Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : Wi-Fi Security : WLAN Vulnerabilities

WLAN Vulnerabilities

Apr 08,2010 by alperen

small font medium font large font
image


There are a number of security vulnerabilities in 802.11 that have
unfortunately been discovered by malicious hacker exploits. These vulnerabilities
constitute passive types of attacks that are designed to
decrypt traffic with respect to algorithms based on statistical analysis
and active attacks designed to decipher network traffic. An active attack
is basically accomplished by confusing the access point to give up to the
attacker information it should not. This is the reason why default passwords
and settings should always be changed as soon as you deploy your
WLAN.


The most significant problem rests with WEP, which was itself
designed to make a wireless network nearly as secure as the wired Ethernet.
The biggest problems result from using the same WEP key over
and over again. The more you use the same keys, the greater the chance
an attacker will learn this piece of information so that he might ultimately
use it against you for the purpose of accessing your WLAN. The
vulnerability here rests in the fact that the same key is used for extended
time periods, and nobody really thinks to change it. When you think
of a WEP key, you should remember to change the key as often as you
might change your logon password.


The initialization vector (IV) constitutes the 24-bit field transmitted in
clear text as part of WEP. This 24-bit information initializes the RC4
algorithm key string. The IV is basically a short field used for encryption.
The IV is meant to protect your information, but a short IV ultimately
gets repeated many times over the network when there is a great deal of
traffic. The problem is that an attacker may easily use this information
to intercept your wireless data channel, find your key stream, and then
use this information to decipher the encrypted data on your WLAN.
Since the IV is actually an element from the RC4 encryption key, once
the hacker has intercepted this bit of information and can intercept
every packet key. Since the RC4 key is weak in and of itself, this could
indicate the precursor of a significant attack. In fact, this attack could
easily be run a script kiddie because once the secret key is recovered, it
is possible to analyze only a small portion of the wireless network traffic
and be able to have full access to the WLAN.


There isn’t any protection for the actual composition of the encryption
that WEP has to offer except that the MAC portion of the 802.11
standard uses the CRC element described earlier as a form of privacy
protection.
408 times read

Related news
» Common Security Pitfalls
by alperen posted on Apr 08,2010
» Subtle Attacks
by alperen posted on Apr 08,2010
» Conclusion: Keeping Your WLAN Secure
by alperen posted on Mar 30,2010
» Managing Keys
by alperen posted on Apr 08,2010
» Vendor Trials
by alperen posted on May 06,2010
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

alperen

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.