wifi security
play

WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) - PowerPoint PPT Presentation

Dec 03, 2022 •19 likes •479 views

Advanced Network Security WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise WPA3 Key reinstallaton aaacas 2 WiFi IEEE 802.11 standard Some terminology: Staton (STA) is a

  1. Advanced Network Security WiFi security Joeri de Ruiter

  2. Agenda ● WiFi security ● WPA(2) Personal ● Enterprise ● ● WPA3 ● Key reinstallaton aaacas 2

  3. WiFi IEEE 802.11 standard ● Some terminology: ● Staton (STA) is a device sith WiFi capability ● Access Point (AP) is a staton that other statons can connect to to get access to a ● netsora, also referred to as authentcator Supplicant, used to indicate the client shen authentcatng ● SSID (Service Set Identfer) is the name of the netsora ● MIC: Message Integrity Checa ● Prevents confusion sith MAC (Media Access Control) addresses – 3

  4. WiFi security Open netsoras ● Wireless Equivalent Privacy (WEP) ● WiFi Protected Access (WPA) ● Personal ● Enterprise ● Hidden netsoras and MAC address shitelists ● Does not provide real security ● 4

  5. WiFi security 5

  6. Open netsora security No encrypton on the trafc ● Also used for public hotspots sith captve portal ● Possible for an aaacaer to eavesdrop on all netsora trafc ● Typically anyone can connect to the netsora ● Possible to flter based on MAC address, but can easily be spoofed ● Evil tsin aaacas: a malicious access point pretend to be a preferred netsora ● of the user User sill connect to the aaacaer’s netsora, putng the aaacaer in a man-in-the- ● middle positon KARMA: special case of the evil tsin aaaca ● Observe probe requests by clients and pretend to be that netsora ● 6

  7. WEP security ● Cryptographic algorithm based on RC4 used to protect data trafc ● Broaen since a long tme ● Easy to craca and about as good as an open netsora ● Stop using it! 7

  8. WPA(2) security Data confdentality algorithms ● Temporary Key Integrity Protocol (TKIP) ● Uses same hardsare as WEP – Also included in WPA2 for bacasards compatbility – Counter Mode sith CBC-MAC Protocol (CCMP) ● Based on AES – Authentcaton methods Encrypton Authentcaton ● Pre-shared aey (PSK) WPA Personal TKIP PSK ● IEEE 802.1x authentcaton WPA Enterprise TKIP 802.1x ● Uses Extensible Authentcaton Protocol (EAP) – WPA2 Personal CCMP PSK WPA2 Enterprise CCMP 802.1x 8

  9. TKIP security ● Deprecated in the IEEE 802.11 standard ● Based on the RC4 stream cipher Knosn to have biases that can be exploited to breaa it ● ● Possible to inject and decrypt pacaets 1 Only taaes about an hour to perform the aaaca ● Relies on the generaton of identcal pacaets ● 1 All Your Biases Belong To Us: Breaaing RC4 in WPA-TKIP and TLS by Mathy Vanhoef and Frana Piessens, Usenix Security 2015 9

  10. Key hierarchy Pairsise master aey (PMK): secret aey shared betseen the client and access ● point Pairsise transient aey (PTK): a concatenaton of the follosing session aeys ● Key Confrmaton Key (KCK): used for message authentcaton in 4-say handshaae – Key Encrypton Key (KEK): used for encrypton of aeys – Temporal Key (TK): aey used for confdentality and integrity of the data – Group master aey (GMK): optonal aey used to derive GTK ● Group temporal aey (GTK): aey shared betseen all connected clients and ● the access point – Used for broadcast and multcast trafc 10

  11. WiFi connecton phases ● Discovery Find nearby netsoras ● Probe request Netsoras announce capabilites ● Probe response(security parameters) ● Authentcaton Authentcaton request Typically “Open” Authentcaton response ● ● (Re)Associaton Associaton request(security parameters) Associaton response Agreement on security algorithms ● ● Optonal: 802.1x authentcaton 802.1x authentcaton 4-say handshaae ● Optonal: 4-say handshaae Data ● Data exchange 11

