Bluetooth

What is Bluetooth?
• A cable-replacement technology that can be used
to connect almost any device to any other device
• Bluetooth is a wireless technology standard for
exchanging data over short distances
• Available globally for unlicensed users
• Supports open-ended list of applications
Data, audio, graphics, video
• Frequency Hopping scheme (1600 hops/sec)
 What is Bluetooth?
• Theoretical maximum bandwidth is 1 Mb/s
• Operates in the unlicensed ISM band at 2.4 GHz
• Range 10+ meters
• Single chip radio + baseband
• Key features:
– Robustness
– low complexity
– low power, and
– low cost.
 What is Bluetooth?
• Several Bluetooth devices can form an ad hoc
network called a “piconet”
• In a piconet one device acts as a master (sets
frequency hopping behavior) and the others
as slaves
• Example: A conference room with many
laptops wishing to communicate with each
other
 User Application
• Car manufactures Industry

• E-Mail / Internet / Intranet Access

• Headsets

• Bluetooth will facilitate Local Area Networks

 Bluetooth in Action
In the Office ...
In the house

Source: http//:www.motorola.com
Home Security On the Road

Source: http//:www.motorola.com
 On your Car

Source: http//:www.motorola.com
 Bluetooth Specifications
• Things that you must have:
– Transceivers and Receivers that can send and
receive data because they use Radio Waves.
– MAC Address (Physical Address)
• Burnt on the NIC card by the manufacturer.
– PIN Number
• To identify the user using the device.
– A Piconet
– A FHHS protocol
 What is a Piconet?
• A Piconet session is a communication link that must be
created between devices for devices to communicate
with each other.
• This is done when the MAC address and the PIN
number match.
• Each piconet has one master and up to 7 simultaneous
slaves
– Master : device that initiates a data exchange.
– Slave : device that responds to the master
– The channel access for all the slaves in a piconet is controlled
by the master.
 Piconet (cont.)
• If two devices come onto contact with each other(
32 feet) the user will be prompted to initiate a
communication session

• Users then can either deny or accept the request

to initiate a session

• Only devices approved by the user can take part

in the session
 Piconet
• All devices in a piconet hop together
– Master gives slaves its clock and device ID
• Non-piconet devices are in standby
P
S

S M SB

M=Master P=Parked
SB S=Slave SB=Standby
S
P
SB: Waiting to join a piconet
P: Low-power connected states
 Scatternet
 Scatternet is formed by multiple Piconets with
overlapping coverage areas.
 Each Piconet can only have a single master
 Slaves can participate in different Piconets on a
time-division multiplex basis.
 A master in one Piconet can be a slave in
another Piconet.
 Each Piconet has its own hopping channel in a
Scatternet.
Scatternet (2)
 Scatternet
• Devices can be slave in one piconet and master of another

S S
P
P
SB
S M
M
S
SB
P SB
S
 Physical links
• Between master and slave(s), different types of
links can be established. Two link types have been
defined:
– Synchronous Connection-Oriented (SCO) link
– Asynchronous Connection-Less (ACL) link
 Physical links
• Synchronous Connection Oriented (SCO)
– Allocates fixed bandwidth between point to point connection of
master & slave.
– Support symmetrical, circuit-switched, point-to-point
connections
– Typically used for voice traffic.
– Data rate is 64 kbit/s.
• Asynchronous Connection-Less (ACL)
– Support point to multipoint link between master & all slaves
– support packet-switched, point-to-multipoint connections.
– Typically used for data transmission .
– Up to 433.9 kbit/s in symmetric or 723.2/57.6 kbit/s in asymmetric
 FHHS
• Bluetooth devices use a protocol called (FHHS)
Frequency-Hopping Spread Spectrum .

• Uses packet-switching to send data.

• Bluetooth sends packets of data on a range of

frequencies.

• In each session one device is a master and the others

are slaves.

