Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cryptographic authentication of batons #1

Open
redfast00 opened this issue Mar 10, 2022 · 1 comment
Open

Cryptographic authentication of batons #1

redfast00 opened this issue Mar 10, 2022 · 1 comment

Comments

@redfast00
Copy link
Member

At the moment, it is possible to spoof a baton: since the stations recognize the batons based on their MAC address, it's trivially possible to spoof batons by changing your MAC address. This could lead to all kinds of mayhem. Since it's possible to control the BTLE payload, we could do some cryptography magic™ to authenticate the batons. This should only happen on the stations (and not be propagated any further), as to not increase the complexity of Telraam or other software.
@redfast00
Copy link
Member Author

redfast00 commented Feb 21, 2023
edited
Loading

Idea: use a single byte of a fast HMAC algorithm over the data sent. If data is spoofed, there's a 255/256 chance to get caught. If data is replayed, this will be noticed by monitoring that the baton has rebooted.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@redfast00