Doc.: IEEE 802.11-10/0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 1 TDLS TPK Handshake Date: 2010-05-15 Authors:

Slides:



Advertisements
Similar presentations
Submission doc.: IEEE 11-12/0553r0 May 2012 Jarkko Kneckt, NokiaSlide 1 Response Criteria of Probe Request Date: Authors:
Advertisements

Doc.: IEEE /2441r2 Submission SA Teardown Protection for w Date:
Doc.: IEEE /0096r0 Submission January 2008 Slide 1 CID#103- MLME Interface for Passing Timestamps Date: Authors:
Doc.: IEEE /0018r0 Submission January 2010 Alexander Tolpin, Intel CorporationSlide 1 4 –Way Handshake Synchronization Issue Date:
Analysis and Improvements over DoS Attacks against IEEE i Standard Networks Security, Wireless Communications and Trusted Computing(NSWCTC), 2010.
Doc.: IEEE /0150r1 Submission Jan 2015 Ganesh Venkatesan (Intel Corporation)Slide 1 GCR using SYNRA for GLK Date: Authors:
Submission doc.: IEEE 11-12/279r0 March 2012 Jarkko Kneckt, NokiaSlide ai simulations Date: Authors:
Submission doc.: IEEE 11-10/0259r0 March 2013 Jarkko Kneckt (Nokia)Slide 1 CID 266 & CID 281 Date: Authors:
Doc.: IEEE /1468r0 Submission Dec 2008 Ashish Shukla, Marvell SemiconductorSlide 1 ERP Protection in IEEE s Mesh Network Date:
Doc.: IEEE /0476r3 Submission May 2004 Jesse Walker and Emily Qi, Intel CorporationSlide 1 Pre-Keying Jesse Walker and Emily Qi Intel Corporation.
Doc.: IEEE /0476r2 Submission May 2004 Jesse Walker and Emily Qi, Intel CorporationSlide 1 Pre-Keying Jesse Walker and Emily Qi Intel Corporation.
Doc.: IEEE /0897r0 SubmissionJae Seung Lee, ETRISlide 1 Active Scanning considering Operating Status of APs Date: July 2012.
Doc.: IEEE /0707r0 Submission July 2003 N. Cam-Winget, et alSlide 1 Establishing PTK liveness during re-association Nancy Cam-Winget, Cisco Systems.
Doc.: IEEE /0061r1 SubmissionJae Seung Lee, ETRISlide 1 Probe Response frame transmission interval Date:
Doc.: IEEE /2797r00 Submission Oct 2007 Jiyoung et al. Path Selection and Path Switch Mechanism Notice: This document has been prepared to assist.
Doc.: IEEE /1063r0 Submission Nov 2005 Jon Edney, NokiaSlide 1 The Lock-out Problem - an Analysis Notice: This document has been prepared to assist.
Submission doc.: IEEE 11-12/0553r4 May 2012 Jarkko Kneckt, NokiaSlide 1 Response Criteria of Probe Request Date: Authors:
SubmissionSlide 1Dwight Smith, Motorola Mobility Nov 2012doc.: IEEE 11-12/1332r0 Other Service Discovery Concepts Date: Authors:
Doc.: IEEE /0150r0 Submission May 2013 Osama Aboul-Magd (Huawei Technologies)Slide 1 GCR using SYNRA for GLK Date: Authors:
Doc.: IEEE /657r0 Submission August 2003 N. Cam-WingetSlide 1 TGi Draft 5.0 Comments Nancy Cam-Winget, Cisco Systems Inc.
Doc.: IEEE /0485r0 Submission May 2004 Jesse Walker and Emily Qi, Intel CorporationSlide 1 Management Protection Jesse Walker and Emily Qi Intel.
Doc.: IEEE /0232r0 Submission February 2009 Meiyuan Zhao, IntelSlide 1 Suggestions to Clean Up Peering Management Frames Date:
Doc.: IEEE /0247r1 Submission March 2010 Sudheer Grandhi, InterDigital Communications, LLCSlide 1 AP Connection Period in TDLS Date:
Doc.:IEEE /0313r1 Submission Robert Stacey (Intel) March 12, 2010 Slide 1 Rekeying Protocol Fix Authors: Date:
Doc.: IEEE /1426r00 Submission NameAffiliationsAddressPhone ChengYan FengZTE Corporation No.800, Middle Tianfu Avenue, Hi- tech District,
