WISEC 2026, 19th ACM Conference on Security and Privacy in Wireless and Mobile Networks, 30 June-3 July 2026, Saarbrücken, Germany
Bluetooth is a pervasive wireless standard that, despite numerous revisions, remains vulnerable to multiple design-level security flaws. Specifically, its pairing and session establishment security protocols lack integrity protection, forward secrecy, or strong authentication mechanisms, thereby enabling critical impersonation and man-inthe-middle attacks. These risks are compounded by complex and fragmented specifications, which hinder secure implementation and formal analysis.
To address these issues, we present BlueBrothers, three new protocols to serve as a secure alternative to the current ones. BBPairing combines pairing and session establishment in a single protocol that provides integrity protection and robust user-assisted authentication. BB-Session establishes authenticated, secure sessions with forward secrecy guarantees. BB-Rekey provides forward and future secrecy within a session via a lightweight key-refresh mechanism.
We model BlueBrothers in ProVerif and verify confidentiality, integrity, and entity-authentication properties. We implement the protocols on constrained nRF52 devices and evaluate performance against the Bluetooth baseline. Our results show up to a 59% reduction in latency with comparable energy consumption.
To address these issues, we present BlueBrothers, three new protocols to serve as a secure alternative to the current ones. BBPairing combines pairing and session establishment in a single protocol that provides integrity protection and robust user-assisted authentication. BB-Session establishes authenticated, secure sessions with forward secrecy guarantees. BB-Rekey provides forward and future secrecy within a session via a lightweight key-refresh mechanism.
We model BlueBrothers in ProVerif and verify confidentiality, integrity, and entity-authentication properties. We implement the protocols on constrained nRF52 devices and evaluate performance against the Bluetooth baseline. Our results show up to a 59% reduction in latency with comparable energy consumption.
Type:
Conférence
City:
Saarbrücken
Date:
2026-06-30
Department:
Sécurité numérique
Eurecom Ref:
8762
Copyright:
© ACM, 2026. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in WISEC 2026, 19th ACM Conference on Security and Privacy in Wireless and Mobile Networks, 30 June-3 July 2026, Saarbrücken, Germany
See also:
