Passkey entry impersonation attack
Description
Passkey entry impersonation attackRisk Assesment: 4.2
CWE
CVE
Attack Surfaces
Controller Implementation (MITRE EMB3D PID-11)
Attack Vectors
Authentication challenge reflection (MITRE EMB3D TID-221)
Defenses
Restrict accepted public keys, Devices should not accept their own public key from a peer during a pairing session. The pairing procedure should be terminated with a failure status if this occurs.