In this talk, we present the security pitfalls of Bluetooth-based proximity authentication. We analyzed implementations of Android Smart Lock and Windows Dynamic Lock and demonstrated new attacks on these implementations. Based on our analysis, we discovered three new attacks that allow attackers to bypass device proximity authentication.
By Youngman Jung, Junbum Shin and Yeongjin Jang
Full Abstract & Presentation Materials: https://www.blackhat.com/eu-19/briefings/schedule/#bluemaster-bypassing-and-fixing-bluetooth-based-proximity-authentication-17493
