Wireless Network Security Issues By Advait Kothare SJSU CS265 Fall 2004.

Slides:

Advertisements

Similar presentations

Off-the-Record Communication, or, Why Not To Use PGP

Advertisements

CS470, A.SelcukStream Ciphers1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005

Your Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.

WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:

1 MD5 Cracking One way hash. Used in online passwords and file verification.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.

Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID

Wired Equivalent Privacy (WEP)

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE

IEEE Wireless Local Area Networks (WLAN’s).

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

15 November Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

Security – Wired Equivalent Privacy (WEP) By Shruthi B Krishnan.

WLAN security S Wireless Personal, Local, Metropolitan, and Wide Area Networks1 Contents WEP (Wired Equivalent Privacy) No key management Authentication.

Wireless Security Issues David E. Hudak, Ph.D. Senior Software Architect Karlnet, Inc.

WLAN What is WLAN? Physical vs. Wireless LAN

Wireless security & privacy Authors: M. Borsc and H. Shinde Source: IEEE International Conference on Personal Wireless Communications 2005 (ICPWC 2005),

CSC-682 Advanced Computer Security

CWNA Guide to Wireless LANs, Second Edition Chapter Eight Wireless LAN Security and Vulnerabilities.

A History of WEP The Ups and Downs of Wireless Security.

Wireless Security Beyond WEP. Wireless Security Privacy Authorization (access control) Data Integrity (checksum, anti-tampering)

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

Lesson 20-Wireless Security. Overview Introduction to wireless networks. Understanding current wireless technology. Understanding wireless security issues.

Wireless Insecurity By: No’eau Kamakani Robert Whitmire.

Done By : Ahmad Al-Asmar Wireless LAN Security Risks and Solutions.

WLAN Security Issues, technologies, and alternative solutions Hosam M. Badreldin Western Illinois University December 2011 Hosam Badreldin – Fall 2011.

Intercepting Mobile Communications: The Insecurity of Nikita Borisov Ian Goldberg David Wagner UC Berkeley Zero-Knowledge Sys UC Berkeley Presented.

Wireless Security Presented by: Amit Kumar Singh Instructor : Dr. T. Andrew Yang.

NSRI1 Security of Wireless LAN ’ Seongtaek Chee (NSRI)

CWSP Guide to Wireless Security Chapter 2 Wireless LAN Vulnerabilities.

WEP Protocol Weaknesses and Vulnerabilities

WEP AND WPA by Kunmun Garabadu. Wireless LAN Hot Spot : Hotspot is a readily available wireless connection.  Access Point : It serves as the communication.

Wireless LAN Security. Security Basics Three basic tools – Hash function. SHA-1, SHA-2, MD5… – Block Cipher. AES, RC4,… – Public key / Private key. RSA.

CWNA Guide to Wireless LANs, Second Edition Chapter Eight Wireless LAN Security and Vulnerabilities.

Link-Layer Protection in i WLANs With Dummy Authentication Will Mooney, Robin Jha.

無線網路安全 WEP. Requirements of Network Security Information Security Confidentiality Integrity Availability Non-repudiation Attack defense Passive Attack.

WLANs & Security Standards (802.11) b - up to 11 Mbps, several hundred feet g - up to 54 Mbps, backward compatible, same frequency a.

WEP – Wireless Encryption Protocol A. Gabriel W. Daleson CS 610 – Advanced Security Portland State University.

National Institute of Science & Technology WIRELESS LAN SECURITY Swagat Sourav [1] Wireless LAN Security Presented By SWAGAT SOURAV Roll # EE

Encryption Protocols used in Wireless Networks Derrick Grooms.

Wireless Security: The need for WPA and i By Abuzar Amini CS 265 Section 1.

Wireless Security Rick Anderson Pat Demko. Wireless Medium Open medium Broadcast in every direction Anyone within range can listen in No Privacy Weak.

Your Wireless Network has No Clothes* William A. Arbaugh, Narendar Shankar Y.C. Justin Wan University of Maryland Presentation by Eddy Purnomo,

How To Not Make a Secure Protocol WEP Dan Petro.

Authentication has three means of authentication Verifies user has permission to access network 1.Open authentication : Each WLAN client can be.

802.11b Security CSEP 590 TU Osama Mazahir. Introduction Packets are sent out into the air for anyone to receive Eavesdropping is a much larger concern.

