Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray."— Presentation transcript:

1 The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray CS577: Advanced Computer Networks

2 Outline Abstract / Intro WEP Overview Attacks –Dictionary –Inductive –Authors’ Implementation Implementation Results “Mitigation” Angle Closing CS577: Advanced Computer Networks

3 Abstract Mitigating system flaws is hard to do right –But vendors do this all the time… Design flaws are hard to patch –Often best approach is to re-architect system… WLAN Security (WEP) –Shows the FUNDAMENTAL PREMISE that adding security after the fact is near impossible… CS577: Advanced Computer Networks

4 Introduction The authors present a case study showing: –Mitigating one flaw worsens another flaw –Overall security remains the same The authors develop an “inductive” attack against WEP: –1 st synchronous attack against WEP –Example of mitigation problem –Does not rely on knowledge of target network CS577: Advanced Computer Networks

5 Introduction The authors present a case study showing: –Mitigating one flaw worsens another flaw –Overall security remains the same The authors develop an “inductive” attack against WEP: –1 st synchronous attack against WEP –Example of mitigation problem –Does not rely on knowledge of target network CS577: Advanced Computer Networks

6 Outline Abstract / Intro WEP Overview Attacks –Dictionary –Inductive –Authors’ Implementation Implementation Results “Mitigation” Angle Closing CS577: Advanced Computer Networks

7 WEP Overview IEEE 802.11 specification calls for “reasonably strong” protection –WEP - “Wired Equivalent Privacy” - fails to deliver –Protects at the Data Link Layer –Symmetric Stream RC4 cipher Shared secret “k” Secret used to generate stream of pseudorandom bytes equal in length to target plaintext –Encryption: –Decryption: CS577: Advanced Computer Networks

8 WEP Overview CS577: Advanced Computer Networks Graphic by Petroni and Arbaugh

9 Outline Abstract / Intro WEP Overview Attacks –Dictionary –Inductive –Authors’ Implementation Implementation Results “Mitigation” Angle Closing CS577: Advanced Computer Networks

10 Dictionary Attacks Definition: Any brute-force attack in which a large table is used or generated Relevance: RC4 – each key has unique associated pseudorandom stream used for encryption & decryption Build dictionary of all streams (1 per IV) Don’t need key to participate in network! IV size → 2 24 possible key streams, WLAN MTU 2312 Bytes → ~40 GB Dictionary! CS577: Advanced Computer Networks

11 Inductive Attacks Approach: Obtain full network access without knowing the key with minimal knowledge of target HOW? Use known network protocols (redundantly encrypted data) to intelligently guess an initial number of encrypted bytes CS577: Advanced Computer Networks

12 Step 1: Guess the first byte(s): CS577: Advanced Computer Networks Table by Petroni and Arbaugh Graphic by Petroni and Arbaugh

13 Step 2: Guess the next byte: CS577: Advanced Computer Networks Graphic by Petroni and Arbaugh

14 The Author’s Attack CS577: Advanced Computer Networks Attack System: –WLAN card operating in promiscuous mode (Intersil Prism 2 chipset) –Ability to directly manipulate transmitted bytes (OpenBSD 3.1 with modified drivers) Attack Approach: –Choice between ICMP and SNAP/ARP –Choose ARP so at Layer 2, though both work

15 Outline Abstract / Intro WEP Overview Attacks –Dictionary –Inductive –Authors’ Implementation Implementation Results “Mitigation” Angle Closing CS577: Advanced Computer Networks

16 Implementation Results CS577: Advanced Computer Networks Table by Petroni and Arbaugh

17 Outline Abstract / Intro WEP Overview Attacks –Dictionary –Inductive –Authors’ Implementation Implementation Results “Mitigation” Angle Closing CS577: Advanced Computer Networks

18 “Mitigation” Angle CS577: Advanced Computer Networks Table by Petroni and Arbaugh

19 Outline Abstract / Intro WEP Overview Attacks –Dictionary –Inductive –Authors’ Implementation Implementation Results “Mitigation” Angle Closing CS577: Advanced Computer Networks

20 Closing Remarks Authors showed how to mitigate their attack –Stop forwarding packets with bad data –Detect attack activity –Packet Filtering (though effectively cripples network) –Dynamic Rekeying Neat attack all by itself Interesting example of how patching bad security rarely works Questions? CS577: Advanced Computer Networks

Download ppt "The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray."

Similar presentations

Your 802.11 Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.

Your Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.
WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:

WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
WEP Weaknesses Or “What on Earth does this Protect” Roy Werber.

WEP Weaknesses Or “What on Earth does this Protect” Roy Werber.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
Exploring timing based side channel attacks against 802.11i CCMP Suman Jana, Sneha K. Kasera University of Utah Introduction

Exploring timing based side channel attacks against i CCMP Suman Jana, Sneha K. Kasera University of Utah Introduction
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
COMP4690, HKBU1 Security of 802.11 COMP4690: Advanced Topic.

COMP4690, HKBU1 Security of COMP4690: Advanced Topic.
How To Not Make a Secure Protocol 802.11 WEP Dan Petro.

How To Not Make a Secure Protocol WEP Dan Petro.
Wireless Network Security: WEP And Beyond Heidi Parsaye Jason DeVries Roxanne Ilse Heidi Parsaye - Jason DeVries - Roxanne Ilse.

Wireless Network Security: WEP And Beyond Heidi Parsaye Jason DeVries Roxanne Ilse Heidi Parsaye - Jason DeVries - Roxanne Ilse.
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
RC4 1 RC4 RC4 2 RC4  Invented by Ron Rivest o “RC” is “Ron’s Code” or “Rivest Cipher”  A stream cipher  Generate keystream byte at a step o Efficient.

RC4 1 RC4 RC4 2 RC4  Invented by Ron Rivest o “RC” is “Ron’s Code” or “Rivest Cipher”  A stream cipher  Generate keystream byte at a step o Efficient.
Foundations of Network and Computer Security J J ohn Black Lecture #34 Dec 5 th 2007 CSCI 6268/TLEN 5831, Fall 2007.

Foundations of Network and Computer Security J J ohn Black Lecture #34 Dec 5 th 2007 CSCI 6268/TLEN 5831, Fall 2007.
IEEE 802.11 Wireless Local Area Networks (WLAN’s).

IEEE Wireless Local Area Networks (WLAN’s).
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
The Final Nail in WEP’s Coffin Andrea Bittau, Mark Handley – University College London Joshua Lackey - Microsoft CPS372 Gordon College.

The Final Nail in WEP’s Coffin Andrea Bittau, Mark Handley – University College London Joshua Lackey - Microsoft CPS372 Gordon College.
15 November 2004 1 Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

15 November Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

Similar presentations

Ads by Google