wi wi fi security fi security
play

Wi Wi-Fi Security Fi Security FEUP>MIEIC>Mobile - PowerPoint PPT Presentation

Jul 02, 2023 •246 likes •548 views

Wi Wi-Fi Security Fi Security FEUP>MIEIC>Mobile Communications FEUP>MIEIC>Mobile Communications Jaime Dias <jaime.dias@fe.up.pt> Jaime Dias <jaime.dias@fe.up.pt> Symmetric cryptography Symmetric cryptography Ex:

  1. Wi Wi-Fi Security Fi Security FEUP>MIEIC>Mobile Communications FEUP>MIEIC>Mobile Communications Jaime Dias <jaime.dias@fe.up.pt> Jaime Dias <jaime.dias@fe.up.pt>

  2. Symmetric cryptography Symmetric cryptography • Ex: RC4, AES 2

  3. Digest (hash) Cryptography Digest (hash) Cryptography • Input: variable length message • Output: a fixed-length bit string • High performance • Used for message integrity and identification • Ideal function • One-way: impossible to know the message from the digest • Every message has a different digest • Ex: MD-5, SHA-1 3

  4. Public Key Cryptography Public Key Cryptography Confidenciality Confidenciality 4

  5. Public Key Cryptography Public Key Cryptography Authentication (digital signature) Authentication (digital signature) 5

  6. Public Key Distribution Problem Public Key Distribution Problem ����������� ���� ����� ����� ����� ����� ��������������������� �������������� � ���� � �������������� � ��� ���� ����� ��� ���� ����� ����� ����� ��� ���� ���� ����� ������������������ ��� ���� ����� ������������������ ���� ����� ����� ����� ����� ��������������������� �������������� � ���� � �������������� � � �������������� � ����������������������������������� ���� ����� ����� ����� ����� ��������������������� �������������� � ���� � �������������� � ��� ���� ����� ����� ��� ���� ���� ����� �� �������������� �� 6

  7. Certification Authority Certification Authority 7

  8. SSL/TLS SSL/TLS • SSL (Secure Socket Layer) • Developed by Netscape • Versions 2 e 3 • TLS 1.0 (Transport Layer Security) • IETF • Transparent to application protocols • Allows both server and client to be authenticated through certificates • Tipically, due to certificate costs • Only servers are authenticated • Clients are authenticated at the application layer (ex: passwords) 8

  9. 802.11 Security 802.11 Security • “Minimum” security � WEP (Wired Equivalent Privacy) • Station authentication • Open mode Ł no authentication • Shared Mode • Challenge: AP sends challenge Ł station returns the challenge • Challenge: AP sends challenge Ł station returns the challenge encrypted with the WEP key • Confidentiality Ł frames are encrypted with RC4 • Integrity Ł CRC32 9

  10. Encryption Encryption �� ������� ��� ��� �������� ����� ����� ��� #��$�� �� ���������� ��� �������� !"" Keystream 10

  11. Decryption Decryption �� ������� ��� ��� ������������ ����� ����� ��� Check values ��� #��$�� �� ���������� ��� �������� !"" Keystream 11

  12. WEP Vulnerabilities WEP Vulnerabilities • Same IV and WEP key � same keystream • IV too short (24 bits) • No mechanism for WEP key update • Same keystream: • Same keystream: • SDU2 ⊕ SDU1 = cryptogram1 ⊕ cryptogram2 • If SDU1 is known (ICMP, TCP ack, …) then • SDU2 = cryptogram1 ⊕ cryptogram2 ⊕ SDU1 12

  13. WEP Vulnerabilities (2) WEP Vulnerabilities (2) • RC4 key = IV (3 bytes) + WEP key (5 or 13 bytes) • Weak IVs help breaking the WEP key • Weak IVs: i:ff:X • Ex: Weak IVs for WEP keys of 40 bits • Ex: Weak IVs for WEP keys of 40 bits • 3:ff:X, 4:ff:X, 5:ff:X, 6:ff:X, 7:ff:X 13

  14. WEP Vulnerabilities (3) WEP Vulnerabilities (3) • Integrity Check Value based on CRC32 (linear) • WEP does not authenticate nor check the integrity of the frame header • Station can change the MAC address • AP is not authenticated • AP is not authenticated • Rogue AP • WEP does not control the frame sequence • Replay attacks • Same key for every station • Traffic can be eavesdropped or even changed by any station knowing the WEP key 14

  15. WEP Vulnerabilities (4) WEP Vulnerabilities (4) • Manufacturers have put some additional barriers • Authentication by SSID • Station only need to monitor the medium and wait for another station to associate to see the SSID • Access control by MAC address • Access control by MAC address • Station only need to see the MAC address of allowed stations and clone their address 15

  16. 802.1X 802.1X – – Access Control Access Control ����������� �������������� �������������� �������������� � ������� � ���������� �������������� ������������� �������������� � � ��������� � 16

