wireless lan
play

Wireless LAN Setup & Optimizing Wireless Client in Linux - PowerPoint PPT Presentation

Dec 28, 2023 •125 likes •278 views

Wireless LAN Setup & Optimizing Wireless Client in Linux Hacking and Cracking Wireless LAN Setup Host Based AP ( hostap ) in Linux & freeBSD Securing & Managing Wireless LAN : Implementing 802.1x EAP-TLS PEAP-MSCHAPv2

  1. Wireless LAN  Setup & Optimizing Wireless Client in Linux  Hacking and Cracking Wireless LAN  Setup Host Based AP ( hostap ) in Linux & freeBSD  Securing & Managing Wireless LAN : Implementing 802.1x EAP-TLS PEAP-MSCHAPv2 , FreeRADIUS + dialupadmin + MySQL ( FULL DEMO  )  Make Deep Security with WPA2 Wifi Protected Access = 802.1x + ( TKIP or CCMP )

  2. Wireless LAN Security Wireless LAN Security Protecting a WLAN involves three major elements: • Authenticating the person (or device) connecting to the network so that you have a high degree of confidence that you know who or what is trying to connect. • Authorizing the person or device to use the WLAN so that you control who has access to it. • Protecting the data transmitted on the network so that it is safe from eavesdropping and unauthorized modification. http://go.microsoft.com/fwlink/?LinkId go.microsoft.com/fwlink/?LinkId=23481 =23481 http://

  3. Port-Based Network Authentication ► What is 802.1x ? What is 802.1x ? “Port-based network access control makes use of the physical access characteristics of IEEE 802 LAN infrastructures in order to provide a means of authenticating and authorizing devices attached to a LAN port that has point-to-point connection characteristics, and of preventing access to that port in cases which the authentication and authorization fails. A port in this context is a single point of attachment to the LAN infrastructure.” http://standards.ieee.org/getieee802/download/802.1X-2001.pdf http://standards.ieee.org/getieee802/download/802.1X-2001.pdf http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.html http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.html

  4. What is EAP ? ► What is EAP ? Extensible Authentication Protocol (EAP) Extensible Authentication Protocol (EAP) A flexible protocol used to carry arbitrary authentication information over PPP It used by supplicant and authenticator to It used by supplicant and authenticator to communicate communicate http://www.ietf.org/rfc/rfc3748.txt http://www.ietf.org/rfc/rfc3748.txt

  5. ► It requires entitie(s) to play three roles in the It requires entitie(s) to play three roles in the authentication process: that of an supplicant supplicant , an , an authentication process: that of an authenticator and an and an authentication server authentication server authenticator http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.html http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.html

  6. The authenticator (Access Point) becomes the middleman for relaying EAP received in 802.1x packets to an authentication server by using RADIUS to carry the EAP information

  7. EAP authentication methods EAP authentication methods ► EAP-MD5 ► EAP–TLS ► EAP-Tunneled TLS (TTLS) ► EAP-Protected EAP (PEAP) ► EAP-Lightweight EAP (LEAP) ► EAP-MSCHAPv2 ► PEAP-MSCHAPv2

  8. EAP-MD5 ► EAP-MD5 MD5-Challenge requires sername/password MD5-Challenge requires sername/password and is equivalent to the PPP CHAP protocol [ and is equivalent to the PPP CHAP protocol [ RFC1994]. This method does not provide ]. This method does not provide RFC1994 dictionary attack resistance, mutual dictionary attack resistance, mutual authentication or key derivation and has authentication or key derivation and has therefore little use in a wireless therefore little use in a wireless authentication enviroment. authentication enviroment. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.

  9. ► EAP-Transport Layer Security (EAP-TLS) It uses public key certificates to authenticate both the wireless clients and the RADIUS servers by establishing an encrypted TLS session between the two. Provides mutual authentication, negotiation of the encryption method, and encrypted key determination between the client and the authenticator http://www.ietf.org/rfc/rfc2716.txt http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.

  10. EAP-TTLS ► EAP-TTLS Sets up a encrypted TLS-tunnel for safe Sets up a encrypted TLS-tunnel for safe transport of authentication data. Within the transport of authentication data. Within the TLS tunnel, (any) other authentication TLS tunnel, (any) other authentication methods may be used. Developed by Funk methods may be used. Developed by Funk Software and Meetinghouse and is currently Software and Meetinghouse and is currently an IETF draft. an IETF draft. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.

