Practical verification of WPA-TKIP vulnerabilities | Zendy

Mathy Vanhoef | Zendy; Frank Piessens | Zendy

AI Assistant Blog Pricing

Open Access

Practical verification of WPA-TKIP vulnerabilities

Author(s) -

Mathy Vanhoef,

Frank Piessens

Publication year - 2013

Publication title -

lirias (ku leuven)

Language(s) - English

Resource type - Conference proceedings

DOI - 10.1145/2484313.2484368

Subject(s) - computer science , denial of service attack , network packet , computer security , computer network , reset (finance) , encryption , key (lock) , protocol (science) , operating system , the internet , economics , medicine , financial economics , pathology , alternative medicine

We describe three attacks on the Wi-Fi Protected Access Temporal Key Integrity Protocol (WPA-TKIP). The first attack is a Denial of Service attack that can be executed by injecting only two frames every minute. The second attack demonstrates how fragmentation of 802.11 frames can be used to inject an arbitrary amount of packets, and we show that this can be used to perform a portscan on any client. The third attack enables an attacker to reset the internal state of the Michael algorithm. We show that this can be used to efficiently decrypt arbitrary packets sent towards a client. We also report on implementation vulnerabilities discovered in some wireless devices. Finally we demonstrate that our attacks can be executed in realistic environments.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research

Address

John Eccles House
Robert Robinson Avenue,
Oxford Science Park, Oxford
OX4 4GP, United Kingdom

About

About Careers Publisher Partners Contact Us Our institutional solutions Get Organisational Trial or Quote

Learn

FAQs Blog Terms of Use Privacy Policy

Download the Zendy App

Discover

Explore

Home ZAIA Blog