Bluetooth security in Windows 10
For a wireless technology standard formally established in the 1990s, Bluetooth has shown remarkable resilience and longevity. More than two decades later, we now have more Bluetooth-enabled devices in our homes than ever before.
PCs, mobile phones, speakers, earphones, TVs, keyboards, mice, controllers, fitness trackers, watches — all these devices and peripherals use this standard for communicating with each other. And with the rising popularity of the Internet of Things (IoT) and more smart devices, Bluetooth looks to be in for the long haul.
Why does it still exist?
For such a popular and crucial communications standard, Bluetooth is surprisingly full of flaws, both from the perspective of user experience and device security. Connections are notoriously unreliable and prone to sudden breaks, signal speeds are slow and recent research has unearthed several important security flaws.
The only reason why Bluetooth still exists is that it is relatively easy to implement, easy to use and cheap to manufacture. That last part is mainly due to its use of 2.4 GHz frequency, or the ISM band (Industrial, Scientific and Medical devices). ISM frequency devices do not require an FCC license, which makes them incredibly attractive for manufacturers.
Despite being around for 20 years, Bluetooth is still rather poorly understood by general tech protocol standards. A lot of this is down to how its communications standard was developed in the 1980s and ‘90s by multiple expert committees and groups.
So in truth, there is no single Bluetooth protocol, but rather a collection of different protocols compiled into a single, long, rambling standard. At nearly 3,000 pages, it is ten times as long as other comparable standards like Wi-Fi.
Bluetooth security issues
Due to such complexity, in-depth security analysis of the entire length and breadth of Bluetooth protocols has not occurred yet. But in a way, this situation has also dissuaded hackers from taking a serious look at Bluetooth due to its convoluted and messy specifications.
But this is certain to change as the number of Bluetooth-enabled devices increase, particularly at the enterprise and industrial level. Researchers have unearthed several critical security vulnerabilities across Bluetooth implementations in recent years. These include:
- The BlueBorne flaw, which affected over five million PCs and other devices
- The iPhone Bluetooth flaw on Airdrop
- The Key Negotiation of Bluetooth (KNOB) flaw
While most of these are related to faulty implementations of Bluetooth protocols by individual manufacturers and vendors, some, like the KNOB flaw, are due to fundamental vulnerabilities found across all implementations.
Due to its unique mode of action and limitations related to signal strength and range, any potential security threat to Bluetooth devices require a combination of the following conditions for success:
- The devices are turned on and visible
- The devices are pairing, or connected
- The connection is using a weak encryption
- The attacker is within range
- The device is not updated to the latest security patches/firmware
Steps to maximize Bluetooth security in Windows 10
Based on the above checklist, it is easy to deduce some basic measures which can help maintain security on Windows 10 PCs with Bluetooth connectivity.
Updates/patches
Microsoft has issued several security updates in recent times which addressed Bluetooth security issues. The most recent of these was the June 11, 2019 update. While the timely installation of updates like these can ensure maximum safety on the PC, it is equally important to seek out and update/patch the firmware located on the connecting peripheral or slave device.
Many users overlook this critical aspect, which can give rise to potential security flaws when the Windows PC connects to such devices. In fact, the June 11 patch disabled Windows access to certain categories of Bluetooth devices, requiring users to either update the firmware of those affected devices or use alternate devices in some cases.
Avoid connecting to older versions
Throughout its lifetime, there have been several versions of Bluetooth implementations, like 2.0, 4.1 and so on. The latest version is Bluetooth 4.2, which supports advanced security encryptions, including SSP and AES-CCM. While these still have numerous vulnerabilities, they are still better than older versions which were backed by just SSP (starting with 2.1).
If possible, check the version of Bluetooth used in a device before connecting it to a Windows PC. Avoid 2.0 and older devices as they have no encryption features whatsoever. Even those with SSP come with no guarantees of safety and should be kept at bay. Stick to version 4.2 and above for maximum safety.
Disable Bluetooth when not in use
Many users think that setting their PC or device Bluetooth visibility setting to “invisible” is enough to protect them from attacks. This is patently false. Using special tools like Blue Hydra, it is possible to sniff out nearby Bluetooth device connections, even when they are not set as visible.
