Presentation is loading. Please wait.

Presentation is loading. Please wait.

Doc.: IEEE 802.11-12/0946r3 Submission August 2012 A proposal for next generation security in 802.11 built on changes in 802.11ac 23 August 2012 Slide.

Published byJonas McKenzie Modified over 8 years ago

Similar presentations

Presentation on theme: "Doc.: IEEE 802.11-12/0946r3 Submission August 2012 A proposal for next generation security in 802.11 built on changes in 802.11ac 23 August 2012 Slide."— Presentation transcript:

1 doc.: IEEE 802.11-12/0946r3 Submission August 2012 A proposal for next generation security in 802.11 built on changes in 802.11ac 23 August 2012 Slide 1 Authors: NameCompanyPhoneemail Joe SaloweyCisco+1 206 3100596jsalowey @cisco.com Stephen OrrCisco+1 408 8948756sorr@cisco.com Brian HartCisco+1 408 5253346brianh@cisco.com Andrew MylesCisco+61 418 656587amyles@cisco.com Dan HarkinsAruba+1 408 227 4500dharkins at arubanetworks dot com Salowey et al (Cisco), Harkins (Aruba)

2 doc.: IEEE 802.11-12/0946r3 Submission August 2012 LB188 contains comments requesting the inclusion of updated security options in 802.11ac Comment Proposed change 11ac does not seem to have a sufficiently rich set of security options to meet Suite-B requirements Define a sufficient security toolkit for 11ac so that 11ac can meet Suite B requirements, including any transitional measures if required Number 6198 from Brian Hart (Cisco) Salowey et al (Cisco), Harkins (Aruba) Add support for GCM-256 and Suite B Adopt the changes specified in document 11-12/0711rX, where X is any revision (currently at zero) 6513 from Dan Harkins (Aruba) Now at r1

3 doc.: IEEE 802.11-12/0946r3 Submission August 2012 It is proposed that TGac consider inclusion of next generation security features in 802.11ac in Sept Slide 3 Security mechanisms are evolving due to advances in computing & cryptographic science 802.11 is missing next generation security mechanisms that will be required in the near future 802.11ac should include new mechanisms that support next generation requirements The inclusion of features like AES-GCMP will align 802.11ac with mechanisms used by other standards The integrity of 802.11 & interoperability will be threatened unless the work is undertaken by 802.11 Two suites of mechanisms -A set of mechanisms to expedite delivery of strong security to the industry (important for transition) -A set of mechanisms to align with NSA suite B The proposed path for approval is discussion until September and consideration for inclusion into D4.0 at the Palm Springs meeting Salowey et al (Cisco), Harkins (Aruba)

4 doc.: IEEE 802.11-12/0946r3 Submission August 2012 Security mechanisms are evolving due to advances in computing & cryptographic science Security mechanisms are not static – they evolve over time due to advances in computing and cryptographic science –e.g. DES was deprecated and replaced by AES –e.g. SHA-1 will be disallowed by NIST after 2013, MD5 already is disallowed The “Suite B” profile defined by the USG NSA defines a consistent set of cryptographic algorithms to provide one of two levels of security –128-bit: SHA256 for hashing, P256 for key derivation, AES-128 for encryption –192-bit: SHA384 for hashing, P384 for key derivation, AES-256 for encryption Similar profiles are likely be demanded by non-governmental and governmental organizations in the near future –Governments, e.g. US, Canadian and other governments are all known to want a higher bar –Security orgs, e.g. NATO, military –Industry orgs, e.g. financial services & health Slide 4 Salowey et al (Cisco), Harkins (Aruba)

5 doc.: IEEE 802.11-12/0946r3 Submission August 2012 The inclusion of next generation security will align 802.11ac with mechanisms used by other standards Slide 5 TLS IPSEC Standard AES-CBC-256, AES-CBC-128 (RFC 5246) AES-GCM-256, AES-GCM-128 (RFC 5288) AES-CBC-256, AES-CBC-128 (RFC 3602) AES-GCM-256, AES-GCM-128 (RFC 4106) Algorithms IEEE 802.1AEAES-GCM-256, AES-GCM-128 Salowey et al (Cisco), Harkins (Aruba)

