Smart Config security risk analysis and countermeasures

1, Introduction:

Smart configis a fast connection to a non-networked deviceWiFithe technique, the approximate principle is as shown:

2, business requirements: to achieve the true meaning of the device one-click Automatic wifi configuration, without loss of user experience

The risk 1:wifi password is stolen.

Because the phone uses wireless communication to tell the device to connect to the WiFi password, and the mobile phone wireless signal has a certain coverage (7-8 meters or more), so, in this process, there is the problem of WiFi password theft, this problem in the single house is not obvious, but in the commercial housing or group rental environment is more obvious, As shown in the following:

Risk 2: The device was added maliciously.

Similarly, in areas where mobile wireless signals can be covered, if there is a device to be added and bound to the user, the device may be connected to the attacker's designated WiFi by a malicious setting and then added to the attacker's account, resulting in privacy leaks, as shown in:

4. Solution Analysis and comparison:

Scenario 1: Encrypt communication with a separate, unique device key

When the device is factory-supplied, each device is assigned a secure, independent key, which requires the user to enter the key when using the one-touch WiFi configuration function, and encrypts it using the symmetric encryption algorithm, which can decrypt the encrypted information because the device itself owns the key.

Advantages: Can be better to solve the above risk points.

Cons: The user experience is poor and does not meet the needs of the business.

Improved scenario: Encrypted with a fixed key, but this method has no meaning for people with cracked technology.

Scenario 2: Use of Near-field communication or good signal shielding technology

Sonic Technology has the characteristics of difficult to wear walls, NFC has ultra-short-distance communication characteristics, and so on.

Advantages: Can be better to solve the above risk points.

Disadvantage: Need to increase the cost of hardware or patent fees.

Scenario 3: Use an incomplete solution to mitigate the risk.

Set up a time window (for example, 15 minutes) to set up WiFi for the device that just started up or just reset, and after the time window, you need to unplug or reset the device before you can set up WiFi for the device.

Advantages: It can reduce the risk of the device being maliciously set up WiFi and add, without increasing the cost, the user experience loss is small.

Cons: Failed to resolve WiFi password leak.

Smart Config security risk analysis and countermeasures