Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mobile and Wireless Communication Security By Jason Gratto.

Published byWilliam Hood Modified over 8 years ago

Similar presentations

Presentation on theme: "Mobile and Wireless Communication Security By Jason Gratto."— Presentation transcript:

1 Mobile and Wireless Communication Security By Jason Gratto

2 WEP (Wired Equivalent Privacy) Intended to provide confidentiality Key size:40 bits Key distribution: Manual Meant to protect wireless communication from eavesdropping Also meant to prevent unauthorized access to wireless network

3 Goals of WEP Access Control Data Integrity Confidentiality

4 Protocol of WEP Uses a secret key between the computer and the access point – The secret key is used to encrypt the packets – No standard for sharing the key but in practice a single key is shared between all of the computers and access points.

5 WEP - Procedure Generates a checksum Generates a keystream with a chosen IV (Initialization Vector) v with RC4 XOR between message/checksum and the keystring Transmits the v and the ciphertext

6 WEP – Procedure

7 WEP - Defenses Integrity Check (IC) – Used to ensure packet wasn’t modified in transit Initialization Vector (IV) – Used to avoid encrypting two ciphertexts with the same key stream – Used to augment the shared key and produce a different RC4 for each packet

8 WEP – Vulnerabilities ICV insecure – ICV is a algorithm for creating the checksum, based on CRC32 and can be modified to match the contents of the message. IV key reuse – Because a small IV value is used, IV values end up being reused, compromising the security. Authentication forging – Using a recovered key stream and IV the authentication can be forged.

9 WEP – Attack types Passive – Eavesdropping on wireless traffic Active – Constructing it’s own encrypted packets when plaintext is known Active from both sides – Constructing it’s own encrypted packets when only header is known by guessing. Dictionary building – Computing the key stream using a decryption table

10 Wi-Fi Protected Access (WPA) Key size: 128 bits Hash method: ICV, MICHAEL Key distribution: TKIP (Temporal Key Integral Protocol) Inclusion of EAP certification for enterprise versions of WPA

11 MICHAEL MICHAEL generates a MIC (Message Integrity Code) – 8 bits long – Placed between the data and the ICV

12 TKIP Made to address security problems with WEP Looks to client’s configuration to determine what kind of key to use Sets a unique default key for each client

13 TKIP - Defenses Implements a key mixing function that combines a secret key with an IV before performing RC4 initialization If packets are received out of order, they are rejected by the access point Implements the MICHAEL integrity check to prevent forged packets from being accepted

14 Extensible Authentication Protocol (EAP) Is a transmission method and framework for authentication protocols – Works with many other authentication protocols such as RADIUS and Kerberos Uses a variety of different transport methods

15 EAP Originally designed for wired connections – To be used in a wireless environment, the “tunneled” EAP method was created, wrapping the EAP in a stronger encrypted EAP Common transport methods – EAP-TLS (Transport Layer Security) – EAP-TTLS (Tunneled Transport Layer Security) – PEAP (Protected EAP) – LEAP (Light EAP)

16 EAP Types PEAP – Interior MSCHAPv2 inside a secure TLS tunnel EAP-TTLS – Interior EAP-MD5 inside a secure TLS tunnel LEAP – Modified version of MSCHAP – Vulnerable to dictionary attacks

17 WPA –Vulnerabilities Denial of Service – Any time forged and unauthorized data is detected, it shuts the access point down for 60 seconds Because of this it is easy to shut down access points using little network activity

18 WPA2 Updated version of WPA Uses AES encryption and allows use of RADIUS (Remote Authentication Dial In User Service) authentication protocol

19 RADIUS Protocol for communication between Network Access Server (NAS) and a remote authentication server Requires clients and servers

20 RADIUS Data needed for authenticaiton – User data IP Name or address Shared secret key – User information Username and password – Session information Speed, port, NAS ID

21 RADIUS – Database The database can be stored in a number of different ways – A text file – Password file – Netware directory The database can authenticate in a number of ways as well – Username/password – SecurID Token Card

22 RADIUS After authentication is requested, the RADIUS server either accepts or rejects the NAS based on the following – Session timers – Filters – IP Address – IDSN Session Parameters

23 RADIUS ISP User Database ISP Modem Pool User dials modem pool and establishes connection UserID: bob Password: ge55gep UserID: bob Password: ge55gep NAS-ID: 207.12.4.1 Select UserID=bob Bob password=ge55gep Timeout=3600 [other attributes] Access-Accept User-Name=bob [other attributes] Framed-Address=217.213.21.5 The Internet ISP RADIUS Server Internet PPP connection established ISP User Database ISP Modem Pool User dials modem pool and establishes connection UserID: bob Password: ge55gep UserID: bob Password: ge55gep NAS-ID: 207.12.4.1 Select UserID=bob Bob password=ge55gep Timeout=3600 [other attributes] Access-Accept User-Name=bob [other attributes] Framed-Address=217.213.21.5 The Internet ISP RADIUS Server Internet PPP connection established

24 Sources http://www.cs.fsu.edu/~yasinsac/group/slides /cubukcu.pdf http://www.cs.fsu.edu/~yasinsac/group/slides /cubukcu.pdf http://islab.oregonstate.edu/koc/ece478/05R eport/Kalina.ppt http://islab.oregonstate.edu/koc/ece478/05R eport/Kalina.ppt http://its.ndsu.edu/fileadmin/www.its.ndsu.ed u/pdfs/Wireless_EAP.pdf http://its.ndsu.edu/fileadmin/www.its.ndsu.ed u/pdfs/Wireless_EAP.pdf http://www.ceenet.org/workshops/lecture98/ri chard/2-radius/index.htm

Download ppt "Mobile and Wireless Communication Security By Jason Gratto."

Similar presentations

Security in Wireless Networks Juan Camilo Quintero D. 1041718.

Security in Wireless Networks Juan Camilo Quintero D
Wireless Security By Robert Peterson M.S. C.E. Cryptographic Protocols University of Florida College of Information Sciences & Engineering.

Wireless Security By Robert Peterson M.S. C.E. Cryptographic Protocols University of Florida College of Information Sciences & Engineering.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – 802.11b  Security Mechanisms in 802.11b  Security Problems in 802.11b  Solutions for 802.11b.

無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – b  Security Mechanisms in b  Security Problems in b  Solutions for b.
16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.

16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.
7.3 Network Security Controls 1Network Security / G.Steffen.

7.3 Network Security Controls 1Network Security / G.Steffen.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
MITP | Master of Information Technology Program Securing Wireless LAN using Cisco-based technology Campus Crew Study Group Paul Matijevic Ed McCulloch.

MITP | Master of Information Technology Program Securing Wireless LAN using Cisco-based technology Campus Crew Study Group Paul Matijevic Ed McCulloch.
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.

DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
802.1x EAP Authentication Protocols

802.1x EAP Authentication Protocols

Similar presentations

Ads by Google