Presentation is loading. Please wait.

Presentation is loading. Please wait.

WLANs & Security Standards (802.11) 802.11b - up to 11 Mbps, several hundred feet 802.11g - up to 54 Mbps, backward compatible, same frequency 802.11a.

Published byEthan Wilcox Modified over 8 years ago

Similar presentations

Presentation on theme: "WLANs & Security Standards (802.11) 802.11b - up to 11 Mbps, several hundred feet 802.11g - up to 54 Mbps, backward compatible, same frequency 802.11a."— Presentation transcript:

1 WLANs & Security Standards (802.11) 802.11b - up to 11 Mbps, several hundred feet 802.11g - up to 54 Mbps, backward compatible, same frequency 802.11a - up to 54 Mbps, emerging standard bluetooth - 1 Mbps Why wireless? Security Issues - to be continued... Legal & Social Issues - who owns the bandwidth? “Wireless local area networking has taken the world by storm. As is often the case, proper security was not built in at the beginning, and the act of retrofitting it has not been without difficulty” -- Aviel Rubin, Technical Director of the Information Security Institute, Johns Hopkins University “Wireless local area networking has taken the world by storm. As is often the case, proper security was not built in at the beginning, and the act of retrofitting it has not been without difficulty” -- Aviel Rubin, Technical Director of the Information Security Institute, Johns Hopkins University

2 802.11 Crash Course What does the AP do? Station (radio) communication - protocols rely upon media access control (MAC) addresses Access Point Station network Where are the vulnerabilities? - packets are called MPDUs these include a frame sequence number and CRC-32 - packets are called MPDUs these include a frame sequence number and CRC-32

3 802.11 Security - optional - based on challenge and response protocol Wired Equivalent Privacy (WEP)

4 Challenge and Response Exchange Premise: verify the correctness of a password without sending it Given: - two systems (client & server) that share a symmetric key - a server that “knows” the password Given: - two systems (client & server) that share a symmetric key - a server that “knows” the password 1.. client requests password from user Note: Many systems use this protocol - e.g. Windows Web site authentication Note: Many systems use this protocol - e.g. Windows Web site authentication client system server system 2.. client sends random block of data (challenge) to server 3.. server uses password to encrypt challenge 4.. server sends encrypted data (response) 5.. client uses user-supplied password to encrypt the challenge 6.. the user’s password is correct iff the encrypted challenge identical to the response

5 802.11 Security - optional - based on challenge and response protocol - uses RC4 (symmetric) algorithm - uses 24-bit nonce (challenge) per packet (called initialization vector (IV) Wired Equivalent Privacy (WEP) - note that WEP does not specify any way to obtain shared keys

6 802.11 Security Problems - identity of a package is based upon the client MAC address - open source drivers typically permit user to alter MAC addresses 1) relies upon an access control list in the AP - these are stored by MAC address 1) relies upon an access control list in the AP - these are stored by MAC address Identity 2) “closed network” - use proprietary mechanism based upon a shared “secret” string that is broadcast in cleartext within management frames. 2) “closed network” - use proprietary mechanism based upon a shared “secret” string that is broadcast in cleartext within management frames. Access Control (two alternatives) Authentication (two alternatives) 1) open system - AP permits everyone to authenticate 2) challenge & response between station and AP 2001 - RC4 is found to be vulnerable to attack given millions of cleartext - ciphertext pairs 2001 - RC4 is found to be vulnerable to attack given millions of cleartext - ciphertext pairs The RC4 attack on WEP is automated with publicly released tools.

7 Current 802.11 “Solutions” 1) place WLAN outside firewalls 2) use virtual private networks (VPN) Note that VPNs work with IP-based protocols, but WLANs rely upon MAC-based protocol. Note that VPNs work with IP-based protocols, but WLANs rely upon MAC-based protocol.

8 Future 802.11 Standards (in progress) - will arrive in the form of firmware & driver patched (when released) - message integrity code (MIC) included to eliminate forgeries - uses a 48-bit IV, instead of 24 bits used by WEP Temporary Key Integrity Protocol (TKIP) CCMP - packet sequencing rules changed to prohibit replay attacks - a per packet key mixing function used to prevent key cracking - TKIP is a patch for WEP - uses AES, instead of RC4 - uses larger MIC than TKIP - intended as eventual replacement for TKIP

Download ppt "WLANs & Security Standards (802.11) 802.11b - up to 11 Mbps, several hundred feet 802.11g - up to 54 Mbps, backward compatible, same frequency 802.11a."

Similar presentations

IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Your 802.11 Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.

Your Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – 802.11b  Security Mechanisms in 802.11b  Security Problems in 802.11b  Solutions for 802.11b.

無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – b  Security Mechanisms in b  Security Problems in b  Solutions for b.
16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.

16-1 Last time Internet Application Security and Privacy Authentication Security controls using cryptography Link-layer security: WEP.
WEP and 802.11i J.W. Pope 5/6/2004 CS 589 – Advanced Topics in Information Security.

WEP and i J.W. Pope 5/6/2004 CS 589 – Advanced Topics in Information Security.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
How To Not Make a Secure Protocol 802.11 WEP Dan Petro.

How To Not Make a Secure Protocol WEP Dan Petro.
DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.

DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
E-mail: kemal@cs.siu.edu Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE 802.11.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE
IEEE 802.11 Wireless Local Area Networks (WLAN’s).

IEEE Wireless Local Area Networks (WLAN’s).
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.
15 November 2004 1 Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

15 November Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

Similar presentations

Ads by Google