The safest possible thing to do would be to switch off Bluetooth on a Windows 10 PC whenever it is not in use. The easiest way to do this is by clicking on the chat balloon icon on the extreme right side of the taskbar. It will open up a control panel with buttons to toggle several connections and features, including Bluetooth.
Manage Bluetooth connections and paired devices
Given the surfeit of Bluetooth-enabled devices in a modern home, it is very easy to lose track of the devices which have been paired to a Windows PC over time. This is why it is a good idea to frequently purge devices which no longer connect to your PC from the list.
Head to Settings → Devices → Bluetooth for a full list of paired devices. Click on a particular device to get the option to remove it. Some other best practices to follow include:
- Choosing a secure PIN or passkey for all connections/devices that support this feature
- Never use the default PIN that comes with the device
- Disable unused Bluetooth services when connecting to devices like mobile phones
- At all costs, do not allow other devices to find the PC whenever Bluetooth is turned on
Key takeaways
Despite its several weaknesses and security flaws, for want of a better alternative, Bluetooth is here to stay. To maintain security on Bluetooth connections involving a Windows 10 PC, always keep the PC and Bluetooth-powered device updated to the latest security patch/firmware. Keep Bluetooth disabled the moment it is no longer in use and follow best practices while managing paired connections on the PC.
Sources
- How Bluetooth Works, HowStuffWorks
- Why Bluetooth Is a Security Risk and What You Can Do About It, MakeUseOf
- Having Bluetooth Issues on Windows 10? Here's Why, Laptop Mag
- Windows guidance for Bluetooth key length enforcement, Microsoft
- Bluetooth's Complexity Has Become a Security Risk, WIRED
- How Does Bluetooth Work, and Why Is It So Terrible?, Make Tech Easier
- New Critical Bluetooth Security Issue Exposes Millions Of Devices To Attack, Forbes
In this Series
- Bluetooth security in Windows 10
- Comparing Linux+ and RHCSA/RHCE operating system security certifications
- Android security: Everything you need to know [Updated 2021]
- Application sideloading in Windows 10
- Web Browser Security in Windows 10
- How to use Local Group Policy to secure Windows 10
- How to use Microsoft DirectAccess
- How to protect a Windows 10 host against malware
- CA Installation and Use in Windows 10
- Certificates overview and use in Windows 10
- How to Use Windows 10 Action Center and Security & Maintenance App for Hardening
- Data Security in Windows 10: NTFS Permissions (Standard)
- 6 windows event log IDs to monitor now
- How to audit Windows 10 security logs
- How to audit Windows 10 system logs
- App isolation in Windows 10
- Windows Supported wireless encryption types
- How to use Assigned Access in Windows 10
- How to configure password policies in Windows 10
- Data execution prevention (DEP) in Windows 10
- How to use Windows 10 quick recovery options
- How to use Disk Quotas in Windows 10
- Data Security in Windows 10
- How to use AppLocker in Windows 10
- How to configure internet options for local group policy
- How to configure Windows 10 firewall
- Windows 10 security features
- How To Use Microsoft Edge Security Features
- How to use BitLocker in Windows 10 (with or without TPM)
- Encrypted file system (EFS) in windows 10
- Share permissions in Windows 10
- How to audit windows 10 application logs
- Understanding Windows Services
- Windows 10 Auditing Features
- How to use Protected Folders in Windows 10
- How to configure VPN in Windows 10
- How to configure UAC in Windows 10
- Domain vs workgroup accounts in Windows 10
- Single Sign-On in Windows 10
- Connecting to secure wireless networks in Windows 10
- MAC filtering in Windows 10
- Admin vs non-admin accounts in Windows 10
- Types of user accounts in Windows 10 (local, domain, Microsoft)
- How to use Windows Recovery Environment
- How to use Windows Backup and Restore Utility
- How to use Microsoft passport in Windows 10
- Driver Security in Windows 10
- How to use Credential Manager in Windows 10
- How to configure Picture Passwords and PINs in Windows 10
- How to use credential guard in Windows 10
- Application Management in Windows 10
Get certified and advance your career
- Exam Pass Guarantee
- Live instruction
- CompTIA, ISACA, (ISC)², Cisco, Microsoft and more!
Operating system security
Comparing Linux+ and RHCSA/RHCE operating system security certifications
Operating system security
Android security: Everything you need to know [Updated 2021]
Operating system security
Operating system security