Pieterse, HeloiseOlivier, Martin S.2017-01-132017-01-132014-09Pieterse, H & Olivier, MS 2014, 'Bluetooth command and control channel', Computers and Security, vol. 45, pp. 75-83.0167-4048 (print)1872-6208 (online)10.1016/j.cose.2014.05.007http://hdl.handle.net/2263/58512Bluetooth is popular technology for short-range communications and is incorporated in mobile devices such as smartphones, tablet computers and laptops. Vulnerabilities associated with Bluetooth technology led to improved security measures surrounding Bluetooth connections. Besides the improvement in security features, Bluetooth technology is still plagued by vulnerability exploits. This paper explores the development of a physical Bluetooth C&C channel, moving beyond previous research that mostly relied on simulations. In order to develop a physical channel, certain requirements must be fulfilled and specific aspects regarding Bluetooth technology must be taken into consideration. To measure performance, the newly designed Bluetooth C&C channel is executed in a controlled environment using the Android operating system as a development platform. The results show that a physical Bluetooth C&C channel is indeed possible and the paper concludes by identifying potential strengths and weaknesses of the new channel.en© 2014 Elsevier Ltd. All rights reserved. Notice : this is the author’s version of a work that was accepted for publication in Computers and Security. Changes resulting from the publishing process, such as peer review, editing, corrections, structural formatting, and other quality control mechanisms may not be reflected in this document. A definitive version was subsequently published in Computers and Security, vol. 45, pp. 75-83, 2014. doi : 10.1016/j.cose.2014.05.007.MobileApplicationsCommand and controlBluetoothAndroidMalwareBluetooth command and control channelPostprint Article