November 06, InternetNews.com - Weakness found in Wi-Fi security protocol.
From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 11/07/03
- Next message: David H. Lipman: "Re: Computer Freezes"
- Previous message: Paea: "RE: Klez Virus"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 7 Nov 2003 11:27:40 -0500
November 06, InternetNews.com - Weakness found in Wi-Fi security protocol. Wireless
security expert Robert Moskowitz has detected a glaring weakness in the interface design of
a Wi?Fi Protected Access (WPA) protocol deployed in numerous Wireless LAN products.
According to a research paper written by Moskowitz, the weakness could allow intruders to
crack poorly chosen passphrases via offline dictionary attacks. The paper means that Wi?Fi
hardware products that ship with WPA might be less secure than the older Wirele-s
Encryption Protocol (WEP), which it replaced in 2002. The WPA standard was designed to
improve upon the security features in wireless networks. The weakness only takes effect
when short, text?based keys are used and does not reflect a fault in the WPA protocol. The
weakness can be avoided if WLAN hardware manufacturers build units with the ability to
generate random keys that can be copied and pasted across systems. Manufacturers can also
restrict the ability to enter weak keys by requiring passphrases with numerous characters
instead of words that can be found in the dictionary. Moskowitz warned that dictionary
based programs used to crack passwords are heavily used by criminal hackers.
The paper is available online: http://wifinetnews.com/archives/002452.html
Source: http://www.atnewyork.com/news/article.php/3105271
- Next message: David H. Lipman: "Re: Computer Freezes"
- Previous message: Paea: "RE: Klez Virus"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