  11. EAP-Protected EAP (PEAP) ► EAP-Protected EAP (PEAP) Uses, as EAP-TTLS, an encrypted TLS-tunnel. Uses, as EAP-TTLS, an encrypted TLS-tunnel. Supplicant certificates for both EAP-TTLS Supplicant certificates for both EAP-TTLS and EAP-PEAP are optional, but server (AS) and EAP-PEAP are optional, but server (AS) certificates are required. Developed by certificates are required. Developed by Microsoft, Cisco and RSA Security and is Microsoft, Cisco and RSA Security and is currently an IETF draft. currently an IETF draft. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.

  12. EAP-MSCHAPv2 ► EAP-MSCHAPv2 Requires username/password and is Requires username/password and is basically an EAP encapsulation of MS- basically an EAP encapsulation of MS- CHAP-v2 [RFC2759 RFC2759]. Usually used ]. Usually used CHAP-v2 [ inside of a PEAP encrypted tunnel. inside of a PEAP encrypted tunnel. Developed by Microsoft and is Developed by Microsoft and is currently an IETF draft. currently an IETF draft. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO. http://www.gnist.org/%7Elars/courses/04thales/8021X-HOWTO.

  13. ► PEAP-MSCHAPv2 Combination of Protected EAP (PEAP) Combination of Protected EAP (PEAP) and EAP-MSCHAPv2 and EAP-MSCHAPv2

  14. RADIUS ( Authentication RADIUS ( Authentication Server) Server) ► Remote Authentication Dial-In User Service Remote Authentication Dial-In User Service (RADIUS) http://www.ietf.org/rfc/rfc2865.txt http://www.ietf.org/rfc/rfc2865.txt (RADIUS) ► the "de-facto" back-end authentication the "de-facto" back-end authentication server used in 802.1X. server used in 802.1X. ► AAA (Authentication, Authorization and AAA (Authentication, Authorization and Accounting ) Support Accounting ) Support ► FreeRADIUS is a fully GPL'ed implemented FreeRADIUS is a fully GPL'ed implemented RADIUS server RADIUS server http://www.freeradius.org http://www.freeradius.org

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading,

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading,

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading, interference, hidden terminal problem IEEE 802.11 ( wi-fi ) CSMA/CA reflects wireless channel characteristics DIFS, SIFS,

1.43k views • 83 slides
1 Wireless standards Path Loss Phenomena Wireless standards Path Loss Phenomena Open

1 Wireless standards Path Loss Phenomena Wireless standards Path Loss Phenomena Open

Outline Outline What is wireless? Overview Wireless parameters Cellular architecture Wireless Networks Wireless Networks Media multiple access Wireless LAN 802.11 MANET Mobile Ad-hoc NETworks Amnon Jonas

525 views • 13 slides
Wireless networks 1 Overview Wireless networks basics IEEE 802.11 (Wi-Fi) a/b/g/n ad

Wireless networks 1 Overview Wireless networks basics IEEE 802.11 (Wi-Fi) a/b/g/n ad

Wireless networks 1 Overview Wireless networks basics IEEE 802.11 (Wi-Fi) a/b/g/n ad Hoc MAC protocols ad Hoc routing DSR AODV 2 Wireless Networks Autonomous systems of mobile hosts connected by wireless links Nodes are

1.3k views • 102 slides
Timothy R. Newman, Ph.D. Wireless @ VT Wireless @ Virginia Tech Wireless Umbrella Group

Timothy R. Newman, Ph.D. Wireless @ VT Wireless @ Virginia Tech Wireless Umbrella Group

Timothy R. Newman, Ph.D. Wireless @ VT Wireless @ Virginia Tech Wireless Umbrella Group MPRG, CWT, VTVT, WML, Antenna Group, Time Domain Lab, DSPRL Officially rolled out June 2006 Currently 32 tenure track faculty and more

304 views • 19 slides
The Challenge of Legacy Assets Richard Lucas, BSc(Eng) MBA MD of ASH Wireless ASH Wireless is an

The Challenge of Legacy Assets Richard Lucas, BSc(Eng) MBA MD of ASH Wireless ASH Wireless is an

The Impact of the Internet of Things on our Lives. The Challenge of Legacy Assets Richard Lucas, BSc(Eng) MBA MD of ASH Wireless ASH Wireless is an electronics design consultancy Specialising in wireless and sensors An Ofgem funded Network

1.7k views • 26 slides
Topic 2b Wireless MAC Chapter 7 Wireless and Mobile Networks Computer Networking: A Top Down

Topic 2b Wireless MAC Chapter 7 Wireless and Mobile Networks Computer Networking: A Top Down

