Jump to content

Bluetooth security request.

enaon

By enaon
in King Song

 Share

Recommended Posts

enaon Mentor

enaon

Posted
Posted (edited)

I have a security request if anyone is reading from kingsong :)

I like how simple the protocol is, I like that a pass feature is implemented, although everything  is unencrypted, but I don't like how you handle the pass token. 

The way it is now, the wheel waits for a pass to give access to write commands. Once a pass is given, the wheel starts accepting write commands, and that is it.

One can not lock the wheel and leave it unattended, because the action of the locking the wheel also provided a pass, and the wheel now does not require a pass for as long as it is not rebooted. That means than anybody can connect with eucWorld and unlock it.

Please make it so that pass token is cleared on connection state change, so that if one locks and disconnects, the wheel will need a pass again before allowing to unlock.

Also please, make the two beeps loop on locked state longer or selectable, it is a bit annoying i think. 

Edited by enaon
  • Like 2
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...