Practical verification of WPA-TKIP vulnerabilities

@inproceedings{Vanhoef2013PracticalVO,
  title={Practical verification of WPA-TKIP vulnerabilities},
  author={Mathy Vanhoef and F. Piessens},
  booktitle={ASIA CCS '13},
  year={2013}
}
  • Mathy Vanhoef, F. Piessens
  • Published in ASIA CCS '13 2013
  • Computer Science
  • We describe three attacks on the Wi-Fi Protected Access Temporal Key Integrity Protocol (WPA-TKIP). The first attack is a Denial of Service attack that can be executed by injecting only two frames every minute. The second attack demonstrates how fragmentation of 802.11 frames can be used to inject an arbitrary amount of packets, and we show that this can be used to perform a portscan on any client. The third attack enables an attacker to reset the internal state of the Michael algorithm. We… CONTINUE READING
    40 Citations
    Practical Side-Channel Attacks against WPA-TKIP
    • 2
    • PDF
    Practical Side-Channel Attacks against WPA-TKIP Domien Schepers
    • PDF
    On the Security of RC4 in TLS and WPA
    • 61
    On the Security of RC4 in TLS
    • 185
    • PDF
    Key Reinstallation Attacks : Breaking the WPA 2 Protocol
    • 3
    • PDF
    Advanced Wi-Fi attacks using commodity hardware
    • 72
    • PDF
    Denial of Service Attacks Against the 4-Way Wi-Fi Handshake
    • 6
    • PDF
    Predicting, Decrypting, and Abusing WPA2/802.11 Group Keys
    • 29
    • PDF

    References

    SHOWING 1-9 OF 9 REFERENCES
    Practical attacks against WEP and WPA
    • 275
    • Highly Influential
    • PDF
    Cryptanalysis for RC4 and Breaking WEP/WPA-TKIP
    • 11
    • Highly Influential
    • PDF
    The final nail in WEP's coffin
    • 216
    • Highly Influential
    • PDF
    Enhanced TKIP Michael Attacks
    • 16
    • Highly Influential
    • PDF
    A Study of the TKIP Cryptographic DoS Attack
    • 15
    • Highly Influential
    • PDF
    A note on the fragility of the "Michael" message integrity code
    • A. Wool
    • Computer Science
    • IEEE Transactions on Wireless Communications
    • 2004
    • 30
    • Highly Influential
    • PDF
    Wireless lan medium access control (mac) and physical layer (phy) specifications
    • 2,458
    • Highly Influential
    • PDF
    Michael: an improved MIC for 802.11 WEP
    • IEEE doc
    • 2002
    Michael: an improved MIC for 802
    • Michael: an improved MIC for 802
    • 2002