Topic 2b Wireless MAC Chapter 7 Wireless and Mobile Networks Computer Networking: A Top Down Approach 7 th edition Jim Kurose, Keith Ross Pearson/Addison Wesley April 2016 Wireless and Mobile Networks 7-1 Ch. 7: Wireless and Mobile

331 views • 29 slides
UNM Wireless Updates Current status of the continued efforts to increase wireless coverage on

UNM Wireless Updates Current status of the continued efforts to increase wireless coverage on

UNM Wireless Updates Current status of the continued efforts to increase wireless coverage on campus, wireless authentication and improvements June 6 7, 2019 Wireless Improvements Top Areas of Improvement 2018 Chemistry Duck

773 views • 17 slides
Writing a book on wireless security available online is like writing a book on safe Internet

Writing a book on wireless security available online is like writing a book on safe Internet

Agenda The purpose of this presentation is to: FIRST Technical Colloquium Uppsala, Sweden Give an overview of Wireless technology Highlight the security issues Securing Your associated with IEEE 802.11b Wireless LAN wireless LANs Suggest

413 views • 16 slides
Ulwimo ULtimate WIreless MObility Developments within indoor wireless communication

Ulwimo ULtimate WIreless MObility Developments within indoor wireless communication

Ulwimo ULtimate WIreless MObility Developments within indoor wireless communication Marketpotential of the many and varying solutions Koen Mioulet Overview: 1.Ulwimo, introduction 2.Indoor wireless market dynamics 3.Indoor wireless & DAS

567 views • 28 slides
Wireless Sensor Wireless Sensor Networks (WSNs) Networks (WSNs) Technological Revolution

Wireless Sensor Wireless Sensor Networks (WSNs) Networks (WSNs) Technological Revolution

Wireless Sensor Wireless Sensor Networks (WSNs) Networks (WSNs) Technological Revolution Computer Networking 1. 1990 LAN Internet Wireless Communications 2. 2000 GSM/UMTS WLAN Wireless Sensing Technologies 2010

617 views • 60 slides
25 + Years in Silicon Wireless Ran Yan UCSB: 1986 - 1990 Have a GREAT Team Be

25 + Years in Silicon Wireless Ran Yan UCSB: 1986 - 1990 Have a GREAT Team Be

25 + Years in Silicon Wireless Ran Yan UCSB: 1986 - 1990 Have a GREAT Team Be Persistent 2 Silicon Wireless: Device Wireless + Low-Power = Mobile Internet ! Silicon Wireless: Circuit Wireless LAN (WiFi) worldwide sales: <

234 views • 6 slides
Wireless Multimedia System (Topic 3) Wireless Link I: Fundamental

Wireless Multimedia System (Topic 3) Wireless Link I: Fundamental

Wireless Multimedia System (Topic 3) Wireless Link I: Fundamental issues of Modulation and Multiple Access http://wmlab.csie.ncu.edu.tw/course/wms Wireless & Multimedia Network Laboratory

1.28k views • 113 slides
Wireless world in NS Padma Haldar USC/ ISI 1 Outline Introduction Wireless basics

Wireless world in NS Padma Haldar USC/ ISI 1 Outline Introduction Wireless basics

Wireless world in NS Padma Haldar USC/ ISI 1 Outline Introduction Wireless basics Wireless internals Ad hoc routing Mobile IP Satellite networking Directed diffusion 2 Contributions to mobility in ns Original

554 views • 38 slides
Wireless Networks L ecture 11: Wireless LANs Aloha and 802 Wireless Peter Steenkiste CS and ECE,

Wireless Networks L ecture 11: Wireless LANs Aloha and 802 Wireless Peter Steenkiste CS and ECE,

Wireless Networks L ecture 11: Wireless LANs Aloha and 802 Wireless Peter Steenkiste CS and ECE, Carnegie Mellon University Peking University, Summer 2016 1 Peter A. Steenkiste, CMU Outline Data link fundamentals And what changes in

386 views • 12 slides
Wireless Multimedia System (Topic 4) Wireless Link I: Multiple

Wireless Multimedia System (Topic 4) Wireless Link I: Multiple

Wireless Multimedia System (Topic 4) Wireless Link I: Multiple Access Control for Multimedia Dr. Eric Hsiaokuang Wu http://wmlab.csie.ncu.edu.tw/course/wms Wireless & Multimedia Network Laboratory

1.51k views • 120 slides
Wireless Radiation The Science and Politics of Cell Phones, Laptops, and Other Wireless Devices

Wireless Radiation The Science and Politics of Cell Phones, Laptops, and Other Wireless Devices

