1. Home
  2. Networking
  3. 802.11 security. wi-fi protected access and 802.11i

Summary

Unfortunately, none of the original security mechanisms in IEEE 802.11 wireless local networks were robust. Adversaries easily bypass both the access control mechanisms and the shared-key authentication mechanism. Serious flaws in the WEP encapsulation process allow recovery of the secret encryption key and the malicious modification and replay of WEP-protected datagrams. Each of these problems alone poses a significant threat to deployed wireless networks?together, they make exploiting wireless networks easy.

Fortunately, both WPA and RSN prevent the confidentiality, integrity, and access control attacks (see Chapter 7). Unfortunately, however, neither WPA nor RSN prevents denial-of-service attacks using forged management frames. The topic was hotly debated during several TGi meetings, and the consensus of the task group, not necessarily the authors, was that DoS attacks are a fact of life in wireless networking and that protecting the management frames would create downward compatibility problems.



    		Praise for 'Real 802.11 Security: Wi-Fi Protected Access and 802.11i'
    		Preface
    		Acknowledgments
    		Part I: What Everyone Should Know
    		Part II: The Design of Wi-Fi Security
    		Part III: Wi-Fi Security in the Real World
    		Chapter 14. Public Wireless Hotspots
    		Chapter 15. Known Attacks: Technical Review
    		Review of Basic Security Mechanisms
    		Review of Previous IEEE 802.11 Security Mechanisms
    		Attacks Against the Previous IEEE 802.11 Security Mechanisms
    		Man-in-the-Middle Attacks
    		Problems Created by Man-in-the-Middle Attacks
    		Denial-of-Service Attacks
    		Summary
    		Chapter 16. Actual Attack Tools
    		Chapter 17. Open Source Implementation Example
    		Appendixes
    		Acronyms
    		References