Mod 7: Bluetooth - PE Flashcards
Bluetooth is a short range wireless technology between a mobile and fixed device over what frequency range?
- HF
- VHF
- UHF
- None of the above
UHF
[TRUE / FALSE]
Bluetooth uses Frequency Hopping Spread Spectrum (FHSS).
True
[True / False]
Bluetooth is a packet-based protocol that forms a network known as piconet; devices using a piconet do not have to be on the same channel at the same time.
False
Which actress was the inventor of Frequency Hopping Spread Spectrum (FHSS)?
- Margot Robbie
- Hedy Lamarr
- Halle Barrie
- Jennifer Aniston
Hedy Lamarr
How many bluetooth channels are available?
- 72
- 64
- 56
- 79
79
During device discovery, devices generate an inquiry hopping sequence derived from where?
- The devices serial number
- A random generated number
- The local devices clock and chosen inquiry access code
- None of the Above
The local devices clock and chosen inquiry access code.
[TRUE / FALSE]
Bluetooth protocol is broken down into four category stacks.
FALSE
[True / False]
Bluetooth host is the device such as the mobile, while the Bluetooth controller is the built-in chip into the mobile device.
True
The Bluetooth controller is responsible for which lower-layer functions?
- Frequency Hopping
- Base Band Encapsulation
- Returning Results to Host Device
- All of the Above
All of the Above
[TRUE / FALSE]
The Bluetooth host is responsible for higher-layer protocols.
True
What is the connection-oriented streaming transport protocol over Bluetooth?
- LRCOMM
- RFCOMM
- CFCOMM
- UHCOMM
RFCOMM
What is the bridge that connects and moves information between RFCOMM and the upper layers?
- PCAP
- L1CAP
- L2CAP
- CCAP
L2CAP
What is the link that communicates between the host and the controller?
- Mode Controller Interface (MCI)
- Link Manager Protocol (LMP)
- Host Controller User (HCU)
- Host Controller Interface (HCI)
Host Controller Interface (HCI)
What is the first step of the controller protocol stack and is inaccessible without special hardware?
- Link Manager Protocol (LMP)
- Baseband Manager Protocol (BMP)
- Host Controller Interface (HCI)
- None of the Above
Link Manager Protocol (LMP)
What is the final layer of framing a packet and specifies over-the-air characteristics such as transmission rate?
- Lowband
- Highband
- Waistband
- Baseband
Baseband
A Bluetooth address is how many bits?
- 32
- 36
- 38
- 48
48
The first 24 bits of a Bluetooth Mac Address are called what?
- NIC
- OUI
- UAA
- None of the above
OUI
Which part of the Bluetooth Mac Address help to determine the manufacturer of the device?
- OUI
- NIC
- UAA
- None of the Above
OUI
What is used to help determine the frequency hopping pattern in radio communication between Bluetooth devices?
- AB_ADDR
- CD_ADDR
- BD_ADDR
- AD_ADDR
BD_ADDR
What are the three main parts that Bluetooth Address Structure breaks into?
- NAP
- UAP
- LAP
- All of the Above
All of the Above
What main part of the Bluetooth Address Structure contains the first 16 bits of the OUI?
- UAP
- LAP
- NAP
- GAP
NAP
Which main part of the Bluetooth Address Structure contains the remaining 8 bits of the OUI?
- UAP
- LAP
- NAP
- GAP
UAP
Which portion of the Bluetooth address is allocated by the vendor of the device?
- UAP
- LAP
- NAP
- GAP
LAP
How many bits is the LAP portion of the Bluetooth MAC Address?
- 8
- 16
- 24
- 48
24
[True / False]
Both authentication and encryption are built into the Bluetooth controller chip when manufactured?
True
[True / False]
Developers can choose to use both authentication and encryption, neither, or one over the other.
True
What profile info do devices share during the pairing process?
- PIN
- Random Number
- Bluetooth MAC address (BD_ADDR)
- All of the Above
All of the Above
Profile info during the pairing process is used to generate a common secret key known as what?
- HEX KEY
- CRYPTO KEY
- LINK KEY
- SAFE KEY
LINK KEY
[TRUE / FALSE]
A brute-force attack can allow an attacker to derive the LINK KEY from the pairing exchange and authentication exchange by passive scanning.
TRUE
Which pairing mode in Secure Simple Pairing is where two devices display a 6-digit number and the user confirms they match in order to pair?
- Numeric Comparison
- Just Works
- Passkey Entry
- Out of Band
Numeric Comparison
Which pairing mode allows pairing with different technology such as Near Field Communication (NFC)?
- Numeric Comparison
- Just Works
- Passkey Entry
- Out of Band
Out of Band
Which pairing mode is used with devices such as headsets that have no input methods?
- Numeric Comparison
- Just Works
- Passkey Entry
- Out of Band
Just Works
What is the Bluetooth range?
- 5m
- 10m
- 20m
- 40m
10m
[TRUE / FALSE]
The goal of scanning and reconnaissance is to discover the BD_ADDR, and there are four main ways to do so.
TRUE
Which type of discovery is when the physical device is accessible, and the manufacturer and model number can be found?
- Active Discovery
- Passive Discovery
- Hybrid Discovery
- Traffic Analysis
Passive Discovery
Which type of discovery is when a target Bluetooth device is in discoverable mode, and you are able to transmit inquiry scan messages and listen for responses?
- Active Discovery
- Passive Discovery
- Hybrid Discovery
- Traffic Analysis
Active Discovery
What protocol is used to identify what services are available on a specific Bluetooth device?
- ADP
- TCP
- SDP
- UDP
SDP