Wireless Radiation The Science and Politics of Cell Phones, Laptops, and Other Wireless Devices and 100 Ways To Protect Yourself and Your Family Desiree Jaworski Center For Safer Wireless Presented at Holistic Moms Network February 18,

1.35k views • 95 slides
Detecting Advanced Network Threats Using a Similarity Search AIMS 2016 Wednesday 22 nd June, 2016

Detecting Advanced Network Threats Using a Similarity Search AIMS 2016 Wednesday 22 nd June, 2016

Detecting Advanced Network Threats Using a Similarity Search AIMS 2016 Wednesday 22 nd June, 2016 Milan ermk Pavel eleda State of the Art of Network Data Analysis Methods classification based on the detection approach Statistical Soft

215 views • 17 slides
Sampling and Reconstruction Using Bloom Filters Neha Sengupta 1 , Amitabha Bagchi 1 , Srikanta

Sampling and Reconstruction Using Bloom Filters Neha Sengupta 1 , Amitabha Bagchi 1 , Srikanta

Sampling and Reconstruction Using Bloom Filters Neha Sengupta 1 , Amitabha Bagchi 1 , Srikanta Bedathur 2 , Maya Ramanath 1 1 IIT Delhi 2 IBM India Research Lab Bloom Filters Compact storage m bits, k hash functions Set Membership

348 views • 19 slides
Student Research Project 1: HomePlug Security Axel Puppe, Jeroen Vanderauwera February 2, 2010

Student Research Project 1: HomePlug Security Axel Puppe, Jeroen Vanderauwera February 2, 2010

Introduction Reverse-engineering Other attack vectors Attack scenario Conclusion Questions? Student Research Project 1: HomePlug Security Axel Puppe, Jeroen Vanderauwera February 2, 2010 Axel Puppe, Jeroen Vanderauwera Student Research

310 views • 16 slides
Multilocality in Rwanda: forced of deliberate choice? Ine Cottyn Phd Candidate International

Multilocality in Rwanda: forced of deliberate choice? Ine Cottyn Phd Candidate International

Multilocality in Rwanda: forced of deliberate choice? Ine Cottyn Phd Candidate International Development Studies I.R.R.J.B.Cottyn@uu.nl Dr. Gery Nijenhuis Assistant Professor Human Geography and Planning International Development Studies

1.22k views • 25 slides
CYBE R SE CURI T Y Pre se nte d b y Willia m Whitne y I I I Ga rla nd Po we r & L ig

CYBE R SE CURI T Y Pre se nte d b y Willia m Whitne y I I I Ga rla nd Po we r & L ig

CYBE R SE CURI T Y Pre se nte d b y Willia m Whitne y I I I Ga rla nd Po we r & L ig ht 3/ 23/ 2016 Wha t is Cyb e r Se c urity? ? ? Me a sure s ta ke n to pro te c t a c o mpute r o r c o mpute r syste m (a s o n the I

577 views • 6 slides
Chapter 2: First Declension Chapter 2 covers the following: the term declension, the three basic

Chapter 2: First Declension Chapter 2 covers the following: the term declension, the three basic

Chapter 2: First Declension Chapter 2 covers the following: the term declension, the three basic qualities of Latin nouns, that is, case, number and gender, basic sentence structure, subject, verb, direct object and so on, the six cases of Latin

332 views • 9 slides
BENJAMIN BEBERNESS, CHIEF INFORMATION OFFICER SNOHOMISH COUNTY PUBLIC UTILITY DISTRICT AGENDA

BENJAMIN BEBERNESS, CHIEF INFORMATION OFFICER SNOHOMISH COUNTY PUBLIC UTILITY DISTRICT AGENDA

BENJAMIN BEBERNESS, CHIEF INFORMATION OFFICER SNOHOMISH COUNTY PUBLIC UTILITY DISTRICT AGENDA Security Culture Culture of Collaboration Culture of Thinking Outside the Box Culture of Managing Risk - Risk Assessment WHAT IS SECURITY

342 views • 18 slides
Cooling the Flames of Defensiveness Tour Guide: Raj Dhasi Defensiveness (p. 1) Questions,

Cooling the Flames of Defensiveness Tour Guide: Raj Dhasi Defensiveness (p. 1) Questions,

Cooling the Flames of Defensiveness Tour Guide: Raj Dhasi Defensiveness (p. 1) Questions, comments, rejections, ahas Setting limits on objectionable behaviour Skills to de-escalate defensiveness in others Recognizing and managing your

510 views • 12 slides

More recommend