6 doc.: IEEE 802.11-12/0946r3 Submission August 2012 802.11ac should include new mechanisms that support next generation security requirements Slide 6 Encryption Algorithm Set AES-256-CCMP Transition MACAES-256-CMAC Hash for PRFSHA384 AES-256-GCMP Suite B alignment AES-256-GMAC SHA384 Salowey et al (Cisco), Harkins (Aruba) AES-128-CCMP IEEE 802.11-2012 AES-128-CMAC SHA256 Same mode as 802.11-2012. Can be enabled on some existing hardware. Next Generation Security for Industry There are efficiency arguments for GCMP at the highest 802.11ac rates

7 doc.: IEEE 802.11-12/0946r3 Submission August 2012 A transition to next generation requirements should support improved security on older hardware Not all hardware in existing APs or clients (802.11a/b/g/n) can support new cipher mode (GCM) requirements … … and yet there is a desire to support next generation security in even these devices It is known that some existing hardware can support AES-CCMP-256, and the standard should take advantage of this as part of a transition path Slide 7 Salowey et al (Cisco), Harkins (Aruba)

8 doc.: IEEE 802.11-12/0946r3 Submission August 2012 The integrity of 802.11 & interoperability will be threatened unless the work is done by 802.11 The 802.11 WG could decide to not undertake this work The “world will not end” because 802.11i based security will still be sufficient for many use cases However, increasingly it will not be sufficient in some use cases. In these situations there is a risk, if next generation security features are not included in 802.11ac, that: –Other organisations will attempt to define variants of the 802.11 standard to meet this need … … threating the integrity of the 802.11 standard –Some companies will define proprietary solutions … … threatening the on-going interoperability of 802.11 based systems Slide 8 Salowey et al (Cisco), Harkins (Aruba)

9 doc.: IEEE 802.11-12/0946r3 Submission August 2012 The proposed path forward is discussion until Sept & consideration for inclusion into D4.0 in Palm Springs Slide 9 D3.0 LB Brian Hart comments San Diego Socialisation of proposal Teleconferences Discussion Palm Springs Motion on inclusion We are here Overview of draft changes in 11-12-0946r0 & 11-12-711r1 A slot convenient for all interested security folk for discussion Salowey et al (Cisco), Harkins (Aruba) Revise draft based on community input for inclusion in 802.11ac

10 doc.: IEEE 802.11-12/0946r3 Submission August 2012 Q&A A BSS advertises the “Advanced Security” suite but my client HW doesn’t support this suite. What happens? –This capability is enabled by IT departments with stringent security requirements, so the only devices that support the advanced security capabilities would gain access to the BSS. –The AP’s physical box may advertise multiple BSSs with different levels of security and access. Your client HW would still have access to a lower security (perhaps guest) SSID for instance. Why doesn’t 11-12/0711r1 include support for 11r? –This is under discussion Slide 10 Salowey et al (Cisco), Harkins (Aruba)

Download ppt "Doc.: IEEE 802.11-12/0946r3 Submission August 2012 A proposal for next generation security in 802.11 built on changes in 802.11ac 23 August 2012 Slide."

Similar presentations

Doc.: IEEE 802.11-09/0413r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 A Study Group for Enhanced 802.11 Security Date: 2009-03-13 Authors:

Doc.: IEEE /0413r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 A Study Group for Enhanced Security Date: Authors:
Doc.: IEEE 802.11-09/1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: 2009-09-15 Authors:

Doc.: IEEE /1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: Authors:
Doc.: IEEE 802.11-08/0578r0 Submission 2008 May Jarkko Kneckt, NokiaSlide 1 Forwarding in mesh containing MPs in power save Date: 2008-05-12 Authors:

Doc.: IEEE /0578r0 Submission 2008 May Jarkko Kneckt, NokiaSlide 1 Forwarding in mesh containing MPs in power save Date: Authors:
Lecture 7 Overview. Advanced Encryption Standard 10, 12, 14 rounds for 128, 192, 256 bit keys – Regular Rounds (9, 11, 13) – Final Round is different.

