×

Discussion Board

Results 1 to 2 of 2
  1. #1
    Registered User
    Join Date
    Nov 2003
    Posts
    2

    Bluetooth Security: What exactly is an untrusted device?

    I was trying to interpret the exact meaning of a trusted and untrusted Bluetooth device. The Bluetooth Security Architecture whitepaper on the SIG site(https://www.bluetooth.org/foundry/si..._presentations) mentions the following on Page 14:

    3.2.2 Device Trust Level
    We distinguish between two different device trust levels:
    Trusted Device: The device has been previously authenticated, a
    link key is stored and the device is marked as
    “trusted” in the Device Database.
    Untrusted Device: The device has been previously authenticated, a
    link key is stored but the device is not marked as
    “trusted” in the Device Database.
    Unknown Device: No security info! rmation is available for this
    device. This is also an untrusted device.

    From this I would interpret that if pairing successfully happens between two devices, then usually the target device should be marked as "trusted" in the device database.
    I do not understand in which case, the device database would mark the status as "untrusted" for a device which has been successfully paired and the link key has been already stored.

    On Page 9 of the same document, the trust levels are distinguised as:

    - Trusted Device: Device with fixed relationship (paired) that is
    trusted and has unrestricted access to all services.
    - Untrusted Device: Device with no permanent fixed relationship
    (but possibly a temporary one) or device that has a fixed
    relationship, but is not considered as trusted. The access to
    services is restricted.

    i do not understand the "Untrusted Device" Section-particularly, what is a "Device with no permanent fixed relation! ship" or "device that has a fixed relationship, but is not considered as trusted". What is the criteria to "consider a device as trusted or untrusted"?

    Kindly help me on this.

    regards,
    Rahul C

  2. #2
    Super Contributor
    Join Date
    Mar 2003
    Location
    Finland
    Posts
    9,556

    Re: Bluetooth Security: What exactly is an untrusted device?

    My take on interpreting this:

    If you have done the pairing, there is yet another level, where you can authorize (or "authorise", if you prefer) a connection to happen automatically, without requiring user confirmation, or not (the default).

    Pairing = device link key is stored
    Trusted = device link key is stored and the device is also authorized
    Untrusted = link key not stored or stored, but device is not specifically authorized

Similar Threads

  1. Replies: 4
    Last Post: 2007-09-04, 17:14
  2. Connecting to Bluetooth SPP device
    By jameelh in forum Symbian
    Replies: 5
    Last Post: 2005-07-05, 12:16
  3. Bluetooth discovery with device scanning
    By arto_koskela in forum Symbian
    Replies: 2
    Last Post: 2004-09-10, 08:40
  4. Nokia 7650 support Bluetooth audo?
    By ovjo12 in forum Bluetooth Technology
    Replies: 5
    Last Post: 2003-07-17, 18:50
  5. Using non-UI guided Bluetooth device inquiry -- issues
    By tkedem in forum Bluetooth Technology
    Replies: 1
    Last Post: 2003-03-30, 02:55

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
×