  12. 4-say handshaae Based on a shared secret PMK ● Can be the pre-shared aey or the output of the 802.1x authentcaton ● Mutual authentcaton of user and access point ● Verify shether both anos PMK ● Also used for negotaton of fresh aeys ● Negotaton of Pairsise Transient Key (PTK) ● If a MIC (Message Integrity Code) is included, it is computed using the Key ● Confrmaton Key (KCK) If a aey is included, it is encrypted using the Key Encrypton Key (KEK) ● 12

  13. 4-say handshaae (simplifed) Supplicant Authentcator ANonce Derive PTK SNonce, MIC Derive PTK ANonce, MIC, Enc KEK (GTK) MIC Install PTK and GTK Install PTK Encrypted data frames 13

  14. Key derivaton ANonce, MAC address A, SNonce, MAC address S KCK PTK PMK PRF KEK TK PRF (pseudo-random functon) is typically a SHA-based HMAC ● PTK is split into the KCK, the KEK and the TK ● 14

  15. WPA(2) Personal Uses pre-shared aey (PSK) for authentcaton ● Can be derived from an ASCII passsord using a aey derivaton functon ● (KDF): PSK = KDF(passsord, SSID) “Open” method used in the authentcaton phase ● Actual authentcaton taaes place in the 4-say handshaae ● PSK used directly as PMK in the 4-say handshaae ● 15

  16. WPA(2) Personal – Key derivaton ANonce, MAC address A, SSID SNonce, MAC address S KCK PTK PSK / PMK Passsord KDF PRF KEK TK 4-say handshaae Key derivaton for authentcaton based on passsord 16

  17. WPA(2) Personal - Aaacas Which informaton is available to a passive aaacaer that observes a ● successful connecton including the 4-say handshaae? SSID, MAC addresses, nonces ● Enough informaton to perform ofine brute-force aaacas ● For example, dictonary aaacas or rainbos table aaacas ● What is the problem sith rainbos tables? ● What can an aaacaer do once the PSK is anosn? ● Connect to the netsora ● Eavesdrop on other users ● If 4-say handshaae is observed, shich might be possible to force by sending a – deauthentcaton message to the client and access point Ofen WPA passsord is shared, for example, in cofee bars or restaurants... ● 17

  18. WPA(2) Enterprise ● Not alsays convenient (or secure) to share one aey/passsord sith all users ● Re-use existng credentals Usernames and passsords ● Certfcates ● ● Authentcaton using IEEE 802.1x ● For example, used in eduroam 18

  19. IEEE 802.1x ● Extensible Authentcaton Protocol (EAP) over LAN (EAPOL) ● Actual authentcaton done by authentcaton server Typically a RADIUS server (Remote Authentcaton Dial-In User ● Service) Anonymous identty used to select RADIUS server ● ● Common EAP methods used TLS ● PEAP ● TTLS ● ● Key provided by the authentcaton server to the client and access point 19

  20. EAP: TLS Mutual authentcaton betseen user and authentcaton server via TLS using ● certfcates Key management difcult ● All users need a public aey pair and corresponding certfcate ● Important to properly checa certfcates ● 20

  21. EAP: PEAP Protected Extensible Authentcaton Protocol (PEAP) ● Provides a protecton layer for legacy EAP methods (inner authentcaton ● method) In partcular MS-CHAPv2 ● TLS tunnel betseen user and authentcaton server ● Typically only server authentcaton ● MS-CHAPv2 can be used to authentcate using username/passsord ● combinaton Again, important to checa certfcate ● 21

  22. EAP: TTLS Tunnelled TLS (TTLS) ● Similar to PEAP: provide a TLS tunnel to use legacy authentcaton methods ● (inner authentcaton method) More fexible and alloss for more authentcaton methods ● Not only ones that have EAP support ● Once again, important to verify certfcates ● 22

  23. EAP-PEAP Authentcaton server Supplicant (RADIUS) Authentcator Anonymous identty (if confgured) 802.11 Associaton EAP: request identty EAP: identty RADIUS: Access request, identty EAP: Start EAP-PEAP RADIUS: Start EAP-PEAP Authentcaton and aey exchange inside TLS tunnel EAP: Success RADIUS: Access accepted, aey material 4-say handshaae 23

