2024-08-07 –, Firenze
This research explores the use of the Linux D-Bus as an investigative vehicle for understanding and cataloguing the Bluetooth landscape. Exploration begins with an assessment of the protocol’s basics, the topography of existing toolsets, and a determination of where/how to launch our probe of the environment. After discerning limitations and establishing initial instruments, we review the pain-points perceived along with lessons learned in development of these skills. The review of Bluetooth research ranges from scanning to discovery of devices, their enumeration, and their interaction with potential objects. Device investigations include the BLE CTF, custom made servers, and unknown devices found in the wild. The research is done using Python, the BlueZ library, and the Python dbus library.
The Bluetooth research covers the use of the Linux D-Bus as an API for interacting with Bluetooth Low Energy devices. It will consist of understanding the existing tools (i.e. busctl) for inspecting the D-Bus, re-creating these structures and introspection functionality via the Python dbus library, and abstracting the Python processes into a working platform for Bluetooth device exploration and cataloguing. This is coupled with the chronicled efforts to leverage the BlueZ library and the slender existing example documentation provided (e.g. git kernel repos, Bluetooth SIG). The talk will cover the development of the toolset (e.g. scanning, discovery and enumeration) protocols, along with their interaction among Bluetooth Low energy devices. From simple Read/Write interplay to complications observed with authentication, encryption, and signal capture, the main purpose of this talk is to explore Bluetooth devices and their security. In addition, I will begin to present development of a Bluetooth Landscape Exploration & Enumeration Platform.
Wortman is a PhD in Electrical and Computer Engineering from the University of Connecticut with research that ranged from network analysis to cyber security risk evaluation. He now focuses on Bluetooth protocol and devices research.