| View previous topic :: View next topic |
| Author |
Message |
tlmiller
Ultimate Member
Joined: 01 May 2024
Posts: 2434
Location: MD, USA
|
 Posted: Sun Nov 09, 2024 5:17 am Post subject: WPA-TKIP crack to be released |
 |
|
| Quote: | Two researchers from the Technical University of Darmstadt, Germany, have discovered a method of bypassing the Wi-Fi Protected Access (WPA) encryption used by many wireless routers.
The exploit takes advantage of a weakness on networks that use WPA with TKIP (Temporal Key Integrity Protocol, a security algorithm based on key switching that is used to strengthen the WPA encryption) by circumventing the algorithm that encrypts the Wi-Fi data packets. Researchers Erik Tews and Martin Beck, who are members of the ethical hacking group known as Aircrack-ng, have not only discovered how to bypass WPA, they've also created a tool to do so. They plan to release the tool at the PacSec conference next week in Tokyo, Japan, Aircrack-ng member Rick Farina confirmed to PC Magazine on Friday. |
Full story here
_________________
Debian Squeeze, Arch, Kubuntu mostly. Some Mandriva. Some Windows.
Desktops: shadowdragon, medusa
Laptops: bluedrake, banelord, sandwyrm, aardvark.
|
|
| Back to top |
|
tlmiller
Ultimate Member
Joined: 01 May 2024
Posts: 2434
Location: MD, USA
|
| Posted: Sun Nov 09, 2024 5:22 am Post subject: |
|
|
| I've switched over my wireless network to wpa2-PSK (AES), and I must say, it seems to run a LOT faster than it was with WPA-PSK (TKIP). The only downside is my 4310 doesn't work anymore. It sees the network, and will communicate, but will not establish a connection. I have no doubts it's due to it needing ndiswrapper as the latest versions of the Broadcom wireless drivers aren't available for sidux or Kubuntu 8.04 yet.
_________________
Debian Squeeze, Arch, Kubuntu mostly. Some Mandriva. Some Windows.
Desktops: shadowdragon, medusa
Laptops: bluedrake, banelord, sandwyrm, aardvark.
|
|
| Back to top |
|
JP
Linux Guru
Joined: 07 Jul 2024
Posts: 6670
Location: Central Montana
|
| Posted: Sun Nov 09, 2024 5:27 am Post subject: |
|
|
I guess I'm a dunce when it comes to exploit terminology .....
| Quote: | They plan to release the tool at the PacSec conference next week in Tokyo, Japan, Aircrack-ng member Rick Farina confirmed to PC Magazine on Friday.
With the exploit tool in hand, hackers will be able break into networks that have WPA with TKIP encryption. TKIP is a predecessor of AES and was developed to overcome the flaw with WEP [Wired Equivalent Private] security.
<snip>
As the exploit tool gains access to a computer, hackers can easily inject new packets and install and execute tools such as Metasploit that can give them permanent access. Metasploit is a large toolkit for testing exploits and it uses well known exploits in its arsenal. |
If these guys are | Quote: | | members of the ethical hacking group known as Aircrack-ng |
why are they making tools to help hackers get into other's systems? That doesn't sound very ethical to me.
_________________
Dell Box - Arch Linux
Dell Lappy - DreamLinux 3.5 - Default OS
Mepis 8.0 - Backup
|
|
| Back to top |
|
tlmiller
Ultimate Member
Joined: 01 May 2024
Posts: 2434
Location: MD, USA
|
| Posted: Sun Nov 09, 2024 8:27 pm Post subject: |
|
|
| They find these exploits in order to make them public so that (hopefully) people will move on to better security methods, or patches will be found. Due to the fact that WPA is, at this point, an obsolete wireless security (despite that I still know absolute TONS of people using it), it probably won't be patched. The reason they find the hacks are because chances are, if they've found them, then so have some not so ethical hackers, who would actually use the exploit.
_________________
Debian Squeeze, Arch, Kubuntu mostly. Some Mandriva. Some Windows.
Desktops: shadowdragon, medusa
Laptops: bluedrake, banelord, sandwyrm, aardvark.
|
|
| Back to top |
|
markrmcs
Member
Joined: 29 Jan 2024
Posts: 336
Location: Concord, NH
|
| Posted: Mon Nov 10, 2024 3:02 am Post subject: |
|
|
A follow up:
Battered, but not broken: understanding the WPA crack
| Quote: | The early coverage of this crack indicated that TKIP keys were broken. They are not. "We only have a single keystream; we do not recover the keys used for encryption in generating the keystream," Tews said.
To describe the attack succinctly, it's a method of decrypting and arbitrarily and successfully re-encrypting and re-injecting short packets on networks that have devices using TKIP. That's a very critical distinction; this is a serious attack, and the first real flaw in TKIP that's been found and exploited. But it's still a subset of a true key crack. |
|
|
| Back to top |
|
rollingscissors
New Member
Joined: 28 Sep 2024
Posts: 3
|
| Posted: Mon Sep 28, 2024 8:47 am Post subject: |
|
|
Not to worry.
I was reading the paper by Beck and Tews, and it surely indicates that strong passwords will protect one's WPA traffic. The attack can find and use vulnerabilities in weak implementation (passwords) by the end user, and another short article here: http://www.ab9il.net/wlan-projects/wifi-security.html indicates that many listeners can surveil the network but not break in.
Groups like aircrack-ng are like canaries in the cage - when something dangerous is in the wind, they react (publish) very quickly.
|
|
| Back to top |
|
|