  24. eduroam Alloss users from one insttute to use the sireless netsora at another ● insttute Uses 801.2x authentcaton ● Explained in RFC 7593 ● Federated authentcaton: authentcaton delegated to home insttuton ● Routng based on domain (e.g. ru.nl in anonymous@ru.nl) ● EAP messages forsarded to home insttuton’s RADIUS server ● Similar system for governments: govroam ● 24

  25. eduroam hierarchy Confederaton top-level RADIUS Server (TLR) ● E.g. Europe or Asia and Pacifc region ● Federaton-Level RADIUS servers (FLRs) ● E.g. SURF for .nl ● Identty provider (IdP) ● E.g. Radboud University for ru.nl ● 25

  26. eduroam Source: haps:/ /sss.bsc.es/marenostrum/access-to-eduroam 26

  27. Issues sith PEAP and TTLS ● Who uses eduroam? ● Who confgured an anonymous identty? ● Who confgured a CA? ● Who confgured a hostname for the RADIUS server? 27

  28. Issues sith PEAP and TTLS If no anonymous identty is confgured, you are sending your real username in ● plaintext Most inner authentcaton methods are broaen ● MSCHAPv2 can easily be cracaed ● PAP (Passsord Authentcaton Protocol): plaintext username/passsord ● But this inner authentcaton is protected using a TLS tunnel, right? ● Hos do you checa the certfcate? ● 28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

WiFi security Harald Vranken 1 Agenda WiFi security WEP WPA(2) WPA3 2 WiFi

WiFi security Harald Vranken 1 Agenda WiFi security WEP WPA(2) WPA3 2 WiFi

Advanced Network Security WiFi security Harald Vranken 1 Agenda WiFi security WEP WPA(2) WPA3 2 WiFi IEEE 802.11 standard Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications original

721 views • 48 slides
WiFi security Harald Vranken 1 Agenda Introduction to WiFi Open WiFi networks Home

WiFi security Harald Vranken 1 Agenda Introduction to WiFi Open WiFi networks Home

Advanced Network Security (2019-2020) WiFi security Harald Vranken 1 Agenda Introduction to WiFi Open WiFi networks Home WiFi network IEEE 802.11 WEP WPA/WPA2/WPA3 Personal/Enterprise Eduroam Attacks 2

674 views • 45 slides
WiFi Basics & Security Matthias Vallentin vallentin@net.in.tum.de Vorlesung

WiFi Basics & Security Matthias Vallentin vallentin@net.in.tum.de Vorlesung

WiFi Basics & Security Matthias Vallentin vallentin@net.in.tum.de Vorlesung Internetprotokolle SS06 Prof. Anja Feldmann, Ph.D. Outline 802.11 (WiFi) Basics Standards: 802.11{a,b,g,h,i} CSMA/CA WiFi Security

998 views • 42 slides
WiFi Social Engineering BIO Gabriel Mathenge Security enthusiast Security consultant at

WiFi Social Engineering BIO Gabriel Mathenge Security enthusiast Security consultant at

WiFi Social Engineering BIO Gabriel Mathenge Security enthusiast Security consultant at Ernst and Young (EY) Penetration testing and red teaming T: https://twitter.com/_V1VI E: gabriel@thevivi.net QUESTIONS Stop me whenever youre

891 views • 42 slides
Incentivize decentralized WiFi roaming through VPN on home routers RP2 rp-id 25, Security and

Incentivize decentralized WiFi roaming through VPN on home routers RP2 rp-id 25, Security and

Incentivize decentralized WiFi roaming through VPN on home routers RP2 rp-id 25, Security and Network Engineering, UvA Sander.Lentink@os3.nl Peter.Boers@surfnet.nl 2019-11-13 1 / 38 Introduction We desire Wi-Fi Wi-Fi being the best

576 views • 38 slides
INTERNET OF TARGETS Leif Nixon Sarcasm a pair vibrator with bluetooth wtf? no wifi no

INTERNET OF TARGETS Leif Nixon Sarcasm a pair vibrator with bluetooth wtf? no wifi no

