Wireless Security Rick Anderson Pat Demko. Wireless Medium Open medium Broadcast in every direction Anyone within range can listen in No Privacy Weak.

Slides:

Advertisements

Similar presentations

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005

Advertisements

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

Hacking WLAN // BRUTE FORCE CRACKER // TCP/IP. WLAN HACK Wired Equivalent Privacy (WEP) encryption was designed to protect against casual snooping, but.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

1 MD5 Cracking One way hash. Used in online passwords and file verification.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.

Security+ Guide to Network Security Fundamentals, Third Edition

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WEP Weaknesses Or “What on Earth does this Protect” Roy Werber.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID

COMP4690, HKBU1 Security of COMP4690: Advanced Topic.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.

DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID

Wired Equivalent Privacy (WEP)

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

Wireless Security. Why is it important? Wireless security is the prevention of unauthorized access or damage to computers using wireless networks. Over.

Marwan Al-Namari Week 10. RTS: Ready-to-Send. CTS: Clear-to- Send. ACK: Acknowledgment.NAV: network allocation vector (channel access, expected time to.

Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.

WLAN security S Wireless Personal, Local, Metropolitan, and Wide Area Networks1 Contents WEP (Wired Equivalent Privacy) No key management Authentication.

Wireless Security Issues David E. Hudak, Ph.D. Senior Software Architect Karlnet, Inc.

WLAN What is WLAN? Physical vs. Wireless LAN

A Methodology for Evaluating Wireless Network Security Protocols David Rager Kandaraj Piamrat.

Computer Networks. Network Connections Ethernet Networks Single wire (or bus) runs to all machines Any computer can send info to another computer Header.

Mobile and Wireless Communication Security By Jason Gratto.

Wireless security & privacy Authors: M. Borsc and H. Shinde Source: IEEE International Conference on Personal Wireless Communications 2005 (ICPWC 2005),

CWNA Guide to Wireless LANs, Second Edition Chapter Eight Wireless LAN Security and Vulnerabilities.

Wireless Networking.

A History of WEP The Ups and Downs of Wireless Security.

Chapter Network Security Architecture Security Basics Legacy security Robust Security Segmentation Infrastructure Security VPN.

Wireless Network Security Dr. John P. Abraham Professor UTPA.

Wireless Security Beyond WEP. Wireless Security Privacy Authorization (access control) Data Integrity (checksum, anti-tampering)

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

Lesson 20-Wireless Security. Overview Introduction to wireless networks. Understanding current wireless technology. Understanding wireless security issues.

Wireless Insecurity By: No’eau Kamakani Robert Whitmire.

1 C-DAC/Kolkata C-DAC All Rights Reserved Computer Security.

Done By : Ahmad Al-Asmar Wireless LAN Security Risks and Solutions.

CWSP Guide to Wireless Security Chapter 2 Wireless LAN Vulnerabilities.

WEP Protocol Weaknesses and Vulnerabilities

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

WEP AND WPA by Kunmun Garabadu. Wireless LAN Hot Spot : Hotspot is a readily available wireless connection.  Access Point : It serves as the communication.

WEP, WPA, and EAP Drew Kalina. Overview  Wired Equivalent Privacy (WEP)  Wi-Fi Protected Access (WPA)  Extensible Authentication Protocol (EAP)

Wireless Networking & Security Greg Stabler Spencer Smith.

11 SECURING NETWORK COMMUNICATION Chapter 9. Chapter 9: SECURING NETWORK COMMUNICATION2 OVERVIEW  List the major threats to network communications. 

Link-Layer Protection in i WLANs With Dummy Authentication Will Mooney, Robin Jha.

WLANs & Security Standards (802.11) b - up to 11 Mbps, several hundred feet g - up to 54 Mbps, backward compatible, same frequency a.

Encryption Protocols used in Wireless Networks Derrick Grooms.

Wireless Security: The need for WPA and i By Abuzar Amini CS 265 Section 1.

 Houses  In businesses  Local institutions  WEP – Wired Equivalent Privacy -Use of Initialization Vectors (IVs) -RC4 Traffic Key (creates keystreams)

Wireless Security John Himmelein Erick Andrew Christian Adam Varun Bapna.

Wireless Security Presented by Colby Carlisle. Wireless Networking Defined A type of local-area network that uses high-frequency radio waves rather than.

Authentication has three means of authentication Verifies user has permission to access network 1.Open authentication : Each WLAN client can be.

