Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

I\'ve been reading up on wireless authentication and shared key authentication s

ID: 658334 • Letter: I

Question

I've been reading up on wireless authentication and shared key authentication sounds completely bonkers. I know WEP is very insecure and breaking it with aircrack-ng takes 5-15 minutes but this sounds worse.

Basics:

1. The station sends an authentication request to the access point.

2. The access point sends challenge text to the station.

3. The station uses its configured 64-bit or 128-bit default key to encrypt the challenge text, and it sends the encrypted text to the access point.

If someone is monitoring this authentication he will have the text challenge in plain text and its encrypted counterpart. Figuring out the passphrase from here on seems straight forward.

Am I understanding this correctly?

Explanation / Answer

The part of WEP you describe isn't really a major weakness because most encryption algorithms in use today are immune to known-plaintext attacks. Basically, this means that having access to both the encrypted data and the decrypted plaintext will not help you figure out the key in any way - so "figuring out the password from here" would NOT be straightforward. And since the challenge is different every time, an attacker cannot simply replay a previous solution to the router.

The main weakness of WEP is that to encrypt, it XORs the bits of network traffic with a generated keystream. This isn't inherently bad, but the same keystream cannot be used twice with this system - and in WEP, the keystream generation process is flawed. The keystream is generated from a random IV (sent to clients in plaintext) and the network key (the password you type into your computer to connect). The network key is the same every time, of course, so if two packets use the same IV, the keystream will also be the same. With only 16 million possible IVs, an attacker can easily capture two packets that share an IV on a busy network, making it easy to work out the keystream and then the key.

Related Questions

I\'ve been having some trouble with this for awhile now. So we\'ve been assigned
Question #3633740
I\'ve been having trouble getting this program completed. A complete program tha
Question #3622108
I\'ve been having trouble solving this proof, any help would be greatly apprecia
Question #3622821
I\'ve been having trouble with #14. Block A, mass 5kg, and block B, mass 1kg, ar
Question #1493150
I\'ve been having trouble with coming up with a random number generator that pro
Question #648683
I\'ve been hearing a-lot about the \"new\" MV* frameworks. I\'ve tinkered with K
Question #646965
I\'ve been hearing about keyloggers for the past two years, but never took them
Question #654112
I\'ve been hearing about using the dependency injection over Singleton for my co
Question #643025
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
I\'ve been reading up on some pulsar emission theory (admittedly written in the
Next
I\'ve been recently assigned for a new high-performance C++ project (finance) to

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.