Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wireless Insecurity.

Published byEthan Cook Modified over 9 years ago

Similar presentations

Presentation on theme: "Wireless Insecurity."— Presentation transcript:

1 Wireless Insecurity

2 Wireless 802.11a works on 5 Ghz 802.11b,g,n works on 2.4 Ghz
Access points and wireless cards are used. Protocol can be either in the clear or encrypted. Wired Equivalent Privacy (WEP) provides poor security

3 Scenario Physical Security Access Point User Attacker

4

5 Typical Configuration
Corporate Resources Access Point PCMCIA Wireless NIC ISA/PCI Wireless NIC User Attacker USB Wireless NIC

6 Wireless Equivalence Protocol
RC4 Crypto algorithm 64, 128 bit encryption 24 bit Initialization Vector Compromised in under 24 hours Even faster now!!! No key management (key update) New

7 Configuring Wireless Service Set Identifier (SSID) Key

8 Steps for attack Surveying (Wardriving/Warwalking)
Identification (Warchalking) Crypto-analysis(Cracking) Penetration Exploitation

9 Wardriving Tools Laptop or PDA with Wireless Card
Prism Wireless Card for promiscuous monitoring Antenna GPS Netstumbler Kismet Wireshark Antenna GPS

10 PDA with wireless card and Ministumbler Goal is to identify Access Points and SSIDs

11

12 Warchalking Identifying wireless sites is a new trophy sport for some.

13 Note Access Points are Identified

14 Warchalking as a Social Activity

15 WEP Cracking Capture the packets of an Access Point for a Day using Ethereal. Pass through WEP Crack (Shareware) Will identify the key in under an hour. WEP crypto will be defeated (including 128 bit) Nobody uses WEP anymore right?

16 Use LONG pass phrases for Wireless
WPA2 TKIP AES WPA2-PSK can be cracked with PSK under 21 characters Use LONG pass phrases for Wireless Everyonehastherighttolife,libertyand security

17 Bypassing Access Points with MAC Access Control
Some Access Points require MACs to authenticate access. MACs can be discovered and forged Using linux ifconfig hw eth0 11:11:11:11:11

18 Other tools AirSnort AirJAM
AirSnort is a wireless LAN (WLAN) tool that recovers encryption keys. It operates by passively monitoring transmissions, computing the encryption key when enough packets have been gathered. AirJAM Jams Access Point denial of service attack

19 Aircrack-ng and WEPLab
are WEP key crackers implementing the Fluhrer - Mantin - Shamir (FMS) attack, and the KoreK approach. CoWPAtty (Dictionary attack tool)

20 Penetration Access the network Take/Alter Data
Use backdoor (Wi-Fi) or Front Door (cable) GO TO JAIL – Criminal Code

21 Improvements Wi-Fi Protected Access WPA2 (802.11i)
Implementation of Temporal Key Interchange Protocol Extensible Authentication Protocol

22 Other safeguards RADIUS Access control VPN based on Certificates
Intrusion Prevention System Intrusion Detection System

23 What is the point? Vulnerabilities are discovered
Vulnerabilities get fixed New vulnerabilities appear You must re-assess safeguards

Download ppt "Wireless Insecurity."

Similar presentations

Ethical Hacking Module XV Hacking Wireless Networks.

Ethical Hacking Module XV Hacking Wireless Networks.
Wireless LAN Security Understanding and Preventing Network Attacks.

Wireless LAN Security Understanding and Preventing Network Attacks.
Security in Wireless Networks Juan Camilo Quintero D. 1041718.

Security in Wireless Networks Juan Camilo Quintero D
Hacking WLAN // BRUTE FORCE CRACKER // TCP/IP. WLAN HACK Wired Equivalent Privacy (WEP) encryption was designed to protect against casual snooping, but.

Hacking WLAN // BRUTE FORCE CRACKER // TCP/IP. WLAN HACK Wired Equivalent Privacy (WEP) encryption was designed to protect against casual snooping, but.
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
The Trouble with WEP Or, cracking WiFi networks for fun & profit (not really) Jim Owens.

The Trouble with WEP Or, cracking WiFi networks for fun & profit (not really) Jim Owens.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
December 17, 2002 1 Wi-Fi Mark Faggiano GBA 576. December 17, 20022 Purpose of the Project  I hear Wi-Fi, WLAN, 802.11 everywhere  What does it all.

December 17, Wi-Fi Mark Faggiano GBA 576. December 17, Purpose of the Project  I hear Wi-Fi, WLAN, everywhere  What does it all.
Access Control and Site Security (Part 2) (Tuesday, January 22, 2008) © Abdou Illia – Spring 2008.

Access Control and Site Security (Part 2) (Tuesday, January 22, 2008) © Abdou Illia – Spring 2008.
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.

Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.
Wireless Security Issues David E. Hudak, Ph.D. Senior Software Architect Karlnet, Inc.

Wireless Security Issues David E. Hudak, Ph.D. Senior Software Architect Karlnet, Inc.
Chapter 3 Application Level Security in Wireless Network IWD2243 : Zuraidy Adnan : Sept 2012.

Chapter 3 Application Level Security in Wireless Network IWD2243 : Zuraidy Adnan : Sept 2012.
Wireless Security.

Wireless Security.
Access Control and Site Security (Part 2) (January 28, 2015) © Abdou Illia – Spring 2015.

Access Control and Site Security (Part 2) (January 28, 2015) © Abdou Illia – Spring 2015.

Similar presentations

Ads by Google