802.11b Security CSEP 590 TU Osama Mazahir. Introduction Packets are sent out into the air for anyone to receive Eavesdropping is a much larger concern.

IEEE Security Specifically WEP, WPA, and WPA2 Brett Boge, Presenter CS 450/650 University of Nevada, Reno.

Wired Equivalent Privacy (WEP) Chris Overcash. Contents What is WEP? What is WEP? How is it implemented? How is it implemented? Why is it insecure? Why.

COEN 350 Mobile Security. Wireless Security Wireless offers additional challenges: Physical media can easily be sniffed. War Driving Legal? U.S. federal.

Erik Nicholson COSC 352 March 2, WPA Wi-Fi Protected Access New security standard adopted by Wi-Fi Alliance consortium Ensures compliance with different.

By Billy Ripple.  Security requirements  Authentication  Integrity  Privacy  Security concerns  Security techniques  WEP  WPA/WPA2  Conclusion.

EECS  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

Tightening Wireless Networks By Andrew Cohen. Question Why more and more businesses aren’t converting their wired networks into wireless networks?

Module 48 (Wireless Hacking)

Wireless Protocols WEP, WPA & WPA2.

WEP & WPA Mandy Kershishnik.

IEEE i Dohwan Kim.

Wireless Network Security

Presentation transcript:

Wireless Security Rick Anderson Pat Demko

Wireless Medium Open medium Broadcast in every direction Anyone within range can listen in No Privacy Weak Authentication

a,b,g –Standards do not require security –All use same encryption mechanisms Short range, low power environment Supported by many devices

Common Encryption Methods WEP –Wired Equivalent Privacy –Ratified in 1999 –Commonly used in home routers, commercial applications WPA –Wi-Fi Protected Access –Tries to improve upon WEP weaknesses i (WPA 2)

The Effects of Encryption Raises computational time –Increases power consumed by devices Adds additional overhead –Decreases overall throughput

WEP Data link level Uses a shared Secret Key Stream cipher RC4 for confidentiality –Ensures info is given to only those who are authorized CRC-32 checksum for integrity –Ensures the validity of the data transmitted

WEP, cont. Uses 2 key sizes –40 bit –104 bit Each key has a 24 bit Initialization Vector (IV) –Random number used to synchronize encryption –Transmitted in the clear

WEP Weaknesses Doesn’t include a key management protocol –Relies upon a single shared key Shared Key Easily Cracked –RC4 has a large amount of weak keys By knowing a small amount of bits, you can determine a large amount of the remaining bits easily. –Passive Attacks to decrypt traffic –Active Attacks to insert traffic

WEP Weaknesses Data headers remain unencrypted –Anyone can see source, dest. address Weak integrity check –Payload can be modified and the CRC can be updated without knowing the WEP key.

Exploiting WEP AirSNORT Once 5-10 million packets have been gathered, < 1 second to crack WEP Crack –Open source tool to exploit same RC4 vulnerabilities

WPA Wi-Fi Protected Access Created to patch WEP Intended as intermediate security platform –Between WEP and i formalization

WPA Designed to be used with 802.1X authentication server –Distributes different keys to each user Can be used without the server in less secure pre-shared key mode Data encrypted with RC4 with 128 bit key –48 bit IV

WPA Temporal Key Integrity Protocol (TKIP) –Major improvement over WEP –Dynamically changes key as system is used –Combined with larger IV, this defeats well known attacks Improved payload integrity vs. WEP –Uses more secure message integrity check (MIC) known as Michael

WPA Message Integrity Check (Michael) –Includes a frame counter to prevent replay attacks Fixes problem with undetected modification attacks The strongest algorithm WPA makers could devise that worked with most network cards Still subject to attack To limit risk, WPA networks shut down whenever an attempted attack is detected

WPA Weaknesses Fundamentally much harder to crack Weakness still lies in the key –Possible to passively intercept initial key exchange messages then use an offline dictionary attack to find password Could allow DoS attacks

802.11i Also known as WPA 2 WPA addressed problems with WEP, but still had room for improvement i is still being formalized Implements new encryption algorithm –No use of RC4

802.11i Uses Advanced Encryption Standard algorithm (AES) –Variable key sizes of 128, 192 and 256 bits –Much harder to decrypt than WPA or WEP Not compatible with today’s devices –Requires new chip sets

Other ways to secure a Wireless Network MAC filtering –Easy to spoof a MAC address Using another authentication method –Force users to authenticate using a username/password VPN tunnel between computer and AP

Weakness in Key Scheduling Algorithm of RC4