ieee 802 11
Download
Skip this Video
Download Presentation
IEEE 802.11

Loading in 2 Seconds...

play fullscreen
1 / 27

IEEE 802.11 - PowerPoint PPT Presentation


  • 82 Views
  • Uploaded on

IEEE 802.11. Wireless Local Area Networks (WLAN’s). Two modes of operation:. 1. Ad-Hoc Mode The clients communicate directly with each other. No mediation is needed. 2. Infrastructure Mode Clients and stations. Stations – Computers with NIC (Network Interface Cards) and Access Points (APs).

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'IEEE 802.11' - oya


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
ieee 802 11

IEEE 802.11

Wireless Local Area Networks(WLAN’s)

two modes of operation
Two modes of operation:

1. Ad-Hoc Mode

The clients communicate directly with each other. No mediation is needed.

2. Infrastructure Mode

Clients and stations.

Stations – Computers with NIC (Network Interface Cards) and Access Points (APs)

communication with aps
Communication With APs

3 stages:

1. Unauthenticated and Unassociated.

2. Authenticated and Unassociated.

3. Authenticated and Associated.

slide4
Wireless Protocols

IEEE 802.11

  • WEP for security
  • Challenge/Response with symmetric key for authentication
  • IEEE 802.1X
  • WEP for security
  • EAP for authentication
wep wired equivalent privacy
WEP- Wired Equivalent Privacy
  • Link layer security protocol.
  • Secures IEEE 802.11 communications.
  • Based upon RC4 stream cipher encryption system, with symmetric key.
wep protocol
IV clear

Encrypted text

WEP protocol

40 bits

64 bits

RC4

Shared

Secret key

Original

text

24bits

IV

Initialization vector

IV used

IV clear

Encrypted text

CRC32

IV used

IV

Initialization vector

40 bits

64 bits

Shared Secret key

Original text

CRC

RC4

security problems in wep
Security problems in WEP
  • During the years, a lot of security problems have been discovered in WEP.
  • We will discuss the most important of those problems, which is known as the “IV Collisions” problem.
iv collisions
IV Collisions
  • Every once in a while, an IV gets reused.
  • C1 = P1  RC4(v,k)
  • C2 = P2  RC4(v,k)
iv collisions 2
IV Collisions (2)

We get the following equation: C1C2 = (P1RC4(v,k))(P2RC4(v,k))

XOR is associative, and therefore:

C1  C2 = P1  P2

the problem
The Problem

EAP assumes a secured connection to work with

problems over an unsecured connection
Problems over an unsecured connection
  • Snooping the user ID
  • Forging / changing EAP packets
  • Denial of service
  • Offline dictionary attack
  • Man-in-the-middle
  • Authentication method downgrading attack
  • Breaking a weak key
man in the middle
B

E

A

MD5 EAP Request

MD5 EAP Request

H(ID || KEY || R)

EAP Failure

H(ID || KEY || R)

EAP Success

Man-in-the-middle
possible solutions
Possible Solutions
  • Mutual authentication
  • Cryptographic connection between authentication methods
  • Using a limited number of unsecured authentication methods
  • Preferring one strong method over a large number of weak ones.
possible solutions 2
Possible Solutions (2)
  • Using authentication method that derives a symmetric key, prevents replay attack and promises message integrity
  • The authentication method should be safe against dictionary attack
slide16
One method has all the

above advantages:

TLS

quick summary of tls
Application

Handshake protocol

Alert

CCS

Record Protocol

TCP

Quick summary of TLS
quick summary of tls 2
TCP three-way handshake

Client Hello

Server Hello

CA Certificate

Server done

Client Key Exchange

Enc (Pub(s),)

Quick summary of TLS (2)

Server

Client

Both sides perform a known calculation to derive the Master Key

quick summary of tls 3
CCS (ID)

FIN

MAC authentication of all former messages

CCS (ID)

FIN

MAC authentication of all former messages

Data transfer (encrypted by the Master Key)

Quick summary of TLS (3)

Server

Client

eap tls
Code

Length

Identifier

TLS message length

Type

Flags

TLS message length

TLS Data

EAP - TLS
eap tls 2
EAP Request

EAP Response

EAP Request, type = EAP-TLS

EAP Response, type = EAP-TLS

EAP Request, type = EAP-TLS

EAP –TLS (2)

Authenticator

Peer

eap tls 3
EAP Response, type = EAP-TLS

EAP Request, type = EAP-TLS

EAP Response, type = EAP-TLS

EAP Success / EAP Failure

EAP-TLS (3)

Authenticator

Peer

session resumption
Session resumption
  • The SessionID field in the TLS Client Hello Message should be the same as the ID of the session to return to.
  • The authenticator sends EAP request with TLS Server Hello, TLS CCS (using the former session CCS ID), and TLS FIN.
  • The peer sends EAP response with TLS CCS using the same ID, and TLS FIN.
  • The protocol continues as in the standard EAP-TLS.
session resumption 2
Session resumption (2)

Advantages of session resumption:

  • Quick renewal of connections.
  • Handling roaming in WLAN.
key derivation
Key Derivation

PRF1 = PRF (Master Secret, "Client EAP Encryption", Random)

PRF2 = PRF ("", "Client EAP Encryption", Random)

PRF1 is 128 bytes long.

PRF2 is 64 bytes long.

key derivation 2
Key Derivation (2)

32

64

96

128

0

PRF1

Client’s ENC Key

Server’s ENC Key

Client’s Auth Key

Server’s Auth Key

32

64

0

PRF2

Server’s IV

Client’s IV

fragmentation
Fragmentation
  • The first fragment raises the L, M and S flags. The total TLS message length is also included.
  • All other fragments, except the last, raise the M flag. The identification field in the EAP header increases by 1 with each fragment.
  • Every EAP with a TLS fragment is responded by an EAP packet with no data as an Ack.
ad