Presentation is loading. Please wait.

Presentation is loading. Please wait.

ANALYSIS OF WIRED EQUIVALENT PRIVACY

Published byAllison Logan Modified over 6 years ago

Similar presentations

Presentation on theme: "ANALYSIS OF WIRED EQUIVALENT PRIVACY"— Presentation transcript:

1 ANALYSIS OF WIRED EQUIVALENT PRIVACY
CS265, Spring 2003 Xunyan Yang

2 OVERVIEW Introduction Working Mechanism Attackable Entries
Improvement In WEP Implementation Conclusion & Recommendations

3 INTRODUCTION What is WEP --- Wired Equivalent Privacy
What is WEP used for --- Provides confidentiality for wireless LAN What’s problems with WEP --- Cryptographic errors

4 WORKING MECHANISM A string cipher using the RC4 encryption algorithm
A message (plaintext M) A Integrity Check (checksum algorithm c ) A shared secret key (short key k ) A per packet Initialization Vector (IV) Ciphertext = (M·c(M)) XOR RC4(IV ·k)

5 WORKING MECHANISM (Contd.)
Integrity Check 32-bit Cyclic Redundancy Check (CRC-32) checksum Confidentiality Initialization Vector (IV) A 24-bit field and appended to the cleartext part of a message

6 ATTACKABLE ENTRIES IV Collisions IV Reuse Modify Checksum

7 IV COLLISION & REUSE IV will be exhausted after about five hours
1500-byte packet at the speed of 11MbPS: 1500 * 8 / (11 * 10^6) / 60^2 * 2^24 A common wireless card resets the IV to 0 each time a card is initialized, and increments the IV by 1 with each packet.

8 MODIFY CHECKSUM CRC-32 is a linear algorithm
Compute the bit difference of two CRCs based on the bit difference of the messages Flip arbitrary bits in an encrypted message and correctly adjust the checksum

9 IMPROVEMENT IN WEP IMPLEMENTATION
Automatic WEP rotation Constant automatic key rotation Continual key replacement Unique key generation

10 CONCLUSTION & RECOMMENDATION
WEP Provides Inadequate Security Assume that the link layer offers no security Don’t rely on WEP. Use higher-level security mechanisms Place all access points outside the firewall Assume that anyone within physical range can communicate on the network as a valid user Always turn on WEP in your access point

11 ???...

Download ppt "ANALYSIS OF WIRED EQUIVALENT PRIVACY"

Similar presentations

Your 802.11 Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.

Your Wireless Network has No Clothes CS 395T William A. Arbaugh, Narendar Shankar, Y.C. Justin Wan.
WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:

WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:
Security flaws of the WEP-Protocol by Bastian Sopora, Seminar Computer Security 2006.

Security flaws of the WEP-Protocol by Bastian Sopora, Seminar Computer Security 2006.
WEP Weaknesses Or “What on Earth does this Protect” Roy Werber.

WEP Weaknesses Or “What on Earth does this Protect” Roy Werber.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
COMP4690, HKBU1 Security of 802.11 COMP4690: Advanced Topic.

COMP4690, HKBU1 Security of COMP4690: Advanced Topic.
The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray.

The Dangers of Mitigating Security Design Flaws: A Wireless Case Study Nick Petroni Jr., William Arbaugh University of Maryland Presented by: Abe Murray.
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
How To Not Make a Secure Protocol 802.11 WEP Dan Petro.

How To Not Make a Secure Protocol WEP Dan Petro.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
RC4 1 RC4 RC4 2 RC4  Invented by Ron Rivest o “RC” is “Ron’s Code” or “Rivest Cipher”  A stream cipher  Generate keystream byte at a step o Efficient.

RC4 1 RC4 RC4 2 RC4  Invented by Ron Rivest o “RC” is “Ron’s Code” or “Rivest Cipher”  A stream cipher  Generate keystream byte at a step o Efficient.
Foundations of Network and Computer Security J J ohn Black Lecture #34 Dec 5 th 2007 CSCI 6268/TLEN 5831, Fall 2007.

Foundations of Network and Computer Security J J ohn Black Lecture #34 Dec 5 th 2007 CSCI 6268/TLEN 5831, Fall 2007.
IEEE 802.11 Wireless Local Area Networks (WLAN’s).

IEEE Wireless Local Area Networks (WLAN’s).
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
802.11 Security – Wired Equivalent Privacy (WEP) By Shruthi B Krishnan.

Security – Wired Equivalent Privacy (WEP) By Shruthi B Krishnan.
Wireless Security. Why is it important? Wireless security is the prevention of unauthorized access or damage to computers using wireless networks. Over.

Wireless Security. Why is it important? Wireless security is the prevention of unauthorized access or damage to computers using wireless networks. Over.

Similar presentations

Ads by Google