• State Resolved
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 52 subscribers
  • Views 202 views
  • Users 0 members are here
Support feedback
Options
Options
Similar topics

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

Original question:

WL1831MOD: BLE enforce encryption key minimum length KNOB attack

WL18XX-BT-SP: WL1831MOD

aniket c
Prodigy 40 points
Part Number: WL18XX-BT-SP
Other Parts Discussed in Thread: WL1831MOD

Tool/software:

Hi,

Related to the bluetooth KNOB attack on the WL1831MOD, the observation is encryption key length can be negotiated to minimum of 7bytes.

I am looking for a way to enforce the key length to minimum 16bytes.

Could you suggest possible ways to achieve this?

Regards,

Aniket C.

  • 0
    TI__Genius 14211 points

    Hello aniket,

    Unfortunately the minimum key size is a value that is defined in the Firmware. As you stated there was a patch created in the BT Service pack that changed this minimum to 7 bytes, the only way to enforce the key length to be a minimum of 16 bytes would be to change this variable in the patch.

    Best,

    Rogelio

  • +1 in reply to RogelioD
    Prodigy 40 points

    Hi Rogelio,

    Thanks for your response.

    1) Just to confirm, do you mean that, application code cannot enforce the minimum key length?

    2) Is it possible to get a patch with this modification?

    Regards,

    Aniket.

  • 0 in reply to aniket c
    TI__Genius 14211 points

    Hi Aniket,

    1.) Yes

    2.) To get a patch with this modification you will need to go through a different channel as we cant release custom patches on a public forum. Please contatct your assigned TI Field Application Engineer and explain the need and business use case for the patch. From there the FAE will pass the request to the right channels.

    Best,

    Rogelio