Implementation of packaged integrated antenna with embedded front end for Bluetooth applications

The design, integration and realization of system in enhanced package approach towards fully functional system level integration by using a compact Bluetooth USB dongle as the demonstrator is presented here. The integration was done on FR4 substrates, which is totally compatible with today’s printed circuit board manufacturing capability. A commercially available Bluetooth integrated chip was chosen as the chipset of our demonstrator, and a package integrated antenna together with an embedded front end completes the system in package integration. The front end developed here is based on an embedded meander line combline filter and an embedded transformer balun. The filter has a 35% area reduction when compared with the classical combline filter and similar performance. The balun has the coils distributed on three layers that minimized the board area needed it and optimizes the performances. The proposed packaged integrated antenna approach is successfully demonstrated here and the new module shows excellent performance when compared with a commercial solution, surpassing the normal Bluetooth class II dongle range which is up to 10 m and increasing the module range up to 120 m without an extra power amplifier

InternalBlue - Bluetooth Binary Patching and Experimentation Framework

Bluetooth is one of the most established technologies for short range digital wireless data transmission. With the advent of wearables and the Internet of Things (IoT), Bluetooth has again gained importance, which makes security research and protocol optimizations imperative. Surprisingly, there is a lack of openly available tools and experimental platforms to scrutinize Bluetooth. In particular, system aspects and close to hardware protocol layers are mostly uncovered. We reverse engineer multiple Broadcom Bluetooth chipsets that are widespread in off-the-shelf devices. Thus, we offer deep insights into the internal architecture of a popular commercial family of Bluetooth controllers used in smartphones, wearables, and IoT platforms. Reverse engineered functions can then be altered with our InternalBlue Python framework---outperforming evaluation kits, which are limited to documented and vendor-defined functions. The modified Bluetooth stack remains fully functional and high-performance. Hence, it provides a portable low-cost research platform. InternalBlue is a versatile framework and we demonstrate its abilities by implementing tests and demos for known Bluetooth vulnerabilities. Moreover, we discover a novel critical security issue affecting a large selection of Broadcom chipsets that allows executing code within the attacked Bluetooth firmware. We further show how to use our framework to fix bugs in chipsets out of vendor support and how to add new security features to Bluetooth firmware