Presentation is loading. Please wait.

Presentation is loading. Please wait.

Improving Wireless Privacy with an Identifier-Free Link Layer Protocol Ben Greenstein et.al. MobiSys’08 Presented by Seo Bon Keun.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Improving Wireless Privacy with an Identifier-Free Link Layer Protocol Ben Greenstein et.al. MobiSys’08 Presented by Seo Bon Keun."— Presentation transcript:

1 Improving Wireless Privacy with an Identifier-Free Link Layer Protocol Ben Greenstein et.al. MobiSys’08 Presented by Seo Bon Keun

2  Wired Equivalent Privacy (WEP) Original IEEE 802.11 Encryption : Stream cipher RC4 Integrity : CRC-32 checksum Authentication : Open System / Shared Key Can be cracked within minutes  Deprecated IPSec/SSL tunneling can be used  Wi-Fi Protected Access (WPA) IEEE 802.11i Encryption : CCMP(AES-based) Mode : PSK / EAP IEEE 802.11 and privacy

3  With MAC address Identify : Who are using networks Location : Who are there? Threat model Eavesdropper Alice (MAC:A) Bob (MAC:B) Charley (MAC:C) Bob (MAC:B) Coffee shop Office

4  With the pattern of packets Threat model Eavesdropper He may type password ‘please’ He may browse stock pages He may see U-Tube movie clips He may speak in English He is now running Outlook

5  Attack Inventorying Tracking Profiling  Solution : remove linkability Threat model Eavesdropper Who’s sending packets to whom?

6  Pseudonym Change MAC addresses each session or when idle Packets can be linked while a MAC address is used Possible solution Eavesdropper Alice (MAC:A) Bob (MAC:B) Charley (MAC:C) Bob (MAC:D) Coffee shop Office Charley (MAC:E) A new guy starts using network! He may be Bob. A new guy starts using network! He may be Bob.

7  Method s = {A, B, T} header = ElGamal(s, PublicKey B ) Body is encrypted using WPA  Advantage Eavesdropper cannot decipher packet header  Disadvantage Every packets should be deciphered Performance drops! Straw Man

8 Solution : SlyFi ClientAP 802.11 Probe request Probe reply Authentication request Authentication reply Association request Association reply Data Acknowledgements ClientAP SlyFi Tryst(probe req.) Tryst(probe rep.) Tryst(auth. req.) Tryst(auth. rep.) Shroud(assoc. req.) Shroud(Data) Shroud(Acks) Shroud(assoc. rep.) Discovery & Binding Data Transport

9  Infrequent communication!  Long-term unlinkability Two packets sent on different time period(I), cannot be linked to  A, B knows and T 0  Temporary address for time T  Generate random key k p SlyFi - Tryst Tryst Header Tryst Body

10  Connected Communication Has starting key for the communication! Create unlinkable addresses for every packets  A, B knows  Per-packet unlinkable addresses SlyFi - Shroud Shroud Header Shroud Body

11  Tryst Clock skew Create addresses from T i-k to T i+k Forward security Compute new key for each day  Shroud Packet loss Create w consecutive addresses  Coexistence SlyFi can coexist with 802.11 devices SlyFi – Additionals

12  Link setup time Performance evaluation

13  Data transport performance Performance evaluation

14  Identifier free 802.11 link layer protocol  Tries to achieve higher level of privacy protection without losing performance  Comparable to IEEE 802.11w Increase the security of the management frames Conclusion

15 Q&A

Download ppt "Improving Wireless Privacy with an Identifier-Free Link Layer Protocol Ben Greenstein et.al. MobiSys’08 Presented by Seo Bon Keun."

Similar presentations

Security in Wireless Networks Juan Camilo Quintero D. 1041718.

Security in Wireless Networks Juan Camilo Quintero D
Improving Wireless Privacy with an Identifier-Free Link Layer Protocol Ben Greenstein, Damon McCoy, Jeffrey Pang, Tadayoshi Kohno, Srinivasan Seshan, and.

Improving Wireless Privacy with an Identifier-Free Link Layer Protocol Ben Greenstein, Damon McCoy, Jeffrey Pang, Tadayoshi Kohno, Srinivasan Seshan, and.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:

WEP 1 WEP WEP 2 WEP  WEP == Wired Equivalent Privacy  The stated goal of WEP is to make wireless LAN as secure as a wired LAN  According to Tanenbaum:
Final Presentation Presented By: Gal Leibovich Liran Manor Supervisor: Hai Vortman.

Final Presentation Presented By: Gal Leibovich Liran Manor Supervisor: Hai Vortman.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)

Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.
Link Setup Time (ms) Details : How do sender and receiver synchronize i ? Discovery/binding messages: infrequent and narrow interface  short term linkability.

Link Setup Time (ms) Details : How do sender and receiver synchronize i ? Discovery/binding messages: infrequent and narrow interface  short term linkability.
IEEE 802.11 Wireless Local Area Networks (WLAN’s).

IEEE Wireless Local Area Networks (WLAN’s).
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
WLAN Security:PEAP Sunanda Kandimalla. Intoduction The primary goals of any security setup for WLANs should include: 1. Access control and mutual authentication,

WLAN Security:PEAP Sunanda Kandimalla. Intoduction The primary goals of any security setup for WLANs should include: 1. Access control and mutual authentication,
15 November 2004 1 Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

15 November Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

Similar presentations

Ads by Google