Presentation is loading. Please wait.

Presentation is loading. Please wait.

MIS 5212.001 Week 10 Site:

Published byCheyenne Shuttleworth Modified over 9 years ago

Similar presentations

Presentation on theme: "MIS 5212.001 Week 10 Site:"— Presentation transcript:

1 MIS 5212.001 Week 10 Site: http://community.mis.temple.edu/mis5212sec001s15/ http://community.mis.temple.edu/mis5212sec001s15/

2  Test 2  In the news  Introduction to Wireless Security  Next Week 2MIS 5212.001

3  Submitted  http://www.darkreading.com/attacks- breaches/the-bot-threat-for-the-rest-of-us- application-layer-attacks-/a/d-id/1319510? http://www.darkreading.com/attacks- breaches/the-bot-threat-for-the-rest-of-us- application-layer-attacks-/a/d-id/1319510  http://www.digitaltrends.com/computing/windo ws-10-may-lock-out-other-oses/ http://www.digitaltrends.com/computing/windo ws-10-may-lock-out-other-oses/  http://www.darkreading.com/will-poseidon- preempt-blackpos/d/d-id/1319585 http://www.darkreading.com/will-poseidon- preempt-blackpos/d/d-id/1319585  http://www.theregister.co.uk/2015/03/25/blank/ http://www.theregister.co.uk/2015/03/25/blank/  http://www.darkreading.com/perimeter/when- ddos-isnt-all-about-massive-disruption/d/d- id/1319581 http://www.darkreading.com/perimeter/when- ddos-isnt-all-about-massive-disruption/d/d- id/1319581 MIS 5212.0013

4  What I noted  http://www.theregister.co.uk/2015/03/25/android _third_party_patch/ http://www.theregister.co.uk/2015/03/25/android _third_party_patch/  http://www.theregister.co.uk/2015/03/24/google_ ssl_cnnic/ http://www.theregister.co.uk/2015/03/24/google_ ssl_cnnic/  http://www.theregister.co.uk/2015/03/24/sap_bla ckhat_talk_nixed_medical_app_vulns/ http://www.theregister.co.uk/2015/03/24/sap_bla ckhat_talk_nixed_medical_app_vulns/  http://www.theregister.co.uk/2015/03/24/wind_t urbine_blown_away_by_csrf_vulnerability/ http://www.theregister.co.uk/2015/03/24/wind_t urbine_blown_away_by_csrf_vulnerability/  http://krebsonsecurity.com/2015/03/kreditech- investigates-insider-breach/ http://krebsonsecurity.com/2015/03/kreditech- investigates-insider-breach/ MIS 5212.0014

5  First, a small bit of trivia:  Who invented the technology we now think of as WiFi? MIS 5212.0015

6  Source: http://www.pixmule.com/hedy- lamarr/ MIS 5212.0016 The Actress Hedy Lamar

7  Wireless is different  Physical security is no longer releavant  Access from outside perimeter  Users connecting to “other” networks  Users and Networks are vulnerable even when not in use MIS 5212.0017

8  Attack tools are cheap  Hardware is close to zero  Software is zero  Segregation doesn’t work  Even with “guest” networks, there still on your wires and can still cause you issues  Falacy of “We don’t have any wireless”  No, you just don’t know about the wireless you have MIS 5212.0018

9  Encryption doesn’t protect you, at least not completely  Authentication doesn’t protect you, at least not completely  Firewalls? Really, we’re going to go their?  Why would anybody attack us? MIS 5212.0019

10  Signal required to use wireless access means you need to be relatively close  Signal required to “sniff” traffic means attacker could be miles away with the right conditions MIS 5212.00110 Source: http://www.engadget.com/2007/06/19/venezue lans-set-new-wifi-distance-record-237-miles/ http://www.engadget.com/2007/06/19/venezue lans-set-new-wifi-distance-record-237-miles/

11  Wireless networking is a shared segment  Think “Hub”, not “Switch”  Sniffing is passive  No access required  No forensic evidence attacker was there  Only need some level of physical proximity  So, you would need to be here, to be safe. Maybe! MIS 5212.00111 Source: http://www.darkgovernment.com/news/wp- content/uploads/2009/04/area-51-satellite- image.jpg http://www.darkgovernment.com/news/wp- content/uploads/2009/04/area-51-satellite- image.jpg

12  RF Jamming  Expensive  Traceable  802.11 attacks  Cheap (Free?)  Can look like regular traffic  Effective, and hard to locate MIS 5212.00112

13  Long history of problems  WEP  LEAP  Bluetooth authentication  Preferred networks broadcast  Management frames cannot be encrypted  Easily capture  Geo Location MIS 5212.00113

14  Multiple players  FCC – Federal Comunications Commision  IEEE – Institute of Electrical and Electronics Engineers  IETF – Internet Engineering Task Force  WiFi Alliance MIS 5212.00114

15  Government Regulatory Body  Sets output power limits  Investigates interference cases  Requires acceptance testing of new products prior to going on sale  Covers all of US including territories MIS 5212.00115

