Zigbee AES key sniffing

posted Mar 15th 2009 10:00pm by
filed under: security hacks, wireless hacks

zigbeesniffing

[Travis Goodspeed] posted a preview of what he’s working on for this Summer’s conferences. Last weekend he gave a quick demo of sniffing AES128 keys on Zigbee hardware at SOURCE Boston. The CC2420 radio module is used in many Zigbee/802.15.4 sensor networks and the keys have to be transferred over an SPI bus to the module. [Travis] used two syringe probes to monitor the clock line and the data on a TelosB mote, which uses the CC2420. Now that he has the capture, he’s planning on creating a script to automate finding the key.



8 Responses to Zigbee AES key sniffing

  • fenix849 says:
    March 15, 2009 at 10:42 pm

    There comes a point where the issue becomes physical security rather than software/electrical engineering style security.

    “Just a moment while i open up your home automation controller and/or hospital care appliance.”

    Reply Report comment
  • burnliff says:
    March 16, 2009 at 1:02 am

    shh, this will be useful for those with 00 status.

    Reply Report comment
  • dan says:
    March 16, 2009 at 4:48 am

    just out of interest, is zigbee/xbee widely used in industry?

    Reply Report comment
  • Virgin media 50mbs says:
    March 16, 2009 at 4:55 am

    hi i have a question if you could reply in the coments it would be great.

    In the uk there is a cable company that is using 128 AES encription on macs

    Reply Report comment
  • glonq says:
    March 16, 2009 at 12:25 pm

    It would be embarassing to go to jail for this (hooray DMCA!) and have to tell the other inmates that you’re an “aes sniffer”.

    Reply Report comment
  • burnliff says:
    March 16, 2009 at 5:40 pm

    lol, aes sniffer

    Reply Report comment
  • Len says:
    March 17, 2009 at 7:51 am

    I gotta question… I think someone has this device around here. I saw my mouse moving on its own and deliberately clicking on icons on my computer… I unplugged my wireless logitech keyboard receiver (after unplugging my cable modem and router)and the mouse stopped. Can’t stop this SOB from trying to take over my mouse, my only defense is just to use the wired keyboard? Or, is there something else I can do? Also, this idiot must be within what 50feet of me? Please advise…

    Reply Report comment
  • mungewell says:
    March 18, 2009 at 10:25 am

    This raises some interesting questions about how to protect sensitive information such as AES keys, especially if they have to be stored in external devices.

    If you google around on ‘chip and pin’ hacking, you can see how the banking industry protects their secret Public/Secret keys with meshes and auto destructing battery backed up memory.

    Shame they don’t think that protect the PIN that the user types in is so important….
    Mungewell.

    Reply Report comment

    • Leave a Reply

    XHTML: You can use these tags: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <pre> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

    Hack a Day serves up fresh hacks each day, every day from around the web as well as hacking related news.

    Send us your hacks










         



    Hacks

    Resources