and network-based IDS.

IDS technology will not detect an authorized wireless device communicating peer-to-peer with an unauthorized wireless device. This scenario can create a bridge into the wired network by allowing an adversary to connect to a wireless device that is operating in “ad hoc” mode. The ad hoc mode allows a wireless device to be used to relay traffic to the network and creates a number of potential attack scenarios. Hence the usage of IDS will help to detect such attacks on Bluetooth “ad hoc” networks.

By Asok Ramachandran 

• 
  

• Security Awareness Categories

  • Blue tooth
  • Email Security
  • Information Security Awareness
  • iPod Security
  • laptop
  • Mass Storage Devices
  • Portable Devices
  • Security Experts
  • Work From Home

• Security Awareness Archives

  Select Month June 2008  (1) May 2008  (5) April 2008  (9) March 2008  (7)