Doc.: IEEE /1468r1 Submission Jan 09 Ashish Shukla, Marvell SemiconductorSlide 1 ERP Protection in IEEE s Mesh Network Date:
Doc.: IEEE /1426r02 Submission NameAffiliationsAddressPhone ChengYan FengZTE Corporation No.800, Middle Tianfu Avenue, Hi-tech District,
Doc.: IEEE /01097r0 Submission November 2005 N. Cam-Winget, K. Sood, and J. WalkerSlide 1 EAPKIE Replay Counters and MIC Notice: This document.
Doc.: IEEE /0269r1 Submission NameAffiliationsAddressPhone ChengYan FengZTE Corporation No.800, Middle Tianfu Avenue, Hi-tech District, Chengdu,
Doc.: IEEE /0150r11 Submission July 2015 Ganesh Venkatesan (Intel Corporation)Slide 1 GCR using SYNRA for GLK Date: Authors:
Doc.: IEEE /0615r0 Submission May 2008 Naveen K. Kakani, Nokia IncSlide 1 Multicast Transmission in WLAN Date: Authors:
Doc.: IEEE /0294r2 Submission March 2012 Jonathan Segev (Intel)Slide 1 Active Scanning Reply Window Date: Authors:
Doc.: IEEE /2952r2 Submission Dec 2007 L.Chu Etc.Slide 1 Simplified DLS Action Frame Transmission in 11Z Date: Authors:
Doc.: IEEE /0048r0 SubmissionSlide 1Young Hoon Kwon, Newracom Protection using MU-RTS/CTS Date: Authors: January 2016.
Omission of Probe Request
Defense Against Multi-Channel Man-in-the-Middle (MITM)
Overview of Key Holder Security Association Teardown Mechanism
TDLS Setup Date: Authors: Mar 2008 September 2007
TDLS TPK Handshake Date: Authors: May 2010 May 2010
Defense Against Multi-Channel Man-in-the-Middle (MITM)
Multiple MAC addresses
September 2008 doc.: IEEE /1003r0 August 2010
IGTK Switch Announcement
OCT based 6 GHz AP Operation Discussion
Beacon Protection Date: Authors: July 2018 July 2018
Beacon Protection Date: Authors: May 2018 January 2018
Reducing the Probe Response transmission
Jesse Walker and Emily Qi Intel Corporation
September 2007 doc.: IEEE /2376r0 November 2007
Rekeying Protocol Fix Date: Authors: Month Year
FTM Frame Exchange Authentication
A Simplified Solution For Critical A-MPDU DoS Issues
Power Efficiency for Individually Addressed Frames Reception
Beacon Protection Date: Authors: July 2018 July 2018
Direct Stream Request Protocol (DSRP)
[Multi-RTS Proposal] Date: Authors: September 2010
Simplified DLS Action Frame Transmission in 11Z
Beacon Protection Date: Authors: May 2018 January 2018
AP Connection Period in TDLS
Cooperative AP Discovery
Use of EAPOL-Key messages
Omission of Probe Request
Defense Against Multi-Channel Man-in-the-Middle (MITM)
Defense Against Multi-Channel Man-in-the-Middle (MITM)
Power Efficiency for Individually Addressed Frames Reception
Revisiting Path Switch
Fast passive scan for FILS
Traffic Filter based Wakeup Service
Extended Usage of STKSA
Roaming mechanism for duty cycle mode
Presentation transcript:

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 1 TDLS TPK Handshake Date: Authors:

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 2 Abstract This presentation identifies two problems associated with the implementation of z TPK handshake and proposed solutions: Setup Confirm and RX data Race condition Invalid Setup Confirm (TPK message 3)

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 3 TPK Handshake 11z specifies 3-way handshake with TPK message1 in TDLS Setup Request, TPK message2 in TDLS Setup Response, TPK message3 in TDLS Setup Confirm to establish Keys for protection of frames sent over direct link [1]. There exists a possibility of race condition, and incorrect TPK handshake state.

