• IT
  • internet.com/IT
  • internet.com/CIO
  • internet.com/Security
  • internet.com/Networking
  • internet.com/Storage
  • bITa Planet
  • CIO Update
  • Database Journal
  • Datamation
  • Enterprise IT Planet
  • Enterprise Networking Planet
  • Enterprise Storage Forum
  • eSecurity Planet
  • Hardware Central
  • Intranet Journal
  • ISP Planet
  • ITSMwatch
  • IT Channel Planet
  • Linux Planet
  • Open Networks Today
  • ServerWatch
  • VoIP Planet
  • WebVideoUniverse
  • Wi-Fi Planet
  • WinDrivers.com
  • Network Map
• Developer
  • internet.com/Developer
  • 15 Seconds
  • 4GuysFromRolla.com
  • ASP101
  • CodeGuru
  • Developer.com
  • DevX
  • FlashKit.com
  • Gamelan
  • JARS
  • JavaScript.com
  • JavaScriptSource
  • PHPBuilder.com
  • ScriptSearch
  • VB Forums
  • VB Wire
  • WebDeveloper.com
  • Webreference
  • Network Map
• News
  • Internetnews.com
  • Linux Today
  • Network Map
• Small Business
  • Ecommerce Guide
  • Refer-It
  • SmallBusinessComputing
  • Webopedia
  • WinPlanet
  • Network Map
• Personal Tech
  • BlackBerryToday
  • iPhoneGuide
  • Jumbo
  • Megapixel.net
  • Palm Boulevard
  • PDAStreet
  • PocketPCWire
  • SharkyExtreme
  • Smart Phone Today
  • The List: ASPs
  • The List: Broadband
  • The List: ISPs
  • The List: WebHosts
  • The List: WebDesigners
  • Wi-FiHotSpotList
  • WindowsMobileToday
  • Network Map

• Events
  • JupiterEvents
  • internet.com/webcasts
• Jobs
• Partners
• Solutions
  • eBooks
  • Video
• Shop

• Login
  • Manage My Profile
• Register
  • Why Join?

Search Search internet.com

Subscribe Now! Wi-Fi Planet.com's Daily Newsletter More Free Newsletters Wi-Fi Glossary Find a Wi-Fi Term Wi-Fi® is a registered certification mark of the Wi-Fi Alliance internet.commerce Be a Commerce Partner Send Text Messages Boat Donations Promotional Products KVM over IP Cell Phones Web Design Promotional Golf Shop Promotional Pens Phone Cards Dental Insurance Online Education Memory Upgrades Promotional Gifts internet.com IT Developer Internet News Small Business Personal Technology International Search internet.com Advertise Corporate Info Newsletters Tech Jobs E-mail Offers