INTERNET OF TARGETS Leif Nixon Sarcasm a pair vibrator with bluetooth wtf? no wifi no food no wifi no food do you have devices that need your wifi to be working? security cameras thermostats smart appliances smoke alarms smart

1.1k views • 82 slides
The security of existing wireless networks Cellular networks GSM o UMTS o WiFi LANs

The security of existing wireless networks Cellular networks GSM o UMTS o WiFi LANs

The security of existing wireless networks Cellular networks GSM o UMTS o WiFi LANs Bluetooth Security and Cooperation in Wireless Networks Georg-August University Gttingen Security in Wireless Networks Wireless networks are

519 views • 48 slides
Overview Basic WiFi concepts Some deployment issues WiFi versions 15-441/641: WiFi

Overview Basic WiFi concepts Some deployment issues WiFi versions 15-441/641: WiFi

11/20/2019 Overview Basic WiFi concepts Some deployment issues WiFi versions 15-441/641: WiFi Networks 15-441 Fall 2019 Profs Peter Steenkiste & Justine Sherry Fall 2019 https://computer-networks.github.io/fa19/ 2

717 views • 10 slides
WEP/WPA2 WiFi Password Security & Exploiting IP Based Surveillance Cameras By Basiru

WEP/WPA2 WiFi Password Security & Exploiting IP Based Surveillance Cameras By Basiru

WEP/WPA2 WiFi Password Security & Exploiting IP Based Surveillance Cameras By Basiru Mohammed Rajkumar Ramadhin Alexander Martin Introduction With growing advancement in the "Internet of Things" we must take a look at the

468 views • 29 slides
SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If you already provide free wifi in your establishment then Zyppee would definitely be of interest, considering the high footfall your business enjoy 's

228 views • 10 slides
Wifi Security -or- or Descending Into Depression g p and Drink Mike Kershaw / Dragorn d

Wifi Security -or- or Descending Into Depression g p and Drink Mike Kershaw / Dragorn d

Wifi Security -or- or Descending Into Depression g p and Drink Mike Kershaw / Dragorn d dragorn@kismetwireless.net @ki i l The plan 802.11 networks Well defended APs Well-defended APs Less Basic vulnerabilities

1.7k views • 148 slides
SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If you already provide free wifi at your branches then Magico would definitely be of interest, considering the high footfall your branches enjoy.

590 views • 9 slides
WiFi On Boats By Digital Yacht Presented by: Nick Heyes CEO Digital Yacht WiFi On Boats The

WiFi On Boats By Digital Yacht Presented by: Nick Heyes CEO Digital Yacht WiFi On Boats The

WiFi On Boats By Digital Yacht Presented by: Nick Heyes CEO Digital Yacht WiFi On Boats The Possibilities WiFi Brand name for wireless networking under IEEE standard 802.11 _________________ Wireless access to the internet Distribute

258 views • 12 slides
NVK WiFi Hotspot Solution 2015 Managed, Legally, Future Proof WiFi Hotspot Networks Agenda

NVK WiFi Hotspot Solution 2015 Managed, Legally, Future Proof WiFi Hotspot Networks Agenda

NVK WiFi Hotspot Solution 2015 Managed, Legally, Future Proof WiFi Hotspot Networks Agenda Basic WiFi Architecture Monetized WiFi Architecture NVKs Solution providing EnGenius Professional AP EnGenius EWS SOLUTION NVK

642 views • 47 slides
WIFI Code: WIFI Guest - welcome2 Welcome IMPORTANT - Housekeeping Notice: 1) Fire Alarms

WIFI Code: WIFI Guest - welcome2 Welcome IMPORTANT - Housekeeping Notice: 1) Fire Alarms

WIFI Code: WIFI Guest - welcome2 Welcome IMPORTANT - Housekeeping Notice: 1) Fire Alarms / Fire Exit 2) Toilets 3) Please turn Mobile Phones to SILENT Session slides will be circulated on email to ALL attendees. Annual

906 views • 74 slides
Leeds 7 June 2017 @GlobalCompactUK #GlobalGoalsUK @PRME_UKI @centre_glgr WIFI: Visitor WiFi

