7/31/2002Black Hat 2002, Las Vegas NV Advanced 802.11 Attack Michael Lynn & Robert Baird.

Slides:

Advertisements

Similar presentations

Wireless Security By Robert Peterson M.S. C.E. Cryptographic Protocols University of Florida College of Information Sciences & Engineering.

Advertisements

Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.

7/31/2002Black Hat 2002, Las Vegas NV Advanced Attack Mike Lynn & Robert Baird.

Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA1 Using Kismet to enhance the security level in enterprise.

WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:

“All your layer are belong to us” Rogue APs, DHCP/DNS Servers, and Fake Service Traps.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

1 MD5 Cracking One way hash. Used in online passwords and file verification.

16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.

Final Presentation Presented By: Gal Leibovich Liran Manor Supervisor: Hai Vortman.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WEP Weaknesses Or “What on Earth does this Protect” Roy Werber.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID

How To Not Make a Secure Protocol WEP Dan Petro.

Wired Equivalent Privacy (WEP)

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security Awareness: Applying Practical Security in Your World

Man in the Middle Paul Box Beatrice Wilds Will Lefevers.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture.

Design of Efficient and Secure Multiple Wireless Mesh Network Speaker: Hsien-Pang Tsai Teacher: Kai-Wei Ke Date: 2005/06/28.

IEEE Wireless Local Area Networks (WLAN’s).

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

Marwan Al-Namari Week 10. RTS: Ready-to-Send. CTS: Clear-to- Send. ACK: Acknowledgment.NAV: network allocation vector (channel access, expected time to.

Networks Olga Agnew Bryant Likes Daewon Seo.

Chapter 3 Application Level Security in Wireless Network IWD2243 : Zuraidy Adnan : Sept 2012.

Wireless LAN Security Yen-Cheng Chen Department of Information Management National Chi Nan University

WLAN What is WLAN? Physical vs. Wireless LAN

Mobile and Wireless Communication Security By Jason Gratto.

Wireless security & privacy Authors: M. Borsc and H. Shinde Source: IEEE International Conference on Personal Wireless Communications 2005 (ICPWC 2005),

Wireless Networking.

A History of WEP The Ups and Downs of Wireless Security.

Wireless Network Security Dr. John P. Abraham Professor UTPA.

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

Wireless Insecurity By: No’eau Kamakani Robert Whitmire.

MAANAS GODUGUNUR SHASHANK PARAB SAMPADA KARANDIKAR.

Environment => Office, Campus, Home  Impact How, not Whether A Checklist for Wireless Access Points.

1 C-DAC/Kolkata C-DAC All Rights Reserved Computer Security.

Done By : Ahmad Al-Asmar Wireless LAN Security Risks and Solutions.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Configure a Wireless Router Chapter 7.

Intercepting Mobile Communications: The Insecurity of Nikita Borisov Ian Goldberg David Wagner UC Berkeley Zero-Knowledge Sys UC Berkeley Presented.

Wireless Security Presented by: Amit Kumar Singh Instructor : Dr. T. Andrew Yang.

CWSP Guide to Wireless Security Chapter 2 Wireless LAN Vulnerabilities.

WEP AND WPA by Kunmun Garabadu. Wireless LAN Hot Spot : Hotspot is a readily available wireless connection.  Access Point : It serves as the communication.

ARP Spoofing Attacks Dr. Neminath Hubballi IIT Indore © Neminath Hubballi.

WEP Case Study Information Assurance Fall or Wi-Fi IEEE standard for wireless communication –Operates at the physical/data link layer –Operates.

Network Security7-1 Today r Reminder Ch7 HW due Wed r Finish Chapter 7 (Security) r Start Chapter 8 (Network Management)

20 November 2015 RE Meyers, Ms.Ed., CCAI CCNA Discovery Curriculum Review Networking for Home and Small Businesses Chapter 7: Wireless Technologies.

無線網路安全 WEP. Requirements of Network Security Information Security Confidentiality Integrity Availability Non-repudiation Attack defense Passive Attack.

The University of Bolton School of Business & Creative Technologies Wireless Networks - Security 1.

National Institute of Science & Technology WIRELESS LAN SECURITY Swagat Sourav [1] Wireless LAN Security Presented By SWAGAT SOURAV Roll # EE

Solving the Security Risks of WLAN Tuukka Karvonen

Wireless Security Rick Anderson Pat Demko. Wireless Medium Open medium Broadcast in every direction Anyone within range can listen in No Privacy Weak.

Wireless Security John Himmelein Erick Andrew Christian Adam Varun Bapna.

802.11b Security CSEP 590 TU Osama Mazahir. Introduction Packets are sent out into the air for anyone to receive Eavesdropping is a much larger concern.

Doc.: IEEE /230 Submission May 2001 William Arbaugh, University of MarylandSlide 1 An Inductive Chosen Plaintext Attack against WEP/WEP2 William.

WLAN Security1 Security of WLAN Máté Szalay

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

Exploits Data Communications Benjamin W. Siegel VCU Information Systems.

Confidentiality using Conventional Encryption Chapter 5.

By Billy Ripple.  Security requirements  Authentication  Integrity  Privacy  Security concerns  Security techniques  WEP  WPA/WPA2  Conclusion.

Tightening Wireless Networks By Andrew Cohen. Question Why more and more businesses aren’t converting their wired networks into wireless networks?

1. Introduction In this presentation, we will review ,802.1x and give their drawbacks, and then we will propose the use of a central manager to replace.

Module 48 (Wireless Hacking)

A Comprehensive Security Assessment of the Westminster College Unix Lab Jacob Shodd.

Lecture 29 Security in IEEE Dr. Ghalib A. Shah

Wireless Security Ian Bodley.

CompTIA Security+ Study Guide (SY0-501)

Wireless Network Security

Presentation transcript:

7/31/2002Black Hat 2002, Las Vegas NV Advanced Attack Michael Lynn & Robert Baird

7/31/2002 Black Hat 2002, Las Vegas NV What Is NOT Covered b MAC address spoofing WEP vulnerabilities WEP Key cracking techniques Radio signal amplification

7/31/2002 Black Hat 2002, Las Vegas NV What Will Be Covered Attack Scenarios – Denial of service using forged management frames – Using shared key auth. to generate IP traffic. – layer Man-In-The-Middle attack Practical Application – Fun with custom management frames

7/31/2002 Black Hat 2002, Las Vegas NV Attack Scenarios Denial of Service - Forged frames – Management frames not authenticated – Use MAC address of AP – Send de-authenticate and disassociate frames Send continuously Send to broadcast address – AP users are unable to re-associate with AP

7/31/2002 Black Hat 2002, Las Vegas NV Attack Scenarios Denial of Service – forged frames – Requirements Air-jack drivers WLAN-jack

7/31/2002 Black Hat 2002, Las Vegas NV Attack Scenarios Shared key authentication attack – Observe plain text challenge – Observe cipher text response – XOR plain text with cipher text to get key stream – XOR IP packet with key stream re-using IV – Broadcast ping

7/31/2002 Black Hat 2002, Las Vegas NV Attack Scenarios Man-In-The-Middle attack – layer insertion – Victim attack machine AP – In line for key exchanges VPN/IPSEC tunnel setup SSL connection setup SSH connection setup – Effects on wireless authentication gateways

7/31/2002 Black Hat 2002, Las Vegas NV Mitigation Strategies Wireless IDS – Air Defense VPN + strong two way Authentication RF signal shaping (antenna radiation patterns) – Helps avoid signal leakage from property A big guy with a stick

7/31/2002Black Hat 2002, Las Vegas NV Advanced Attack Robert Baird & Michael Lynn