Lecture 7 Overview. Advanced Encryption Standard 10, 12, 14 rounds for 128, 192, 256 bit keys – Regular Rounds (9, 11, 13) – Final Round is different.
Some New RSA Mechanisms for PKCS #11 Burt Kaliski, RSA Laboratories PKCS Workshop April 14, 2003.

Some New RSA Mechanisms for PKCS #11 Burt Kaliski, RSA Laboratories PKCS Workshop April 14, 2003.
Doc.: IEEE 802.11-11/0026r0 Submission January 2011 Sameer Vermani, QualcommSlide 1 VHT Supported MCS Field Date: 2011-01-17 Authors:

Doc.: IEEE /0026r0 Submission January 2011 Sameer Vermani, QualcommSlide 1 VHT Supported MCS Field Date: Authors:
Doc.: IEEE 802.11-09/770r0 Submission July 2009 Slide 1 TGs Authenticated Encryption Function Date: 2009-07 Authors: Russ Housley (Vigil Security), et.

Doc.: IEEE /770r0 Submission July 2009 Slide 1 TGs Authenticated Encryption Function Date: Authors: Russ Housley (Vigil Security), et.
Doc.: IEEE 802.11-11-0964r1 Submission July 2011 Dan Harkins, Aruba NetworksSlide 1 Prohibiting Technology Date: 2011-07-15 Authors:

Doc.: IEEE r1 Submission July 2011 Dan Harkins, Aruba NetworksSlide 1 Prohibiting Technology Date: Authors:
Submission doc.: IEEE 11-12/1253r1 November 2012 Dan Harkins, Aruba NetworksSlide 1 Why Use SIV for 11ai? Date: 2012-10-30 Authors:

Submission doc.: IEEE 11-12/1253r1 November 2012 Dan Harkins, Aruba NetworksSlide 1 Why Use SIV for 11ai? Date: Authors:
Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 12

Cryptography and Network Security Chapter 12
Cryptography and Network Security (CS435) Part Ten (Hash and MAC algorithms)

Cryptography and Network Security (CS435) Part Ten (Hash and MAC algorithms)
Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography1 CPSC 3730 Cryptography Chapter 11, 12 Message Authentication and Hash Functions.

Cryptography1 CPSC 3730 Cryptography Chapter 11, 12 Message Authentication and Hash Functions.
Michal Rapco 05, 2005 Security issues in Wireless LANs.

Michal Rapco 05, 2005 Security issues in Wireless LANs.
Behzad Akbari Spring 2012 (These slides are based on lecture slides by Lawrie Brown)

Behzad Akbari Spring 2012 (These slides are based on lecture slides by Lawrie Brown)
Doc.: IEEE 802.11-11/1341r0 Submission September 2011 Andrew Myles, CiscoSlide 1 JTC1 SC September 2011 - Closing Report 22 Sept 2011 Authors: Meeting.

Doc.: IEEE /1341r0 Submission September 2011 Andrew Myles, CiscoSlide 1 JTC1 SC September Closing Report 22 Sept 2011 Authors: Meeting.
Doc.: IEEE 802.11-09/0580r0 Submission May 09 Myles et al (Cisco)Slide 1 Discussion on the proposal to start a new Security SG in 802.11 WG.

Doc.: IEEE /0580r0 Submission May 09 Myles et al (Cisco)Slide 1 Discussion on the proposal to start a new Security SG in WG.
WEP Protocol Weaknesses and Vulnerabilities

WEP Protocol Weaknesses and Vulnerabilities
RADIUS Crypto-Agility Requirements November 18, 2008 David B. Nelson IETF 73 Minneapolis.

RADIUS Crypto-Agility Requirements November 18, 2008 David B. Nelson IETF 73 Minneapolis.

Similar presentations

Ads by Google