Presentation is loading. Please wait.

Presentation is loading. Please wait.

Your 802.11 Wireless Network has No Clothes* William A. Arbaugh, Narendar Shankar Y.C. Justin Wan University of Maryland Presentation by Eddy Purnomo,

Published bySimon Porter Modified over 8 years ago

Similar presentations

Presentation on theme: "Your 802.11 Wireless Network has No Clothes* William A. Arbaugh, Narendar Shankar Y.C. Justin Wan University of Maryland Presentation by Eddy Purnomo,"— Presentation transcript:

1 Your 802.11 Wireless Network has No Clothes* William A. Arbaugh, Narendar Shankar Y.C. Justin Wan University of Maryland Presentation by Eddy Purnomo, email: epur008@ec.auckland.ac.nzepur008@ec.auckland.ac.nz

2 Outline  Introduction  overview of the 802.11  802.11 Standard Security Mechanisms  Shared Key Authentication Flaw  Conclusion  Question

3 Introduction  802.11 standard provides only limited support for confidentially.  802.11 has many security issues such as key management and robust authentication mechanism  Deployment of a wireless network opens a “back door” into the internal network.  Use of encryption prevents an adversary from gaining immediate access, but the weaknesses found in WEP will provides such access.

4 802.11 wireless standard Ad-hoc network Infrastructure network Independent Basic Service Set (IBSS)Basic Service Set (BSS)

5 802.11 wireless standard(cont)  wireless clients and access points must establish a relationship, or an association  Only after an association is established can the two wireless stations exchange data.  The association process is a two step process involving – 1. Unauthenticated and unassociated, – 2. Authenticated and unassociated, and – 3. Authenticated and associated  Transition between the states, the communicating parties exchange messages called management frames.

6 802.11 Standard Security Mechanisms  Wired Equivalent Privacy protocol(WEP) – provide confidentiality for network traffic using the wireless protocol.  Open System Authentication – Authenticates anyone who requests authentication  Access Control Lists – Each access point can limit the clients of the network to those using a listed MAC address.  Key Management – window of four keys – key mappings table

7 Shared key Authentication 1. Share key 3. Challenge text 2. Authenticate request Authentication request management frame Authentication management frame WEP pseudo-random number generator + Shared secret & random initialization vector(IV) 4. Challenge text copy into management frame Encrypted with WEP using ‘shared secret’ And new IV 5. Encrypted management frame 6. Decrypts and And verify. Match Challenge text OK!

8 Shared Key Authentication Flaw  Fixed structure protocol  By capturing the 2 nd & 3 rd management message: Authentication management frame Encrypted management frame  Attacker can derive pseudo-random stream and use it to authenticate.

9 Conclusion  These paper demonstrates serious flaws in the security mechanisms used by the vast majority of access points supporting the IEEE 802.11 wireless standard  ALL of the deployed 802.11 wireless networks are at risk.  Question: Are there any such thing as a perfect security in wireless communication?

Download ppt "Your 802.11 Wireless Network has No Clothes* William A. Arbaugh, Narendar Shankar Y.C. Justin Wan University of Maryland Presentation by Eddy Purnomo,"

Similar presentations

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
Your 802.11 Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.

Your Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.
Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.

Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
WEP and 802.11i J.W. Pope 5/6/2004 CS 589 – Advanced Topics in Information Security.

WEP and i J.W. Pope 5/6/2004 CS 589 – Advanced Topics in Information Security.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
COMP4690, HKBU1 Security of 802.11 COMP4690: Advanced Topic.

COMP4690, HKBU1 Security of COMP4690: Advanced Topic.
The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray.

The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray.
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
Wireless Network Security Issues By Advait Kothare SJSU CS265 Fall 2004.

Wireless Network Security Issues By Advait Kothare SJSU CS265 Fall 2004.
An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture.
IEEE 802.11 Wireless Local Area Networks (WLAN’s).

IEEE Wireless Local Area Networks (WLAN’s).
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

Similar presentations

Ads by Google