Giuseppe Bianchi Warm-up example WEP. Giuseppe Bianchi WEP lessons  Good cipher is far from being enough  You must make good USAGE of cipher.

IEEE Security Specifically WEP, WPA, and WPA2 Brett Boge, Presenter CS 450/650 University of Nevada, Reno.

Wired Equivalent Privacy (WEP) Chris Overcash. Contents What is WEP? What is WEP? How is it implemented? How is it implemented? Why is it insecure? Why.

WLAN Security1 Security of WLAN Máté Szalay

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

Wireless LAN Security Daniel Reichle Seminar Security Protocols and Applications SS2003.

หัวข้อบรรยาย Stream cipher RC4 WEP (in)security LFSR CSS (in)security.

Wired Equivalent Privacy. INTRODUCTION Wired Equivalent Privacy (WEP) is a security algorithm for IEEE wireless networks. Introduced as part of.

Module 48 (Wireless Hacking)

Wireless Protocols WEP, WPA & WPA2.

WEP & WPA Mandy Kershishnik.

ANALYSIS OF WIRED EQUIVALENT PRIVACY

IEEE i Dohwan Kim.

CSE 4905 WiFi Security I WEP (Wired Equivalent Privacy)

Inaugural meeting (for Hasheem: that means ‘the first meeting’

Presentation transcript:

Wireless Network Security Issues By Advait Kothare SJSU CS265 Fall 2004

Introduction A presentation of the paper “Your Wireless Network has No Clothes” by – William A. Arbaugh,Narendra Shankar,Y.C. Justin Wan at Univ. Maryland at College Park Explosive growth in wireless networks. But many security issues initially left open by standards committee. Result : weak or non-existent security solutions for current deployments.

Introduction (Cont.) In the Wired World emphasis on protection from external compromise. (Firewalls) Wireless Networks provide an access point for any adversary beyond physical controls. A “back door” is opened for an attacker, which can be exploited. (Parking lot attacks) And a simple eavesdropping attack against shared key authentication.

Standard Security Mechanisms Wired Equivalent Privacy protocol (WEP) – For confidentiality of network traffic – Demostrated to be vulnerable Open Systems Authentication – Authenticates anyone who requests authentication – Management frames sent in clear even with WEP Shared Key Authentication – Uses a standard challenge and response protocol

Shared Key Authentication InitiatorResponder Authentication Request Seq # 1 Authentication Challenge Seq # 2 Authentication Response Seq # 3 Authentication Result Seq # 4

Shared Key Authentication (Cont.) Initator sends an authentication req. management frame Responder replies by sending mgmt. Frame with 128 octets of challenge text. – Text Generated using WEP PRNG with shared secret and a random initialization vector (IV) Initiator copies the text into a new frame, encrypts with WEP using shared secret and a new IV Responder verifies text and 32-bit CRC (ICV)

Weaknesses in Shared Key Auth. Passive attack, eavesdropping 1 leg of auth. Works because fixed structure of protocol Random challenge is the only diffrence between two Authentication messages. Also because of weakeness in WEP WEP = Pseudo Random Number Generator K = Shared key IV = Initialization Vector (Sent in clear) P = Plain text challenge text C = Cipher text R = Challenge text

Shared Key Auth. (Cont) Messages based on sequence numbers Sequence #Status CodeChallenge Text WEP Used 1ReservedNot PresentNO 2StatusPresentNO 3ReservedPresentYES 4StatusNot PresentNO

Shared Key Flaw (Cont.) Attacker captures 2 nd & 3 rd frames. – 2 nd Frame => Random challenge in clear (P) – 3 rd Frame => Encrypted challenge (C) PRNG stream – WEP K,IV P R = C P – Stream can be derived from above without knowing the shared Key (K)

Shared Key Attack Attacker requests authentication from an AP AP responds with challenge text (R) in clear Attacker takes R and PRNG to get valid authentication response by XOR-ing the 2 Attacker computes a new integrity check value (ICV) Valid response allows Attacker to join the network.

Conclusions & Future Work All deployed networks are at risk WEP can make it harder but vulnerable as keys are static and hard to change Vendors have used un-authenticated Diffie- Hellman for key exchange. Worse solution as Man In The Middle attack can give the Key to the attacker.

Question & Comments