Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wireless Security: The need for WPA and 802.11i By Abuzar Amini CS 265 Section 1.

Published byPolly Hudson Modified over 8 years ago

Similar presentations

Presentation on theme: "Wireless Security: The need for WPA and 802.11i By Abuzar Amini CS 265 Section 1."— Presentation transcript:

1

2 Wireless Security: The need for WPA and 802.11i By Abuzar Amini CS 265 Section 1

3 Wireless Security Timeline WEP - Part of original 802.11 specification published in 1999. WPA - Developed to fix numerous WEP flaws. Ratified by Wi-Fi Alliance in 2003. 802.11i - More robust, permanent security standard expected to be finalized soon. Currently in 7th draft.

4 WEP Wired Equivalent Privacy Uses RC4 Stream cipher Has static 40-bit base key 64-bit per-packet key 24-bit Initialization Vector (IV) Uses Integrity Check Value (ICV) to verify integrity

5 WEP Weaknesses (IV repetition) Short 24-bit IV means RC4 key must be changed every 2 24 packets or data can be exposed via IV repetition. With repeated IV -> c1  c2 = p1  p2 Not very feasible to change WEP key after 16 million packets transmitted.

6 WEP Weaknesses (Replay Attack) Alice Bob Trudy Authorized WEP communications Eavesdrop and record Replay packets

7 WEP Weaknesses (Forgery Attack) Packet data can be forged WEP uses ICV (CRC-32) to verify integrity. Create a blank message with same number of data bytes, flip some bits and compute ICV. XOR bit-flipped message and ICV into captured message. Result - Undetected forgery. Identity can be forged Source address, Destination address not protected.

8 WEP Weaknesses (Keys) WEP uses same key for authentication and encryption. No way to manage keys. Same static key used on AP as well as all clients.

9 WPA: The solution for today Wi-Fi Protected Access (WPA) created to fix vulnerabilities of WEP while keeping the ability to run on legacy Access Points. Subset of 802.11i Standard. Two major components: TKIP and 802.1X Extensible Authentication Protocol (EAP) based authentication.

10 TKIP Temporal Key Integrity Protocol. Consists of new algorithms to wrap WEP A new Message Integrity Code (MIC) called Michael. IV sequencing to defeat replay attacks. A per-packet key mixing function to de- correlate IVs from weak keys. A re-keying mechanism to provide fresh encryption and integrity keys.

11 TKIP (Michael) Uses two 64-bit keys, one for each link direction. Unlike WEP, packet Sender Address and Destination Address are computed as part of the MIC. 8-byte MIC appended to the packet data.

12 TKIP (IV Sequencing) IV sequencing used to protect against replay attacks. Reset packet sequence number to 0 on rekey. Increment sequence number by 1 each time packet transmitted. Packets received out of sequence are dropped.

13 TKIP (Key mixing) Per-packet mixing function implemented in 2 phases: Phase 1: Combines local MAC address and temporal key. Then run through S-box to produce intermediate key. Fistel cipher used to encrypt the packet sequence number under the intermediate key, producing 128-bit per-packet key.

14 TKIP (Keys) One 128-bit encryption key Two 64-bit integrity keys Master keys assigned by Authentication Server using the 802.1X architecture

15 802.1X EAP WPA uses 802.1X as an authentication and key replacement mechanism. 802.1X specifies the following components: Supplicant – A user or a client that wants to be authenticated. Authentication server – An authentication system, such as a RADIUS server, that handles actual authentications. Authenticator – A device that acts as an intermediary between a supplicant and an authentication server. Usually, an AP.

16 802.1X EAP Messages EAP-identity request EAP Identity Response EAP Auth Request EAP Success / Optional Master Key Supplicant AuthenticatorAuth. Server Attach EAP Auth Response

17 Different forms of EAP EAP-Transport Layer Security(EAP-TLS) Authentication requires use of PKI EAP-Tunneled TLS (EAP-TTLS) Favored by some for use in 802.11i EAP-Protected EAP (PEAP) Favored by some for use in 802.11i

18 802.11i:Robust Security for Tomorrows WLANs Still uses some WPA features TKIP 802.1X Key hierarchy Key management

19 802.11i New cipher AES block cipher replaces RC4 AP hardware needs to be upgraded to support more complex AES computations. Mode of operation - AES Counter Mode Encryption with CBC-MAC (CCM).

20 AES-CCM Mode HeaderPayload MIC Authenticated Encrypted CBC-MAC used to compute MIC on header and payload. CTR mode is used to encrypt the payload and MIC.

21 802.11i (Other Features) EAP over an Ethernet LAN (EAPOL) Roaming support Allows clients to pre-authenticate with different APs, on wired or wireless LANs. Independent Base Service Set (IBSS) Allows clients to authenticate to each other, even if not in range of an AP. Password-to-key mapping

22 WLAN Security Summary

Download ppt "Wireless Security: The need for WPA and 802.11i By Abuzar Amini CS 265 Section 1."

Similar presentations

IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Understanding and Achieving Next-Generation Wireless Security Motorola, Inc James Mateicka.

Understanding and Achieving Next-Generation Wireless Security Motorola, Inc James Mateicka.
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – 802.11b  Security Mechanisms in 802.11b  Security Problems in 802.11b  Solutions for 802.11b.

無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – b  Security Mechanisms in b  Security Problems in b  Solutions for b.
Implementing Wireless LAN Security

Implementing Wireless LAN Security
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
OpenSig 2003: Panel Discussion on the Differences and Similarities of Wired vs. Wireless Security Russ Housley 9 October 2003.

OpenSig 2003: Panel Discussion on the Differences and Similarities of Wired vs. Wireless Security Russ Housley 9 October 2003.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
MITP | Master of Information Technology Program Securing Wireless LAN using Cisco-based technology Campus Crew Study Group Paul Matijevic Ed McCulloch.

MITP | Master of Information Technology Program Securing Wireless LAN using Cisco-based technology Campus Crew Study Group Paul Matijevic Ed McCulloch.
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.

DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
Temporal Key Integrity Protocol (TKIP) Presented By: Laxmi Nissanka Rao Kim Sang Soo.

Temporal Key Integrity Protocol (TKIP) Presented By: Laxmi Nissanka Rao Kim Sang Soo.
E-mail: kemal@cs.siu.edu Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE 802.11.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE
IEEE 802.11 Wireless Local Area Networks (WLAN’s).

IEEE Wireless Local Area Networks (WLAN’s).

Similar presentations

Ads by Google