Securing Mobile Short-Range Wireless Systems: A Comparative Survey of NFC and BLE Security Mechanisms, Vulnerabilities, and Mitigation Strategies
摘要
The widespread use of mobile devices has revolutionized daily life, enabling everything from contactless payments to remote healthcare monitoring. Short-range communication technologies like Bluetooth Low Energy (BLE) and Near Field Communication (NFC) are at the heart of this transformation, powering smooth connectivity, energy-efficient data exchange, and intuitive user interactions. However, as these technologies become popular, their communication channels often emerge as prime targets for exploitation. This survey examines the vulnerabilities plaguing BLE and NFC, including eavesdropping, man-in-the-middle (MITM) attacks, and relay attacks, which threaten user privacy, data integrity, and system trustworthiness. We will discuss the security mechanisms embedded in these protocols, such as BLE’s elliptic-curve Diffie-Hellman (ECDH) pairing and NFC’s reliance on secure elements (SEs), to evaluate their effectiveness in mitigating risks. This study examines the current threat landscape and offers practical recommendations to strengthen BLE and NFC communication channels, laying the foundation for robust and attack-resilient frameworks in our increasingly interconnected world.