Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

WEP is supposed to protect data sent over a wireless link. As discussed in the t

ID: 3822857 • Letter: W

Question

WEP is supposed to protect data sent over a wireless link. As discussed
in the text, WEP has many security flaws, one of which involves its use
of initialization vectors, or IVs. WEP IVs are 24 bits long. WEP uses
a fixed long-term key K. For each packet, WEP sends an IV in the
clear along with the encrypted packet, where the packet is encrypted
with a stream cipher using the key Kjy = (IV, K), that is, the IV is
pre-pended to the long-term key K. Suppose that a particular WEP
connection sends packets containing 1500 bytes over an 11 Mbps link.


a) If the IVs are chosen at random, what is the expected amount of time until the first IV repeats? What is the expected amount of time until some IV repeats?

b) If the IVs are not selected at random but are instead selected in sequence, say, IV j = i, for i = 0,1,2,... ,22 4 — 1, what is the expected amount of time until the first IV repeats? What is the expected amount of time until some IV is repeated?

c) Why is a repeated IV a security concern?

d) Why is WEP "unsafe at any key length" [321]? That is, why is WEP no more secure if K is 256 bits than if K is 40 bits?

Explanation / Answer

a) If the IVs are chosen at random, what is the expected amount of time until the first IV repeats? What is the expected amount of time until some IV repeats?
--> Should repeat after about like 5000 packets or so.

b) If the IVs are not selected at random but are instead selected in sequence, say, IV j = i, for i = 0,1,2,... ,22 4 — 1, what is the expected amount of time until the first IV repeats? What is the expected amount of time until some IV is repeated?
--> Should be around 3000 packets or so.

c) Why is a repeated IV a security concern?
--> Always not good to be able to predict security and then break into it.

d) Why is WEP "unsafe at any key length" [321]? That is, why is WEP no more secure if K is 256 bits than if K is 40 bits?
--> There is a weakness in the key scheduling algorithm of RC4, so that no matter how long,it can be exploited. And so, always exploited and broken into, no matter the length with the same easiness only variable by the length (factor of length n, still n time)

Related Questions

WEB EXERCISE - The Virtual Sand Collection http://faculty.pasadena.edu/dndouglas
Question #296317
WEB EXERCISE 1· At the start of the chapter, tions were. Let\'s examine this fur
Question #2788910
WEB PROGRAMMING HTML write a webpage to order widgets. There are 3 kinds of widg
Question #3758124
WEB RESEARCH PROJECT, CHAPTER 2: Looking at Computers: Understanding the Parts P
Question #3847079
WEB RESEARCH PROJECT, CHAPTER 2: Looking at Computers: Understanding the Parts P
Question #3847501
WEB SCRIPTING >>>>>PHP<<<<<<< Please create a two part form (an .html form and a
Question #3603066
WEB SITE: http://www.eeoc.gov/facts/fs-relig_ethnic.html In the wake of the terr
Question #353349
WEB SITE: http://www.legalnet.co.za/cyberlaw/cybertext/chapter12.htm http://www.
Question #346854

Navigate

Previous
WEN SUTANTO: Attempt 1 Note: It is recommended that you save your response as yo
Next
WERCAM OPTIMIZED https//blackb Remaining Time: 1 hour, 56 minutes, 08 seconds. O

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.