Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security and Wireless LANs

Published byBarnaby Harrington Modified over 6 years ago

Similar presentations

Presentation on theme: "Security and Wireless LANs"— Presentation transcript:

1 Security and Wireless LANs
Or Fun and Profit With Your Neighbor’s Bandwidth Chris Murphy MIT Information Systems

2 The Problem Wireless LANs broadcast your network connections
Radio doesn’t care about firewalls Data can be captured without physical access Network resources can be hijacked

3

4 802.11 Protocol Family 802.11 – 2.4Ghz, 2Mbit specification
802.11a – 5Ghz, 54Mbit specification 802.11b – 2.4Ghz, 11Mbit specification Currently the predominant, available technology 802.11d – regulatory issues 802.11e – addresses QoS 802.11f – inter-access-point protocols 802.11g – 2.4Ghz, ~20Mbit specification 802.11h – frequency allocation 802.11i - security

5 The Solution? Access Control Data Encryption
By MAC addresses By network names (SSID) Data Encryption WEP (Wired Equivalent Privacy) Can also be used for access control All these schemes have limits and flaws

6 MAC Address Access Control
Access Points have a list of allowed MAC addresses Often stored in each Access Point Limited to about 500 addresses Some products use a server-based list, using systems like RADIUS Easily defeated by sniffing for an allowed address

7 SSID Access Control Normally, the SSID is broadcast in beacon packets
A “closed” network does not include the SSID in beacons NOT part of the standard Has a fatal flaw…..

8 Normal open network

9 “Closed” network (SSID “PEAKABOO”)

10 Now a client wants to join the network…..

11 …and an access point responds.

12 Data Encryption WEP – Wired Equivalent Privacy
40 bit RC4, 128 bit optional Most APs support up to 4 keys How do you manage keys in a large organization? This assumes all users are “good guys”

13 Data Encryption A group at Berkeley has published some flaws in WEP
Outlines a number of design flaws in WEP A number of (currently theoretical) attacks are outlined in the referenced document A response from the IEEE group chair is available at

14 LANs – Standards – 802.11 Security
Scott Fluhrer, Itsik Mantin, and Adi Shamir have identified weaknesses in the RC4 algorithm used by WEP Attack only requires cyphertext On the order of 100Mb – 1Gb needed Compute time scales linearly with key size The paper is available at An implementation of this attack is available at

15 Spread Spectrum as Security?
Spread Spectrum technology, while touted as difficult to intercept, offers little here as NICs are preprogrammed with the spreading sequences and can talk to each other out of the box.

16 So What Are Our Options? While flawed, the described methods can provide some protection from casual abuse Treat wireless clients as remote clients Place APs outside firewalls Use VPNs to access internal network And as always, use secure protocols

17 Future Wireless Security
802.11i should provide a standards-based path for actual user authentication, and negotiation of user and session specific encryption keys This group is working in conjunction with the 802.1x group, relating to per-port network access control

Download ppt "Security and Wireless LANs"

Similar presentations

Security in Wireless Networks Juan Camilo Quintero D. 1041718.

Security in Wireless Networks Juan Camilo Quintero D
WiFi VS Cellular “Bringing Secure Payment to the Point Of Service”

WiFi VS Cellular “Bringing Secure Payment to the Point Of Service”
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
Security flaws of the WEP-Protocol by Bastian Sopora, Seminar Computer Security 2006.

Security flaws of the WEP-Protocol by Bastian Sopora, Seminar Computer Security 2006.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
How To Not Make a Secure Protocol 802.11 WEP Dan Petro.

How To Not Make a Secure Protocol WEP Dan Petro.
Wireless Network Security: WEP And Beyond Heidi Parsaye Jason DeVries Roxanne Ilse Heidi Parsaye - Jason DeVries - Roxanne Ilse.

Wireless Network Security: WEP And Beyond Heidi Parsaye Jason DeVries Roxanne Ilse Heidi Parsaye - Jason DeVries - Roxanne Ilse.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
802.11b Vulnerabilities, Ad-Hoc Mode, RF Jamming and Receiver Design Ritesh H Shukla Graduate Student ECE Dept Under the Guidance of Prof. William R Michalson.

802.11b Vulnerabilities, Ad-Hoc Mode, RF Jamming and Receiver Design Ritesh H Shukla Graduate Student ECE Dept Under the Guidance of Prof. William R Michalson.
Wireless Insecurity.

Wireless Insecurity.
Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.

Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.
Security and Wireless LANs Or Fun and Profit With Your Neighbor’s Bandwidth Chris Murphy MIT Information Systems.

Security and Wireless LANs Or Fun and Profit With Your Neighbor’s Bandwidth Chris Murphy MIT Information Systems.
IE 419/519 Wireless Networks Lecture Notes #4 IEEE 802.11 Wireless LAN Standard Part #2.

IE 419/519 Wireless Networks Lecture Notes #4 IEEE Wireless LAN Standard Part #2.

Similar presentations

Ads by Google