Security Analysis on Wireless LAN protocols HORI Yoshiaki - - PowerPoint PPT Presentation
Security Analysis on Wireless LAN protocols HORI Yoshiaki hori@csce.kyushu-u.ac.jp Kyushu University / ISIT ETRI-ISIT 1st joint seminar 1 Contents S e c u r i t y a n a l y s i s o n I E E E 8 0 2 . 1 1 i
ETRI-ISIT 1st joint seminar 1
ETRI-ISIT 1st joint seminar 2
ETRI-ISIT 1st joint seminar 3
– WLAN uses wireless media instead of wired media in order to provide connectivity for a terminal.
wireless media.
– WLAN provides mobility, no wire → WLAN enables easily to build LAN – Currently WLAN become widely deployed.
– WLAN security has become a serious concern for many
– Security requirements for a WLAN
ETRI-ISIT 1st joint seminar 4
Wireless terminal (Supplicant) Access Point (AP) (Authenticator) (Authentication Server) Adversary Attack Eaves dropping
ETRI-ISIT 1st joint seminar 5
(by C. He and J. C. Mitchell, Stanford Univ.)
– Threat 1: Passive Eavesdropping – Threat 2: Message Injection – Threat 3: Message Deletion and Interception – Threat 4: Masquerading and Malicious AP – Threat 5: Session Hijacking – Threat 6: Man-in-the-Middle – Threat 7: Denial of Service Threats 1, 2, and 3: attack all three type of frames in the Link Layer Threats 4, 5, and 6: defeat mutual authentication Threats 7: interferes with availabilit
ETRI-ISIT 1st joint seminar 6
‐8 2 . 1 1 i w
k s w e l l f
d a t a c
f i d e n t i a l i t y , i n t e g r i t y , a n d m u t u a l a u t h e n t i c a t i
.
‐t w
a t a c
f i d e n t i a l i t y p r
s ;
・T e m p
a r y K e y I n t e g r i t y P r
( T K I P ) ・C
n t e r
e / C B C
A C P r
( C C M P ) w i t h A E S
2 8 ( 1 2 8 b i t K e y a n d 1 2 8 b i t B l
k s i z e )
‐A u t h e n t i c a t i
a n d k e y m a n a g e m e n t p r
・E x t e n s i b l e A u t h e n t i c a t i
P r
( E A P ) s c h e m e , e . g . E A P
L S , p r
i d e s m u t u a l a u t h e n t i c a t i
. ・4
a y h a n d s h a k e e n a b l e s t
h a r e P a i r w i s e T r a n s i e n t K e y ( P T K ) d e r i v e d f r
t h e i r P a i r w i s e M a s t e r K e y ( P T K ) .
‐W i r e d E q u i v a l e n t P r i v a c y ( W E P )
ETRI-ISIT 1st joint seminar 7
ETRI-ISIT 1st joint seminar 8
・B
u s b e a c
a n d b
u s p r
e r e s p
s e f r
a n a u t h e n t i c a t
( a c c e s s p
n t ) , a n d b
u s a s s
i a t i
r e q u e s t .
ETRI-ISIT 1st joint seminar 9
ETRI-ISIT 1st joint seminar 10
・E A P O L ( E A P
e r L A N )
t a r t , E A P O L
u c c e s s , E A P O L
a i l u r e , E A P O L
f
ETRI-ISIT 1st joint seminar 11
ETRI-ISIT 1st joint seminar 12
‐M u t u a l a u t h e n t i c a t i
b e t w e e n M N a n d B R ‐S h a r i n g s e s s i
k e y b e t w e e n M N a n d B R ‐P a c k e t a u t h e n t i c a t i
a n d D a t a e n c r y p t i
‐F a s t a u t h e n t i c a t i
a n d D a t a e n c r y p t i
‐M I S u s e s p s e u d
d h
m
e ( I E E E 8 2 . 1 1 p h y s i c a l l a y e r )
I E E E 8 2 . 1 1 n e t w
k i n t e r f a c e c a r d .
IP MIS protocol IEEE802.11 Pseudo AdHoc mode Protocol Layers
ETRI-ISIT 1st joint seminar 13
– “Fast Authentication System for Secure Wireless Internet Services” (K. Fujikawa, H. Nakano, M. Ohta, M. Hirabaru, H. Mano, and K. Ikeda) IPSJ SIGDPS technical report, 2001-DPS-107, March 2002
Association (MBA) and published on their Web. http: / / www.mbassoc.org/
(but these are written in only Japanese) – MBA standard 0201, “MIS protocol specification ver. 1.02” (announced on April 2004) – MBA standard draft 0301, “MISAUTH protocol specification” (annouced on June 2004)
ETRI-ISIT 1st joint seminar 14
beacon
Access Request Access O.K.
( t )
Hk(s) is shared as session key s generated Hk(s) generate
k: Shared Key s: seed t: timestamp Hk(): Keyed Hash Func.
ETRI-ISIT 1st joint seminar 15
ETRI-ISIT 1st joint seminar 16
・B e a c
m e s s a g e ・A u t h e n t i c a t i
R e q u e s t m e s s a g e ・A u t h e n t i c a t i
S u c c e s s m e s s a g e ・A u t h e n t i c a t i
F a i l t u r e m e s s a g e ・S e s s i
c l
e m e s s a g e
ETRI-ISIT 1st joint seminar 17
ETRI-ISIT 1st joint seminar 18
ETRI-ISIT 1st joint seminar 19
ETRI-ISIT 1st joint seminar 20