  17. 802.1X with Radius 802.1X with Radius 17

  18. Dynamic WEP Dynamic WEP • Uses 802.1X • User authentication • Support of multiple authentication methods • Centralized data base with users’ credentials, independent of APs • Authentication of the AP • Authenticaton keys ≠ encryption keys • Periodic update of WEP keys 18

  19. Dynamic WEP (2) Dynamic WEP (2) �����������������������4������������ ���5����� ����������������� ����������������� ��� ���! ��� ���!�������"���� �����#��#������ ���!$����� 3��+�����������!$�"� ,����������������- �� ����- ����!�&�������� ��! .���������!$�"�����- �� ��� ���! ��!�&����������� ���!� ����"���"�����/��� ���0#1 2� ���0#1 2� %����� ���!�����!$����&����'�()*+� %����� ���!�����!$����&����'�()*+� ��! 6��+��������$$���"� �������$$���"�����- �� ����- ����! ��! 7�����������������5�"����� ������������������!$����&���� - � 19

  20. 802.11i 802.11i • WEP failure � IEEE 802.11i • Uses the 802.1X • Authentication/Access Control • Pre-shared key (PSK) • With Authentication Server - 802.1X • • Key Management Key Management • Temporary Keys • Authentication keys ≠ Encryption keys • Data protection • CCMP (Counter mode Cipher block Chaining MAC protocol) • Based on the AES cipher algorithm • TKIP (Temporal Key Integrity Protocol) • Based on the RC4 cipher algorithm (same as WEP) • Infraestructured and ad-hoc modes 20

  21. Wi Wi-Fi Protected Access Fi Protected Access • WPA • Based on Draft 3.0 of 802.11i (2002) • Short term solution for legacy equipments • No support for CCMP nor the ad-hoc mode • TKIP reuses the WEP HW (RC4 cipher algorithm) • TKIP reuses the WEP HW (RC4 cipher algorithm) • Firmware upgrade • WPA2 • Supports 802.11i • Long term solution 21

  22. Authentication methods (802.1X) Authentication methods (802.1X) • Requires Authentication Server • Most popular Wi-Fi authentication methods • EAP-TLS • EAP-TTLS • PEAP 22

  23. EAP EAP-TLS TLS • Uses TLS to authenticate both server and user through certificates • Mandatory in WPA • Cons: • Certificates are expensive • User identity goes in clear in the user’s certificate TLS (authentication of server and user) EAP RADIUS 802.1X (EAPoL) UDP/IP 802.11 +� �� �+ 23

  24. Tunneled authentication Tunneled authentication • Two phase authentication • TLS tunnel authenticates the Authentication Server • User autenticated over the TLS tunel • Support of weaker methods for user’s authentication • Certificates are optional • Certificates are optional • User’s identity goes encrypted • EAP-TTLS, PEAP 24

  25. EAP EAP-TTLS TTLS • EAP- Tunneled TLS PAP, CHAP, EAP, … (User authentication) TLS (Server authentication) EAP RADIUS 802.1X (EAPoL) UDP/IP 802.11 +� �� �+ 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
CPSC410/611: Security Security Security Attacks Security Threats Crypto

CPSC410/611: Security Security Security Attacks Security Threats Crypto

CPSC 410 / 611 : Operating Systems CPSC410/611: Security Security Security Attacks Security Threats Crypto Authentication Examples SSL Security Threats Breach of confidentiality unauthorized access to

458 views • 18 slides
Biometrics and Security Biometrics and Security Biometrics and Security Biometrics and Security

Biometrics and Security Biometrics and Security Biometrics and Security Biometrics and Security

Biometrics and Security Biometrics and Security Biometrics and Security Biometrics and Security WS 06/07 Seminar Prof. Dr.-Ing. Jana Dittmann &amp; Dr.-Ing. Claus Vielhauer with support from Tobias Scheidat

419 views • 16 slides
1 X.800 Security Services X.800 Security Services X.800 Security Services Data integrity

1 X.800 Security Services X.800 Security Services X.800 Security Services Data integrity

Course Overview Course Requirements EECS 498-7/8 Cryptography and Network Security: www.citi.umich.edu/u/honey/security Principles and Practice (Third Edition) Computer Security Monday &amp; Friday, 9:00 10:30 William Stallings

670 views • 19 slides
A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security Introducing Spring Security View layer security Whats coming in Spring Security 3 E-mail: craig@habuma.com Blog: http://www.springloaded.info

452 views • 19 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CSCE Intro to Computer Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies Security

472 views • 20 slides
SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY TESTING CONCEPTS 3. SECURITY TESTING TYPES 4. TOP 10 SECURITY RISKS Few Security Breaches Date: 2013-14 September 2016, while in negotiations to

404 views • 18 slides
Security Security with Distributed Systems Why Security? The need for security mechanisms in

Security Security with Distributed Systems Why Security? The need for security mechanisms in

Security Security with Distributed Systems Why Security? The need for security mechanisms in distributed systems arises from the desire to share resources Resources must be protected against unauthorized access, as enemies (attackers)

1.16k views • 67 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CPSC 410/611 Operating Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies

419 views • 19 slides
International and Global Security 1 Peer Discussion What is security? 2 International

International and Global Security 1 Peer Discussion What is security? 2 International

International and Global Security 1 Peer Discussion What is security? 2 International Security What is security? Freedom from threats to core values? Contestation over referent object: Individual? State? System? How is security achieved?

