Automated WPA2 Cracking Using Improved Dictionary and WPS Pin Attack

Ajay, Aiswarya; Amritha, P. P.; Sethumadhavan, M.

doi:10.1007/978-981-15-9019-1_29

Cited by 1 publication

(1 citation statement)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In WPA2, the PMK is primarily derived from the passphrase and the SSID, both of which are independent of the session. This strategy leads to the well-known dictionary attack [11], one of the most significant weak points of the WPA2-personal security framework. On the contrary, for WPA3, a per-session PMK is generated and mutually agreed upon by the two endpoints through the utilization of the Simultaneous Authentication of Equals (SAE) exchange.…”

Section: Framementioning

confidence: 99%

A Tutorial on Privacy, RCM and Its Implications in WLAN

Ficara,

Garroppo,

Henry

2024

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

The proliferation of Wi-Fi devices has led to the rise of privacy concerns related to MAC Address-based systems used for people tracking and localization across various applications, such as smart cities, intelligent transportation systems, and marketing. These systems have highlighted the necessity for mobile device manufacturers to implement Randomized And Changing MAC address (RCM) techniques as a countermeasure for device identification. In response to the challenges posed by diverse RCM implementations, the IEEE has taken steps to standardize RCM operations through the 802.11aq Task Group (TG). However, while RCM implementation addresses some concerns, it can disrupt services that span both Layer 2 and upper-layers, which were originally designed assuming static MAC addresses. To address these challenges, the IEEE has established the 802.11bh TG, focusing on defining new device identification methods, particularly for Layer 2 services that require pre-association identification. Simultaneously, the IETF launched the MAC Address Device Identification for Network and Application Services (MADINAS) Working Group to investigate the repercussions of RCM on upper-layer services, including the Dynamic Host Configuration Protocol (DHCP).Concurrently, derandomization techniques have emerged to counteract RCM defense mechanisms. The exploration of these techniques has suggested the need for a broader privacy enhancement framework for WLANs that goes beyond simple MAC address randomization. These findings have prompted the inception of the 802.11bi TG, which aims to compile an exhaustive list of potential privacy vulnerabilities and prerequisites for a more private IEEE 802.11 standard.In this context, this tutorial aims to provide insights into the motivations behind RCM, its implementation, and its evolution over the years. It elucidates the influence of RCM on network processes and services. Furthermore, the tutorial delves into the recent progress made within the domains of 802.11bh, 802.11bi, and MADINAS. It offers a thorough analysis of the initial work undertaken by these groups, along with an overview of the relevant research challenges. The tutorial objective is to inspire the research community to explore innovative approaches and solutions that contribute to the ongoing efforts to enhance WLAN privacy through standardization initiatives.

show abstract

Section: Framementioning

confidence: 99%