Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wireless Security Beyond WEP. Wireless Security Privacy Authorization (access control) Data Integrity (checksum, anti-tampering)

Published byRalf Hunter Modified over 8 years ago

Similar presentations

Presentation on theme: "Wireless Security Beyond WEP. Wireless Security Privacy Authorization (access control) Data Integrity (checksum, anti-tampering)"— Presentation transcript:

1 Wireless Security Beyond WEP

2 Wireless Security Privacy Authorization (access control) Data Integrity (checksum, anti-tampering)

3 WEP RC4 stream cipher WEP key (40 or 60 bit) combined with 24-bit Initialization Vector (IV) Sender XORs stream cipher with data to encrypt IV and ciphertext sent, decoded using IV and stored WEP key

4 WEP Vulnerabilities Use of same WEP key among clients Limited keyspace for IV (16,777,215) With enough traffic, IVs are re-used Possible to collect packets with same IV and crack WEP key - then open to data capture and MITM attacks No key management - WEP key must be changed manually on each NIC

5 Attempts to secure WEP Larger WEP key length (Lucent 104/128-bit, Agere 152-bit, USR’s 256-bit) Just takes longer to retrieve WEP key VPN Can be difficult to achieve seamless routing when APs are crossed

6 Wi-Fi Alliance introduces WPA 802.1X EAP mutual authentication or PSK (Pre-Shared Key) TKIP for encryption MMIC (Michael Message Integrity Check) for data integrity

7 802.1X EAP Mutual Authentication Port-based access control Mutual authentication via authentication server

8 802.1X EAP has three elements Supplicant - client device Authentication Server - RADIUS server or similar Authenticator - intermediary between Supplicant and Authentication server (usually an AP)

9 Different types of EAP LEAP - Cisco proprietary, uses username/password to authenticate against RADIUS TLS - RFC 2716, uses X.509 certificates for authentication on both Supplicant and Authenticator TTLS - Developed by Funk Software, Authenticator uses a certificate to identify itself, Supplicant can use username/password PEAP - Authenticator uses certificate, Supplicant can use username/password

10 TKIP - Temporal Key Integrity Protocol Fixes the flaw of key reuse in WEP Comprised of three parts, guarantees clients us different keys - 128-bit temporal key, shared by clients and APs - MAC of client - 48-bit IV describes packet sequence number

11 TKIP continued Uses RC4 like WEP, so only software or firmware upgrade required Changes temporal keys every 10,000 packets

12 Michael Message Integrity Check (MMIC) Message Integrity Code (MIC) - 64-bit message calculated using “Michael” algortithm inserted in TKIP packet to detect content alteration Protects both data and header Implements a frame counter, which discourages replay attacks

13 Two modes of WPA WPA Enterprise WPA PSK (Pre-Shared Key)

14 WPA Enterprise Requires RADIUS server Uses RADIUS for both authentication and key distribution Central management

15 WPA PSK No RADIUS server required Uses shared secret Management is handled on the AP - Vulnerable to dictionary attacks - Still uses partial shared key

16 WPA Summary Requires authentication using 802.1X Keys change using TKIP Header as well as payload protected by adding MIC to ICV Frame counter to lower risk of replay attacks Still a temporary stopgap to 802.11i and/or WPA2 since it still uses RC4 and PSK uses shared key

Download ppt "Wireless Security Beyond WEP. Wireless Security Privacy Authorization (access control) Data Integrity (checksum, anti-tampering)"

Similar presentations

WLAN SECURITY TEAM NAME : Crypto_5 TEAM MEMBERS: Rajini Ananthoj Srimani Reddy Gatla Ishleen Kour Pallavi Murudkar Deepagandhi Vadivelu.

WLAN SECURITY TEAM NAME : Crypto_5 TEAM MEMBERS: Rajini Ananthoj Srimani Reddy Gatla Ishleen Kour Pallavi Murudkar Deepagandhi Vadivelu.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Understanding and Achieving Next-Generation Wireless Security Motorola, Inc James Mateicka.

Understanding and Achieving Next-Generation Wireless Security Motorola, Inc James Mateicka.
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – 802.11b  Security Mechanisms in 802.11b  Security Problems in 802.11b  Solutions for 802.11b.

無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – b  Security Mechanisms in b  Security Problems in b  Solutions for b.
16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.

16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.
Implementing Wireless LAN Security

Implementing Wireless LAN Security
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
WEP and 802.11i J.W. Pope 5/6/2004 CS 589 – Advanced Topics in Information Security.

WEP and i J.W. Pope 5/6/2004 CS 589 – Advanced Topics in Information Security.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
MITP | Master of Information Technology Program Securing Wireless LAN using Cisco-based technology Campus Crew Study Group Paul Matijevic Ed McCulloch.

MITP | Master of Information Technology Program Securing Wireless LAN using Cisco-based technology Campus Crew Study Group Paul Matijevic Ed McCulloch.
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.

DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.
Wireless Network Security: WEP And Beyond Heidi Parsaye Jason DeVries Roxanne Ilse Heidi Parsaye - Jason DeVries - Roxanne Ilse.

Wireless Network Security: WEP And Beyond Heidi Parsaye Jason DeVries Roxanne Ilse Heidi Parsaye - Jason DeVries - Roxanne Ilse.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Similar presentations

Ads by Google