Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS 525M – Mobile and Ubiquitous Computing Seminar Bradley Momberger Randy Chong.

Published byEdwin Holmes Modified over 9 years ago

Similar presentations

Presentation on theme: "CS 525M – Mobile and Ubiquitous Computing Seminar Bradley Momberger Randy Chong."— Presentation transcript:

1 CS 525M – Mobile and Ubiquitous Computing Seminar Bradley Momberger Randy Chong

2 Credits References used in this presentation: – Moskowitz: Weakness in Passphrase Choice in WPA Interface http://wifinetnews.com/archives/002452.html –Edney & Arbaugh: Real 802.11 Security: Wi-Fi Protected Access and 802.11i. ©2003 Addison-Wesley – Jouni Malinen: Host AP driver for Intersil Prism2/2.5/3 – RSA Laboratories: PKCS #5 v2.0: Password-Based Cryptography Standard http://www.rsasecurity.com/rsalabs/pkcs/pkcs-5/

3 Overview PTcracK –There’s a Network Born Every Minute –Hybrid Passphrase Attack –Converts the Results of Passphrase Search to WPA Keys –Check Results of Generated Keys Against Intercepted Handshake Packets

4 Background PMK = Pairwise Master Key –The shared secret between the client and the server –Can be generated from a passphrase The MAC addresses of each end of the connection and fresh values or “nonces” have to be sent in the clear before encryption keys can be generated. Any rogue node can monitor the traffic and learn all of the session information except the PMK. If the PMK is based on a passphrase, a rogue node may be able to guess the passphrase by matching the encryption keys to what is in use. Barring other security measures, the attacker can then gain access to the network. The most time-efficient way to guess a passphrase or other passphrase is through hybridized guessing.

5 Hybridized Password Guesser Programmed from scratch Packaged in a general-purpose class Guess parameters specified at class instantiation –Minimum guess length –Maximum guess length –Maximum brute string length Three modes –Depth-First (default) –Breadth-First –Pure-Brute (fallback)

6 Demo Show Demo

7 PTcracK Implementation 1)Retrieve the ssid from the access point 2)Compute the ssid length 3)Send a DISASSOCIATE command to the access point 4)Retrieve the PTK and the MAC addresses from the handshake packets 5)Use a hybrid algorithm to guess a pass phrase. 6)Generate the PMK with the guess 7)Generate a guessed PTK with the PMK 8)Check for a match between the PTK and the guessed PTK –Repeat steps 5 through 8 until a match is found We have implemented steps 5 through 8

8 The PTcracK Project Hosted on Source Forge –http://sourceforge.net/projects/ptcrack/http://sourceforge.net/projects/ptcrack/ –Site contains source code release, documentation, and task list. –Program is released under GPL by force; contains other code acquired through the GPL.

Download ppt "CS 525M – Mobile and Ubiquitous Computing Seminar Bradley Momberger Randy Chong."

Similar presentations

Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.

Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.
Filtering and Security By Mohammad Shanehsaz June 2004.

Filtering and Security By Mohammad Shanehsaz June 2004.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
CSE 6590 1.  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in 802.11  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 

CSE  Wired Equivalent Privacy (WEP) ◦ first security protocol defined in  Wi-Fi Protected Access (WPA) ◦ defined by Wi-Fi Alliance 
Understanding and Achieving Next-Generation Wireless Security Motorola, Inc James Mateicka.

Understanding and Achieving Next-Generation Wireless Security Motorola, Inc James Mateicka.
MIS 5212.001 Week 12 Site:

MIS Week 12 Site:
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
Implementation of a Two-way Authentication Protocol Using Shared Key with Hash CS265 Sec. 2 David Wang.

Implementation of a Two-way Authentication Protocol Using Shared Key with Hash CS265 Sec. 2 David Wang.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
Kerberos Jean-Anne Fitzpatrick Jennifer English. What is Kerberos? Network authentication protocol Developed at MIT in the mid 1980s Available as open.

Kerberos Jean-Anne Fitzpatrick Jennifer English. What is Kerberos? Network authentication protocol Developed at MIT in the mid 1980s Available as open.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.

DIMACS Nov 3 - 4, 2004 WIRELESS SECURITY AND ROAMING OVERVIEW DIMACS November 3-4, 2004 Workshop: Mobile and Wireless Security Workshop: Mobile and Wireless.
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Man in the Middle Paul Box Beatrice Wilds Will Lefevers.

Man in the Middle Paul Box Beatrice Wilds Will Lefevers.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Apr 4, 2003Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication.

Apr 4, 2003Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
Wireless Networking. Wi-Fi or 802.11 Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.

Wireless Networking. Wi-Fi or Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.

Similar presentations

Ads by Google