Explore the intricacies of iOS 7's Multipeer Connectivity Framework in this 30-minute Black Hat conference talk. Delve into the network-level analysis of device communication over WiFi, uncovering the protocols and encryption algorithms at play. Gain insights into the security model, potential threats, and assumptions developers should consider when leveraging this functionality. Examine the impact of various pairing options, data transmission modes, and encryption settings. Study a real-world application implementation, identifying potential weaknesses and issues. Conclude with the release of a tool designed to uncover vulnerabilities in Multipeer Connectivity applications.
Overview
Syllabus
Intro
Multipeer Connectivity
Motivation
MC API - Authentication
Test Setup
Mystery Protocol #1
Mystery Protocol #2
Pro Packet Trace Editing
MC Security Analysis
MCEncryption Optional Downgrade Attack
Conclusion
Taught by
Black Hat