BlueBat: towards practical bluetooth honeypots

Authors:
Antonio Galante;Ary Kokos;Stefano Zanero
Affiliations:
Politecnico di Milano, Dipartimento di Elettronica e Informazione;Politecnico di Milano, Dipartimento di Elettronica e Informazione;Politecnico di Milano, Dipartimento di Elettronica e Informazione
Venue:
ICC'09 Proceedings of the 2009 IEEE international conference on Communications
Year:
2009

Citing 4
Cited 1

Security Weaknesses in Bluetooth

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Bluetooth Security

Bluetooth Security
Cracking the Bluetooth PIN

Proceedings of the 3rd international conference on Mobile systems, applications, and services
Studying Bluetooth Malware Propagation: The BlueBag Project

IEEE Security and Privacy

This network is infected: HosTaGe - a low-interaction honeypot for mobile devices

Proceedings of the Third ACM workshop on Security and privacy in smartphones & mobile devices

Quantified Score

Hi-index	0.00

Visualization

Abstract

It is still difficult to assess the real danger posed by Bluetooth-propagated malware. BlueBat is an effort to build and deploy a practical honeypot for capturing in-the-wild samples and empirically study malware prevalence. This paper describes the design and implementation of a first prototype, focusing on Bluetooth worms propagating over the OBEX Push service. We develop and perform initial field testing of different types of sensors, in order to achieve an optimal collection capability. We analyze the results of the field tests, and demonstrate various design constraints. Also, from these preliminary tests, we cast some doubts on the prevalence of in-the-wild Bluetooth worms, and hint at some reasons why such threat could be more limited than previously thought.