Comments for Wireless LAN Security Blog - AirTight Networks http://blog.airtightnetworks.com Sat, 21 Aug 2010 05:14:45 -0400 http://wordpress.org/?v=2.8.5 hourly 1 Comment on WPA2 Hole196 Webinar Q&A by Tweets that mention WPA2 Hole196 Webinar Q&A -- Topsy.com http://blog.airtightnetworks.com/wpa2-hole196-webinar-qa/comment-page-1/#comment-6202 Tweets that mention WPA2 Hole196 Webinar Q&A -- Topsy.com Sat, 21 Aug 2010 05:14:45 +0000 http://blog.airtightnetworks.com/?p=1416#comment-6202 [...] This post was mentioned on Twitter by AirTight Networks and Rocky Gregory, CWNP. CWNP said: CWNP Blogroll: WPA2 Hole196 Webinar Q&A http://bit.ly/bTh5YI [...] [...] This post was mentioned on Twitter by AirTight Networks and Rocky Gregory, CWNP. CWNP said: CWNP Blogroll: WPA2 Hole196 Webinar Q&A http://bit.ly/bTh5YI [...]

]]> Comment on WPA2 finds itself in a “hole”! Vulnerable to insider attacks! by Kaustubh Phanse http://blog.airtightnetworks.com/wpa2-finds-itself-in-a-hole-vulnerable-to-insider-attacks/comment-page-1/#comment-6133 Kaustubh Phanse Mon, 16 Aug 2010 05:49:06 +0000 http://blog.airtightnetworks.com/?p=1382#comment-6133 Hi Douglas, You are absolutely right! Wi-Fi client isolation alone is not of much use because it can be bypassed if the attacker poisons the cache of the victim with the attacker's Ethernet NIC MAC address. As you have rightly suggested, if the Wi-Fi APs are put on a separate VLAN then the victim's data cannot reach the attacker's machine (which will be on a VLAN different from the AP). In that case, the ARP poisoning attack will end up as a denial of service and man in the middle will not be successful. Hi Douglas,

You are absolutely right!

Wi-Fi client isolation alone is not of much use because it can be bypassed if the attacker poisons the cache of the victim with the attacker’s Ethernet NIC MAC address.

As you have rightly suggested, if the Wi-Fi APs are put on a separate VLAN then the victim’s data cannot reach the attacker’s machine (which will be on a VLAN different from the AP). In that case, the ARP poisoning attack will end up as a denial of service and man in the middle will not be successful.

]]> Comment on WPA2 finds itself in a “hole”! Vulnerable to insider attacks! by Douglas Smith http://blog.airtightnetworks.com/wpa2-finds-itself-in-a-hole-vulnerable-to-insider-attacks/comment-page-1/#comment-5967 Douglas Smith Thu, 05 Aug 2010 14:33:49 +0000 http://blog.airtightnetworks.com/?p=1382#comment-5967 Client Isolation plus IP subnetting: MITM->DOS Client isolation (PSPF) cannot prevent the attack if the attacker adds an ethernet node to redirect traffic to. If the hackers ethernet NIC is on a different IP subnet, then the ARP poisoning redirect will not result in packets being forwarded to the hackers ethernet NIC as it will be on an unreachable ethernet segment. The attack will become a denial-of-service rather than man-in-the-middle. Do you agree that the combination of client isolation and IP subnetting could be used to partially address the Hole196 ARP poisoning attack? Client Isolation plus IP subnetting: MITM->DOS

Client isolation (PSPF) cannot prevent the attack if the attacker adds an ethernet node to redirect traffic to.

If the hackers ethernet NIC is on a different IP subnet, then the ARP poisoning redirect will not result in packets being forwarded to the hackers ethernet NIC as it will be on an unreachable ethernet segment. The attack will become a denial-of-service rather than man-in-the-middle.

Do you agree that the combination of client isolation and IP subnetting could be used to partially address the Hole196 ARP poisoning attack?