16  Develops the detailed “specifications” for layer 1 and 2  PHY  MAC  Complies with FCC and other country regulatory bodies  Membership made up of vendore, manufactures, etc… MIS 5212.00116

17  Similar makeup to IEEE  Responsible for layer 3 and above  Standards are published as RFCs MIS 5212.00117

18  Trade Organization  Focused on interoperability  In early days work out pre-specification requirements due to vendor concerns over time required by IEEE and IETF MIS 5212.00118

19  Extensible Authentication Protocol  Defines framework to authenticate users to the network (Not limited to Wireless)  Works with IEEE 802.1x  IETF provides extremely detailed information  http://tools.ietf.org/html/rfc3748 http://tools.ietf.org/html/rfc3748 MIS 5212.00119

20  The replacement for WEP  Provided for enhanced security  Introduces TKIP and CCMP  TKIP – Temporal Key Interchange Protocol  CCMP - Counter Mode Cipher Block Chaining Message Authentication Code Protocol, Counter Mode CBC-MAC Protocol or simply CCMP  Later rolled in to 802.11-2007 MIS 5212.00120

21  Definitions  “dB” – Decibels  SSID – Service Set Identifier (Name Advertised)  BSSID – Basic Service Set Identifier (Think MAC Address)  EAP Extensible Authentication Protocol  EAPOL – EAP over LAN MIS 5212.00121

22  Basic access mechanism  Fragmentation support  Reliable data delivery  Network separation on same frequency (BSSID)  Mobility between BSSs (Roaming)  Power Management MIS 5212.00122

23  Not just Access Points  Peer to Peer (Ad-Hoc)  Point to Point (Typically proprietary to bridge locations where cabling is not feasible, also known as Wireless Distribution Networks)  Mesh (Think massive ad-hoc) MIS 5212.00123

24  IEEE Specification for network authentication  Originally designed for wired networks  Used for NAC (Network Acces Control)  Requires  Supplicant (End point agent)  Authenticator (Typically a 802.1x capable switch)  Authentication Server (LDAP, AD, etc…) MIS 5212.00124

25  802.11-2007 defines MAC layer  Three types of frames  Management (Beacon, Probe, Authentication)  Data  Control (Confirmation of packet reception)  Defines addressing and features  Designed to accommodate roaming, power management MIS 5212.00125

26  In the news  More wireless  Kismet  More about WEP  Intro to AirCrack MIS 5212.00126

27 ? MIS 5212.00127

Download ppt "MIS 5212.001 Week 10 Site:"

Similar presentations

SECURING WIRELESS LANS PRESENTED BY VICTOR C. NWALA CS555 Department of Computer Science Old Dominion University.

SECURING WIRELESS LANS PRESENTED BY VICTOR C. NWALA CS555 Department of Computer Science Old Dominion University.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Chapter - 11 CWNA Certified Wireless Network Administrator Introduction to Wireless LANs.

Chapter - 11 CWNA Certified Wireless Network Administrator Introduction to Wireless LANs.
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
Wireless Networks: Signaling and Security William Tucker CEN 4516: Computer Networks FGCU: Fort Myers, FL: 09/05.

Wireless Networks: Signaling and Security William Tucker CEN 4516: Computer Networks FGCU: Fort Myers, FL: 09/05.
Security+ Guide to Network Security Fundamentals, Third Edition

Security+ Guide to Network Security Fundamentals, Third Edition
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
E-mail: kemal@cs.siu.edu Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE 802.11.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
WPA2 By Winway Pang. Overview  What is WPA2?  Wi-Fi Protected Access 2  Introduced September 2004  Two Versions  Enterprise – Server Authentication.

WPA2 By Winway Pang. Overview  What is WPA2?  Wi-Fi Protected Access 2  Introduced September 2004  Two Versions  Enterprise – Server Authentication.
Wi-Fi the 802.11 Standard and Security. What is Wi-Fi? Short for wireless fidelity. It is a wireless technology that uses radio frequency to transmit.

Wi-Fi the Standard and Security. What is Wi-Fi? Short for wireless fidelity. It is a wireless technology that uses radio frequency to transmit.
Marwan Al-Namari Week 10. RTS: Ready-to-Send. CTS: Clear-to- Send. ACK: Acknowledgment.NAV: network allocation vector (channel access, expected time to.

Marwan Al-Namari Week 10. RTS: Ready-to-Send. CTS: Clear-to- Send. ACK: Acknowledgment.NAV: network allocation vector (channel access, expected time to.
By Alvin Tse.  FCC – Federal Communications Commission   IETF – Internet Engineering Task Force   IEEE –

By Alvin Tse.  FCC – Federal Communications Commission   IETF – Internet Engineering Task Force   IEEE –
Wireless Security Issues David E. Hudak, Ph.D. Senior Software Architect Karlnet, Inc.

Wireless Security Issues David E. Hudak, Ph.D. Senior Software Architect Karlnet, Inc.
Demonstration of Wireless Insecurities Presented by: Jason Wylie, CISM, CISSP.

Demonstration of Wireless Insecurities Presented by: Jason Wylie, CISM, CISSP.
MIS 5212.001 Week 11 Site:

MIS Week 11 Site:

Similar presentations

Ads by Google