Practical Bluetooth Traffic Sniffing: Systems and Privacy Implications ‘‘ ’’ Wahhab Albazrqaoe Jun Huang Guoliang Xing

Security  Target  Exploit  Solution

Target: Bluetooth    Secret hopping phase Vendor-dependent adaptive hopping  Interference in the crowded 2.4 GHz band

Exploit: BlueEar     Traffic filtering Basic channel acquisition Adapted channel acquisition  Interference avoidance

System Architecture

DESIGN OF BLUEEAR    Clock Acquisition Sub-channel Classification Selective Jamming

Brute Force Clock Acquisition

Problem

Selective Jamming

Packet-based Classifier

Spectrum Sensing-based Classifier

Hybrid Classifier

IMPLEMENTATION

PERFORMANCE

How to fix Flip n-20 status of good sub-channels randomly

Thank You! Any Questions?