[ Ivan Dimkovic @ 28.08.2009. 14:46 ] @
Networking nerds claim to have devised a way of breaking Wi-Fi Protected Access (WPA) encryption within 60 seconds.
The technique, developed by Toshihiro Ohigashi of Hiroshima University and Masakatu Morii of Kobe University, is based on the established Becks-Tews method, which involves making minor changes to packets encrypted with TKIP - Temporal Key Integrity Protocol, a WPA security mechamism - and then sending those packets back to the access point.
However, the Becks-Tews method is known to take anywhere between ten and 15 minutes to execute.
In a recently released paper, Ohigashi and Morii proposed a man-in-the-middle style of attack – also used by the Beck-Tews approach – in which a user’s communication is intercepted by an attacker.
This approach carries a high risk of detection, the pair admitted, so being able to shorten the attack time down to under one minute is a major advantage – to potential hackers, at least.
Ohigashi’s and Morii’s technique doesn’t work in WPA 2 – the AES-based successor to WPA.
Iako je sam novinarski clanak previse tendeciozan, sam napad nije toliko opasan - nije moguce ukrasti kljuceve i zakaciti se kao nezavisni klijent na ruter, recimo - ali je moguce falsifikovati pakete i to u vrlo zabrinjavajuce kratkom roku od 1 minuta, sto opet nije nesto sto je od direktnog interesa likovima "koji bi samo da ukradu net" ali moze posluziti za neke malo komplikovanije poduhvate.
Ali svejedno - WPA2 FTW - podesite vase AP-ove ako vec niste na WPA2, time prelazite na AES enkripciju i za sada nema mogucnosti provale ako koristite dovoljno randomiziran kljuc :-)
Link na sam rad: http://jwis2009.nsysu.edu.tw/l...cation%20Attack%20on%20WPA.pdf