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 4 TPK Handshake TPK MSG1 TPK MSG2 TPK MSG3 Initiator installs Keys after receiving Setup Response (TPK MSG 2) Initiator sends Setup Confirm (TPK MSG3), followed by data frames over direct link. TDLS peer receives MSG3 via AP path and by the time it receives MLME-SETKEYs it might have already received encrypted frames over direct link for which it has no RX key yet. Setup Req Setup Response Setup Confirm RX frames dropped (no Key) MLME- SETKEYs SME STA1MLME STA1APMLME STA2SME STA2 Direct Link Frames

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 5 TPK Handshake In the absence of RX Key, TDLS peer might drop received frames (e.g., TCP message, frame such as TDLS Channel Switch Request). The amount of loss depends on the time it takes to receive MLME-SETKEYS.Request primitive after receiving TPK MSG 3. Solution 1: –Delay Processing Received frame till RX Key gets installed after receiving Setup Confirm Since there is no flow control, what if sender keeps sending and RX buffers get full. Therefore, this does not sound foolproof.

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 6 TPK Handshake Solution 2: –Install Key early TDLS Peer –Install RX key after processing TPK MSG1 and before sending TPK MSG2. –If no valid Setup Confirm within a timeout, or TPK MSG2 transmission fails, delete TPKSA. TDLS initiator, –Install Key after validating Message 2 and before sending Message 3

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 7 TPK Handshake Solution 3: –Add a fourth message TDLS Setup Confirm Ack to make it similar to 4- way handshake. –TDLS Initiator would install Key after validating Message 2 and before sending Message 3. –TDLS responder would install Keys after validating message 3 and then respond with TDLS Setup Confirm Ack. –Initiator after receiving TDLS Setup Confirm Ack would resume data traffic over direct link.

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 8 Invalid TPK Message 3 As per the [1], Setup Confirm (TPK Message 3) is discarded if not valid. It’s not clear how TDLS initiator would discover this fact. There could be frame loss before it discovers that Setup Confirm has failed to establish TPKSA. Solution 1: –After receiving N consecutive individually addressed frames from the initiator with no valid RX key, TDLS responder may send TDLS Link Tear down message to Initiator to inform this fact. –But, since Initiator has a valid key it would expect Link Tear Down encrypted, which would not be the case as TDLS responder does not have a valid Key. –A TDLS link tear down frame therefore shall be sent using AP path (initiator  AP  Responder path is anyway secure) to initiator –need to change the spec to allow this (currently AP path is only using during off-channel operation) –Contents of TDLS Link Teardown message: SNonce as received in message 1, ANonce as set in FTIE by this STA as part of TPK message 2, MIC zero. Possibly new Reason code “Frame received from a STA from which this STA has no Direct Link Setup” –Initiator after receiving teardown (and validating ANonce, SNonce, etc) shall stop transmission over direct link and if required, reinitiate TDLS Setup.

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 9 Invalid TPK Message 3 Solution 2: –Same as Solution 3 for TPK key installation race condition –Inclusion of 4 th Message TDLS Setup Confirm Ack would solve this problem as well. –Initiator if failed to receive TDLS Setup Confirm Ack within a predefined timeout would destroy TPKSA.

doc.: IEEE /0560r0 Submission May 2010 Ashish Shukla, MarvellSlide 10 References 1.IEEE P802.11z /D8.0

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.