Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright Security-Assessment.com 2005 Wireless Security by Nick von Dadelszen.

Published byLucas Fowler Modified over 9 years ago

Similar presentations

Presentation on theme: "Copyright Security-Assessment.com 2005 Wireless Security by Nick von Dadelszen."— Presentation transcript:

1 Copyright Security-Assessment.com 2005 Wireless Security by Nick von Dadelszen

2 Copyright Security-Assessment.com 2005 Wireless Security History 802.11b Standard – Three security options SSID MAC filtering WEP Easily Breakable – SSID Broadcasting – War-Driving – WEP cracking

3 Copyright Security-Assessment.com 2005 Current Technologies 802.1X – RADIUS Authentication – Dynamic WEP encryption key distribution – Widely implemented by manufacturers late 2001 and 2002 WPA – Wi-Fi Protected Access – security standard (required for certification) – Solves WEP issues by utilising TKIP – Includes 802.1X authentication – Allow Pre-shared Key mode (PSK) that doesn’t require RADUIS (only considered slightly better than WEP) – Currently being implemented by manufacturers

4 Copyright Security-Assessment.com 2005 New Technologies 802.11i – IEEE standard – Approved last July, starting to appear in the market – Includes WPA plus AES encryption – Still allows a shared-key mode WAPI – New standard produced by the Chinese government – Requires all Wi-Fi companies operating in China to comply with the standard – Requires international companies to partner with a local company to gain access to the standard (considered a national secret)

5 Copyright Security-Assessment.com 2005 Wireless Security Issues Security is off by default Security is implemented poorly – Shared key modes, potentially less secure than WEP Reliance on security by obscurity – Disabling SSID broadcasting – MAC filtering If you don’t implement it they will

6 Copyright Security-Assessment.com 2005 Wellington WarDrive Kismet (802.11b) – 232 Networks – 142 unencrypted (includes hotspots) Netstumbler (802.11b/g) – 161 Networks – 91 unencrypted (includes 60 hotspots) 20% of networks still unencrypted (not including hotspots)

7 Copyright Security-Assessment.com 2005

8 Distance Is Relative

9 Copyright Security-Assessment.com 2005 New Tools Allowing Easy Cracking Aircrack – next generation WEP cracker. No longer relies on weak IVs. Cracks most WEP implementations. Wpa-psk-bf – Brute-forcer for WPA in pre-shared- key mode. ASLEAP – Cracker for LEAP authentication. Hotspotter – Automatic wireless client penetration.

10 Copyright Security-Assessment.com 2005 More New Tools Void11 – sends deauthentication frames forcing reconnection (used to capture authentication frames) WepAttack – can break WEP with one packet Aireplay – reinjects encrypted packets to speed capture time All available on one bootable-CD (Auditor)

11 Copyright Security-Assessment.com 2005

12

13

14 HotSpot Issues Public wireless access – CafeNet – Telecom Wireless Hotspot Service No authentication of Access Point Users enter account credentials to access Internet Prone to Rogue APs and credential theft – Airsnarf

15 Copyright Security-Assessment.com 2005 Wireless Defenses Treat wireless networks as untrusted, like the Internet Rotate encryption keys Use strongest security available Change AP default admin user accounts Regularly search for rogue APs User hotspot education

16 Copyright Security-Assessment.com 2005 Wireless Network Design

17 Copyright Security-Assessment.com 2005 Other Technologies - Bluetooth Many phones now come with bluetooth More bluetooth devices than 802.11 devices All security is optional Most users don’t bother to secure their phones Bluetooth Wardriving!!!

18 Copyright Security-Assessment.com 2005

19 Non-discoverable Phones Most bluetooth devices allow you to make them non-discoverable Do not broadcast Still able brute-force MAC address to connect Redfang tool does this for you

20 Copyright Security-Assessment.com 2005 Bluetooth Attacks Bluesnarfing Backdooring Bluebugging Bluejacking

Download ppt "Copyright Security-Assessment.com 2005 Wireless Security by Nick von Dadelszen."

Similar presentations

Security+ All-In-One Edition Chapter 10 – Wireless Security

Security+ All-In-One Edition Chapter 10 – Wireless Security
Overview How to crack WEP and WPA

Overview How to crack WEP and WPA
Security in Wireless Networks Juan Camilo Quintero D. 1041718.

Security in Wireless Networks Juan Camilo Quintero D
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
Security in IEEE 802.11 wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.

Security in IEEE wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.
Implementing Wireless LAN Security

Implementing Wireless LAN Security
Security+ Guide to Network Security Fundamentals, Third Edition

Security+ Guide to Network Security Fundamentals, Third Edition
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)

Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
E-mail: kemal@cs.siu.edu Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE 802.11.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
Wireless Insecurity.

Wireless Insecurity.
CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino

CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino
Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Similar presentations

Ads by Google