Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

Wi-Fi Bluetooth for Linux Forum Discussions

Anonymous
Not applicable

Hi,

Seems in POS applications everything lower than BLE4.2 is not allowed because of security issues.

I can’t find any info on how to disable only  the BLE part in the Murata module (based on BCM4343W).

Is this possible to have only Wifi and BT running without BLE active ?

Thanks

0 Likes
1 Solution
ChristopherA_76
Employee
Employee
5 likes given First like received First like given

Some additional background information on POS and BLE.

Bodies like the PCI Security Standards Council have moved towards higher security standards as a requirement for BLE in payment applications. The BT 4.2 standards include such improvements, but the necessary profile (LE Secure connections) like many of the 4.2 features is optional, so is implemented on some Bluetooth products and not on others - LE Secure connections requires additional firmware either in the ROM image or it can be patched in.

LE Secure Connections introduces Elliptic curve Diffie–Hellman (ECDH) for key generation via a new software block and a new pairing procedure for the key exchange.

This provides protection from eavesdropping for all pairing methods and protection against man-in-the-middle attacks for Numeric Comparison, Passkey Entry, and Out Of Band pairing methods.

Broadcom have added

  • Generation and management of ECDH keys
  • LE Secure Connection pairing requests
  • Generation of ECDH keys and Long Term Keys (LTK)
  • Generation and exchange of cross transport keys

If you want to use BLE for a POS application, you must check that the chip is certified for BT 4.2 plus the specific LE Secure connections block is supported - as it is an optional feature even if the chip is 4.2 capable.

Gregg

View solution in original post

0 Likes
3 Replies
MichaelF_56
Moderator
Moderator
Moderator
250 sign-ins 25 comments on blog 10 comments on blog

mario.vermeir

Are you using the Murata 1DX with Linux?  If so, which Freescale/NXP platform is being leveraged?  There is a list of the supported dev platforms here: Murata Wi-Fi/Bluetooth for Linux and Android

ghouseskerr

0 Likes
Anonymous
Not applicable

Using the new iMX7D (dual Cortex-A7)

0 Likes
ChristopherA_76
Employee
Employee
5 likes given First like received First like given

Some additional background information on POS and BLE.

Bodies like the PCI Security Standards Council have moved towards higher security standards as a requirement for BLE in payment applications. The BT 4.2 standards include such improvements, but the necessary profile (LE Secure connections) like many of the 4.2 features is optional, so is implemented on some Bluetooth products and not on others - LE Secure connections requires additional firmware either in the ROM image or it can be patched in.

LE Secure Connections introduces Elliptic curve Diffie–Hellman (ECDH) for key generation via a new software block and a new pairing procedure for the key exchange.

This provides protection from eavesdropping for all pairing methods and protection against man-in-the-middle attacks for Numeric Comparison, Passkey Entry, and Out Of Band pairing methods.

Broadcom have added

  • Generation and management of ECDH keys
  • LE Secure Connection pairing requests
  • Generation of ECDH keys and Long Term Keys (LTK)
  • Generation and exchange of cross transport keys

If you want to use BLE for a POS application, you must check that the chip is certified for BT 4.2 plus the specific LE Secure connections block is supported - as it is an optional feature even if the chip is 4.2 capable.

Gregg

0 Likes