• The master device decides at which frequency data will

travel.
 FHSS
• Frequency hopping spread spectrum (FHSS) is a
method of transmitting radio signals by shifting carriers
across numerous channels with pseudorandom
sequence which is already known to the sender and
receiver.
• Frequency hopping spread spectrum is defined in the
2.4 GHz band and operates in around 79 frequencies
ranging from 2.402 GHz to 2.480 GHz. Every frequency
is modulated with channel width of 1MHz and rates
defined as 1 Mbps and 2 Mbps respectively
• The master device tells the slaves at what frequency
data will be sent.
• This technique allows devices to communicate with
each other more securely.
 Bluetooth Security
• Modes
– Security Mode 1
• No Security
– Security Mode 2
• Service Level Enforced Security
• Implemented after channel is established
– Security Mode 3
• Link Level Enforced Security
• Implemented before channel is established
 Bluetooth Security
• There are three modes of security for Bluetooth access
between two devices.
– non-secure
– service level enforced security
– link level enforced security
• Device security level
– Trusted
– untrusted
• Service security level
– Authorization and Authentication
– Authentication only
– Open to all devices
 Bluetooth Security
• The following are the three basic security services
specified in the Bluetooth standard:
– Authentication
• verifying the identity of communicating devices. User authentication
is not provided natively by Bluetooth.
– Confidentiality
• preventing information compromise caused by eavesdropping by
ensuring that only authorized devices can access and view data.
– Authorization
• allowing the control of resources by ensuring that a device is
authorized to use a service before permitting it to do so.
 Devices

• “Trusted”
– No Restrictions
• “Untrusted”
– Restrictions, Access is limited
 Service Levels
• Authorization and Authentication

• Authentication Only

• Open to all Devices

 Link Level
• Bluetooth Device Address

• Private Link Key

• Private Encryption Key

• Random Number
Bluetooth Protocol Architecture
 Bluetooth Protocol Stack
• Bluetooth Radio : specifics
details of the air interface, including
frequency, frequency hopping, modulation scheme, and
transmission power.
• Baseband: concerned with connection establishment within a piconet,
addressing, packet format, timing and power control. The
Baseband and Link Controller controls the physical links via the
radio, assembeling packets and controlling frequency hopping
• Link manager protocol (LMP): establishes the link setup between
Bluetooth devices and manages ongoing links, including security
aspects (e.g. authentication and encryption), and control and
negotiation of baseband packet size
 Bluetooth Protocol Stack
• Logical link control and adaptation protocol (L2CAP): adapts upper
layer protocols to the baseband layer. Provides both connectionless and
connection-oriented services.

• Service discovery protocol (SDP): handles device information, services,

and queries for service characteristics between two or more Bluetooth
devices.

• Host Controller Interface (HCI): provides an interface method for

accessing the Bluetooth hardware capabilities. It contains a command
interface, which acts between the Baseband controller and link manager
 Bluetooth Protocol Stack
• TCS BIN (Telephony Control Service): bit-oriented protocol that defines the
call control signaling for the establishment of voice and data calls between
Bluetooth devices.
• OBEX(OBject EXchange) : Session-layer protocol for the exchange of
objects, providing a model for object and operation representation
(which provides the same basic functionality as HTTP
but in a much lighter fashion, uses a client-server
model)
• RFCOMM: a reliable transport protocol, which provides emulation of
RS232 serial ports over the L2CAP protocol
• WAE/WAP: Bluetooth incorporates the wireless application
environment and the wireless application protocol into its
architecture.
 Connection Establishment States
• Standby
– State in which Bluetooth device is inactive, radio not switched on,
enable low power operation.

• Page
– Master enters page state and starts transmitting paging messages to
Slave using earlier gained access code and timing information.

• Page Scan
– Device periodically enters page state to allow paging devices to
establish connections.
 Connection Establishment States
• Inquiry
– State in which device tries to discover all Bluetooth
enabled devices in the close vicinity.

• Inquiry scan
– Most devices periodically enter the inquiry scan state to
make themselves available to inquiring devices.
 Inquiry and Page
Master Slave

(1) ID packet (Broadcast) Inquiry

Standby Inquiry Standby
scan

(2) FHS packet Inquiry

Page response

Page
scan

Master (4) ID packet

response Slave
response

(6) ID packet
Connection Connection
(7) ID packet