715 views • 11 slides
Security 101 Definition of Information Security Information security is the protection of

Security 101 Definition of Information Security Information security is the protection of

Computing Services Information Security Office Security 101 Definition of Information Security Information security is the protection of information and systems from unauthorized access, disclosure, modification, destruction or disruption. The

469 views • 22 slides
Security Update Security Plans Our Security plans are For Official Use Only, Safety

Security Update Security Plans Our Security plans are For Official Use Only, Safety

Security Update Security Plans Our Security plans are For Official Use Only, Safety Sensitive Information Not for public or media release F.S. 119.071. Required by law, rule and regulation: Homeland Security Directive 5 and 8.

393 views • 11 slides
Com puter Security Part One Security as a subject Security is an old problem in the

Com puter Security Part One Security as a subject Security is an old problem in the

Com puter Security Part One Security as a subject Security is an old problem in the computing world, and are parallel to even older problems outside computing Required level of security is always related to what you protect

237 views • 23 slides
Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

ITS335 Intro. to Security Concepts Threats, Attacks, Assets Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 2

965 views • 34 slides
Stream Cipher One-time pad secure, however key as long as message Obtain efficient cipher if we

Stream Cipher One-time pad secure, however key as long as message Obtain efficient cipher if we

Stream Cipher One-time pad secure, however key as long as message Obtain efficient cipher if we replace key with sequence which behaves as sequence of random numbers Algorithms which produce pseudo-random strings are called pseudo-random

367 views • 19 slides
Summary We present a new stream cipher Spritz (generating a pseudo-random stream of

Summary We present a new stream cipher Spritz (generating a pseudo-random stream of

S PRITZ A SPONGY RC4- LIKE STREAM CIPHER AND HASH FUNCTION Ronald L. Rivest 1 Jacob C. N. Schuldt 2 1 Vannevar Bush Professor of EECS MIT CSAIL Cambridge, MA 02139 rivest@mit.edu 2 Research Institute for Secure Systems AIST, Japan

603 views • 37 slides
Crypto horror stories Daniel J. Bernstein University of Illinois at Chicago &amp; Technische

Crypto horror stories Daniel J. Bernstein University of Illinois at Chicago &amp; Technische

Crypto horror stories Daniel J. Bernstein University of Illinois at Chicago &amp; Technische Universiteit Eindhoven Crypto horror stories Daniel J. Bernstein Horror story 1 RC4 Crypto horror stories Daniel J. Bernstein RC4 stream cipher:

799 views • 61 slides
Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall: defini.ons of encryp.on Perfect secrecy CPA security CCA security Today Prac.cal construc.ons 9/9/2009 598MAN Applied Cryptography

490 views • 28 slides
WEP Weak IVs Revisited Kazukuni Kobara and Hideki Imai IIS, Univ. of Tokyo RCIS, AIST 1

WEP Weak IVs Revisited Kazukuni Kobara and Hideki Imai IIS, Univ. of Tokyo RCIS, AIST 1

WEP Weak IVs Revisited Kazukuni Kobara and Hideki Imai IIS, Univ. of Tokyo RCIS, AIST 1 Outline Available options for securing WLAN access WEP and its key recovery attack Condition to recover the WEP key Good and bad strategies

378 views • 24 slides
How to Recover Any Byte of Plaintext on RC4 Toshihiro Ohigashi (Hiroshima University) Takanori

How to Recover Any Byte of Plaintext on RC4 Toshihiro Ohigashi (Hiroshima University) Takanori

15 August, 2013 SAC 2013 @ Simon Fraser University How to Recover Any Byte of Plaintext on RC4 Toshihiro Ohigashi (Hiroshima University) Takanori Isobe (Kobe University) Yuhei Watanabe (Kobe University) Masakatu Morii (Kobe University) 1

555 views • 21 slides
Introduction to cryptographic protocols models, proofs, and attacks Karthikeyan Bhargavan INRIA

Introduction to cryptographic protocols models, proofs, and attacks Karthikeyan Bhargavan INRIA

Introduction to cryptographic protocols models, proofs, and attacks Karthikeyan Bhargavan INRIA karthikeyan.bhargavan@inria.fr http://prosecco.inria.fr/personal/karthik September 2013 (Based on slides by Stphanie Delaune, Bruno Blanchet,

1.36k views • 96 slides
On Improving Data Complexity of Attacks on RC5 A. Biryukov V. Velichkov Laboratory of

On Improving Data Complexity of Attacks on RC5 A. Biryukov V. Velichkov Laboratory of

Motivation Previous Work Improved Filter Conclusion On Improving Data Complexity of Attacks on RC5 A. Biryukov V. Velichkov Laboratory of Algorithmics, Cryptology and Security (LACS) University of Luxembourg Early Symmetric Crypto 2015

533 views • 37 slides

More recommend