Leeds 7 June 2017 @GlobalCompactUK #GlobalGoalsUK @PRME_UKI @centre_glgr WIFI: Visitor WiFi

Leeds 7 June 2017 @GlobalCompactUK #GlobalGoalsUK @PRME_UKI @centre_glgr WIFI: Visitor WiFi https://www.youtube.com/playlist?list=PLkDIhymNyNmawvPzi W3jz95LRNr8piTh9 Videos courtesy of Project Everyone http://www.project-everyone.org/

297 views • 25 slides
A Dependently Typed Framework for Maintaining Invariants Lszl Nmeth Department of Computer

A Dependently Typed Framework for Maintaining Invariants Lszl Nmeth Department of Computer

A Dependently Typed Framework for Maintaining Invariants Lszl Nmeth Department of Computer Science Bilgi University, Istanbul TYPES06 - Nottingham Lszl Nmeth A Dependently Typed Framework for Maintaining Invariants

434 views • 11 slides
The XML Query Language Xcerpt Pattern Queries for XML and Semistructured Data Franc ois Bry

The XML Query Language Xcerpt Pattern Queries for XML and Semistructured Data Franc ois Bry

L M U Ludwig Maximilians Universitt Mnchen The XML Query Language Xcerpt Pattern Queries for XML and Semistructured Data Franc ois Bry and Sebastian Schaffert http://www.pms.informatik.uni-muenchen.de Institut f ur Informatik, LMU

217 views • 21 slides
Ontology-Based XQuerying of XML-Encoded Language Resources on Multiple Annotation Layers Georg

Ontology-Based XQuerying of XML-Encoded Language Resources on Multiple Annotation Layers Georg

Ontology-Based XQuerying of XML-Encoded Language Resources on Multiple Annotation Layers Georg Rehm 1 , Richard Eckart 2 , Christian Chiarcos 3 , Johannes Dellert 1 University of Tbingen 1 TU Darmstadt 2 University of Potsdam 3 SFB 441:

414 views • 27 slides
An Introduction to the Coalition Battle Management Services CBMS Overview and Objectives CBMS

An Introduction to the Coalition Battle Management Services CBMS Overview and Objectives CBMS

An Introduction to the Coalition Battle Management Services CBMS Overview and Objectives CBMS is a web service infrastructure that supports : The exchange of C-BML messages before, during and after runtime Data Distribution

647 views • 11 slides
Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Nonlinear

Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Nonlinear

Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Nonlinear Control Lecture # 12 Nonlinear Observers and Output Feedback Stabilization Local Observers x = f ( x, u ) , y = h ( x ) x = f ( x, u )

467 views • 30 slides
A few security issues to takeover 34% of all websites Johannes Dahse, PHP.RUHR 2019 Dortmund,

A few security issues to takeover 34% of all websites Johannes Dahse, PHP.RUHR 2019 Dortmund,

A few security issues to takeover 34% of all websites Johannes Dahse, PHP.RUHR 2019 Dortmund, Germany, 08.11.2019 1 Intro Johannes Dahse Former CTF addict Security Consultant RIPS open source, static analysis for PHP security Ph.D. Static

643 views • 37 slides
Dont trust user input Kirk Jackson, RedShield security.ac.nz, 25 Aug 2019 Building a secure

Dont trust user input Kirk Jackson, RedShield security.ac.nz, 25 Aug 2019 Building a secure

Dont trust user input Kirk Jackson, RedShield security.ac.nz, 25 Aug 2019 Building a secure web app Vulnerability Scan Configuration Review Penetration Testing Production Proxy IDS DLP File integrity monitoring Attacks AV Web

459 views • 30 slides
eb Security Software Studio yslin@DataLAB 1 OWASP Top 10 Security Risks in 2017 Rank Name

eb Security Software Studio yslin@DataLAB 1 OWASP Top 10 Security Risks in 2017 Rank Name

eb Security Software Studio yslin@DataLAB 1 OWASP Top 10 Security Risks in 2017 Rank Name 1 Injection 2 Broken Authentication and Session Management 3 Cross-Site Scripting (XSS) 4 Broken Access Control 5 Security Misconfiguration

944 views • 77 slides

More recommend