>> Wi-Fi Planet Marketplace Whitepaper: Control Costs & Drive Agility in the Datacenter. Learn to control costs, improve business agility & remain secure & in compliance through dynamic infrastructure. Wireless Privacy: An Oxymoron? By Lisa Phifer 802.11b wireless LANs can be easier to deploy and less expensive than traditional wired networks, but they are also inherently less secure. Service providers considering 802.11b for public access broadband or fixed wireless Internet access should appreciate the risks associated with this emerging technology. Ethernet NICs broadcast packets over a physical medium—coaxial cable, unshielded twisted pair, fiber. Wireless NICs broadcast spread-spectrum radio signals over the air. Both are vulnerable to unauthorized use and eavesdropping, but there's an important difference. Wireless LANs can be tapped passively, without physical access or sophisticated equipment. All an attacker needs is an inexpensive wireless NIC and a tiny bit of know-how. The standard In an 802.11b Basic Service Set (BSS), a wireless access point (AP) acts as a bridge for a set of associated stations—PCs outfitted with wireless NICs. Wireless LANs can optionally be secured with measures defined by the Wired Equivalent Privacy (WEP) standard. WEP was designed to provide confidentiality for 802.11 networks, similar to that of wired networks. WEP authenticates stations seeking to join a BSS. Unfortunately, analysis performed by researchers at Intel [ZIP], Berkeley [FAQ], University of Maryland [PDF] and elsewhere has shown WEP to be fundamentally flawed. Who's there? Wireless access points and stations exchange management frames to associate with each other. Access points may periodically transmit beacon frames containing a unique identifier for the BSS, known as a service set identifier (SSID). Stations also transmit probe frames to find access points. When a station find an access point, it initiates an association and proposes an authentication method. The default method, Open System Authentication, actually provides no authentication at all. In Open System Authentication, any station is permitted to join the BSS. If the station proposes Shared Key Authentication, the AP generates a random 128-bit challenge. The station returns the challenge, encrypted with a shared key—a "secret" configured into both the station and AP. The AP decrypts the challenge, using a CRC to verify its integrity. If the decrypted frame matches the original challenge, the station is considered authentic. The challenge/response handshake is repeated in the opposite direction for mutual authentication. Unfortunately, an attacker who captures these frames possesses the plaintext, ciphertext, and the initialization vector (IV) used to turn the plaintext into ciphertext. Because WEP uses RC4 encryption, this is enough information to derive the RC4 keystream—the stream of bits XORed with plaintext to generate ciphertext. Knowing a legitimate IV and keystream lets the attacker successfully respond to any future challenge, without knowing the actual shared key. The attacker has a free pass to join the wireless LAN. Guarding the gate Authentication must be combined with access control measures that permit or deny traffic from a particular station. To be effective, access control must be based on a value that is not easily spoofed. Some access points can be programmed with a MAC address Access Control List that permits a specific group of stations and blocks unauthorized stations from associating with the AP. Unfortunately, MAC addresses are easy to sniff because they are transmitted in plaintext. All an attacker needs to masquerade, as a legitimate station is a wireless NIC operating in promiscuous mode for capture, with a configurable address to enable spoofing. Some stations can be programmed with an SSID they must present in order to associate with an access point. Unfortunately, because SSID is broadcast in plaintext in many 802.11b frames, it also easy to sniff and spoof. Another technique is to combine station-level authentication with user-level authentication for tighter access control. In this case, the station user actually logs into the wireless network by supplying a username/password that the AP can check against a RADIUS server—similar to traditional Internet access. Effectiveness depends upon the authentication method used and whether it requires confidentiality.   Go to page: 1  2  Next   April 26, 2001 Tools: Insights Archives | 7 day summary Add wi-fiplanet.com to your favorites Add wi-fiplanet.com to your browser search box IE 7 | Firefox 2.0 | Firefox 1.5.x Receive news via our XML/RSS feed HP eBook: Using Business Service Management (BSM) to Manage Your Business Applications Flash Demo: Learn how IBM Information Server Blade is easy to manage, highly scalable and efficient. 14-Day Qualys Trial: Find Out in Minutes if Your Network is Vulnerable! Data Sheet: IBM Information Server Blade Whitepaper: HP Integrated Citrix XenServer for HP ProLiant Servers. Sponsored by HP, Citrix, and Intel.

Search: Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia Jupitermedia Corporate Info Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy. Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Solutions

Whitepapers and eBooks Microsoft Article: Will Hyper-V Make VMware This Decade's Netscape? Microsoft Article: 7.0, Microsoft's Lucky Version? Microsoft Article: Hyper-V--The Killer Feature in Windows Server 2008 Avaya Article: How to Feed Data into the Avaya Event Processor Microsoft Article: Install What You Need with Windows Server 2008 HP eBook: Putting the Green into IT Whitepaper: HP Integrated Citrix XenServer for HP ProLiant Servers Intel Go Parallel Portal: Interview with C++ Guru Herb Sutter, Part 1 Intel Go Parallel Portal: Interview with C++ Guru Herb Sutter, Part 2--The Future of Concurrency Avaya Article: Setting Up a SIP A/S Development Environment IBM Article: How Cool Is Your Data Center? Microsoft Article: Managing Virtual Machines with Microsoft System Center HP eBook: Storage Networking , Part 1 Microsoft Article: Solving Data Center Complexity with Microsoft System Center Configuration Manager 2007 MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts Intel Video: Are Multi-core Processors Here to Stay? On-Demand Webcast: Five Virtualization Trends to Watch HP Video: Page Cost Calculator Intel Video: APIs for Parallel Programming HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind Microsoft Silverlight Video: Creating Fading Controls with Expression Design and Expression Blend 2 MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits Sun Download: Solaris 8 Migration Assistant Sybase Download: SQL Anywhere Developer Edition Red Gate Download: SQL Backup Pro and free DBA Best Practices eBook Red Gate Download: SQL Compare Pro 6 Iron Speed Designer Application Generator MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos How-to-Article: Preparing for Hyper-Threading Technology and Dual Core Technology eTouch PDF: Conquering the Tyranny of E-Mail and Word Processors IBM Article: Collaborating in the High-Performance Workplace HP Demo: StorageWorks EVA4400 Intel Featured Algorhythm: Intel Threading Building Blocks--The Pipeline Class Microsoft How-to Article: Get Going with Silverlight and Windows Live MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES