Ubisys IEEE 802.15.4 usb stic with wireshark firmware Instrukcja Użytkownika Pobierz pdf (Strona 18)

18 www.ubisys.de



9. Using Wireshark to Analyze Encrypted ZigBee PRO Traffic

You can use Wireshark to decrypt ZigBee PRO traffic on-the-fly. Both, secure NWK and APS frames,

can be dissected, as well as ZigBee Green Power.

To set the AES-CCM* security level according to your particular network setup, open the Preferences

for the ZigBee protocol. From the Edit menu, choose Preferences and expand the Protocols section.

Locate and

Automation Network is going to use security level 5, which means AES-128 encryption and 32-bit

message integrity code.

Figure 12: ZigBee NWK Preferences in Wireshark

For a ZigBee home automation network, you may use the default Trust Center link key

as long as it has not

been changed via commissioning. For distributed security networks (like ZigBee Light Link) use the

appropriate

global distributed security trust center link key, e.g. for uncertified products use the well-

known key D0:D1:D2:D3:D4:D5:D6:D7:D8:D9:DA:DB:DC:DD:DE:DF. For other profiles, refer to the

Notice that the label is used to identify which key has been used by

Wireshark to decode the frame. Notice that you may enter as many keys as you wish, for example the

default Trust Center link-key, the distributed security link-key and any number of pre-configured link-

keys (e.g. derived from installation codes) that you require in addition.

Figure 13: Entering a ZigBee link or network key

It is not recommended to use the confidential distributed security link key, i.e. the key used in certified devices,

unless you are doing so in a secure production facility or laboratory environment for end-product testing in

accordance with all contracts, terms and conditions your company has accepted and signed.

1 2 ... 13 14 15 16 17 18 19 20 21 22 23 ... 28 29

Brak uwag

Ubisys IEEE 802.15.4 usb stic with wireshark firmware Instrukcja Użytkownika Strona 18