]]> Comment on WPA2 finds itself in a “hole”! Vulnerable to insider attacks! by WPA2 Hole196 Vulnerability | Pablumfication http://blog.airtightnetworks.com/wpa2-finds-itself-in-a-hole-vulnerable-to-insider-attacks/comment-page-1/#comment-5758 WPA2 Hole196 Vulnerability | Pablumfication Sun, 25 Jul 2010 18:47:32 +0000 http://blog.airtightnetworks.com/?p=1382#comment-5758 [...] WEP & TKIP WPA2 Hole196 Vulnerability WPA2 finds itself in a “hole”! Vulnerable to insider attacks! Black Hat ® Technical Security Conference: USA 2010 // Black Hat Arsenal WPA2 Exposed with [...] [...] WEP & TKIP WPA2 Hole196 Vulnerability WPA2 finds itself in a “hole”! Vulnerable to insider attacks! Black Hat ® Technical Security Conference: USA 2010 // Black Hat Arsenal WPA2 Exposed with [...]

]]> Comment on Goodbye, WEP & TKIP by WPA2 Hole196 Vulnerability | Pablumfication http://blog.airtightnetworks.com/goodbye-wep-tkip/comment-page-1/#comment-5756 WPA2 Hole196 Vulnerability | Pablumfication Sun, 25 Jul 2010 18:35:34 +0000 http://blog.airtightnetworks.com/?p=1336#comment-5756 [...] Goodbye, WEP & TKIP WPA2 Hole196 Vulnerability WPA2 finds itself in a “hole”! Vulnerable to insider attacks! Black Hat ® Technical Security Conference: USA 2010 // Black Hat Arsenal WPA2 Exposed with ‘Hole 196′ Vulnerability Wi-Fi WPA & WPA2 Encryption Cracking Guide Wi-Fi Alliance to dump WEP and TKIP … not soon enough Researcher Hints 802.1X WPA2 Flaw [...] [...] Goodbye, WEP & TKIP WPA2 Hole196 Vulnerability WPA2 finds itself in a “hole”! Vulnerable to insider attacks! Black Hat ® Technical Security Conference: USA 2010 // Black Hat Arsenal WPA2 Exposed with ‘Hole 196′ Vulnerability Wi-Fi WPA & WPA2 Encryption Cracking Guide Wi-Fi Alliance to dump WEP and TKIP … not soon enough Researcher Hints 802.1X WPA2 Flaw [...]

]]> Comment on WPA2 finds itself in a “hole”! Vulnerable to insider attacks! by [ATNB] WPA2 - You don't even need to crack it. - Overclock.net - Overclocking.net http://blog.airtightnetworks.com/wpa2-finds-itself-in-a-hole-vulnerable-to-insider-attacks/comment-page-1/#comment-5711 [ATNB] WPA2 - You don't even need to crack it. - Overclock.net - Overclocking.net Fri, 23 Jul 2010 10:31:06 +0000 http://blog.airtightnetworks.com/?p=1382#comment-5711 [...] announced its plan to phase out WEP and TKIP, promoting WPA2 as the go-to security standard. Source Basically an exploit was found (known as Hole 196) and exploiting this vulnerability, you can [...] [...] announced its plan to phase out WEP and TKIP, promoting WPA2 as the go-to security standard. Source Basically an exploit was found (known as Hole 196) and exploiting this vulnerability, you can [...]

]]> Comment on WPA2 finds itself in a “hole”! Vulnerable to insider attacks! by Tweets that mention WPA2 finds itself in a “hole”! Vulnerable to insider attacks! -- Topsy.com http://blog.airtightnetworks.com/wpa2-finds-itself-in-a-hole-vulnerable-to-insider-attacks/comment-page-1/#comment-5707 Tweets that mention WPA2 finds itself in a “hole”! Vulnerable to insider attacks! -- Topsy.com Fri, 23 Jul 2010 06:45:39 +0000 http://blog.airtightnetworks.com/?p=1382#comment-5707 [...] This post was mentioned on Twitter by AirTight Networks, Rocky Gregory and CWNP, MD SOHAIL AHMAD. MD SOHAIL AHMAD said: WPA2 finds itself in a “hole”! Vulnerable to insider attacks! http://bit.ly/bHdqmS [...] [...] This post was mentioned on Twitter by AirTight Networks, Rocky Gregory and CWNP, MD SOHAIL AHMAD. MD SOHAIL AHMAD said: WPA2 finds itself in a “hole”! Vulnerable to insider attacks! http://bit.ly/bHdqmS [...]

]]> Comment on Goodbye, WEP & TKIP by WPA2 finds itself in a “hole”! Vulnerable to insider attacks! http://blog.airtightnetworks.com/goodbye-wep-tkip/comment-page-1/#comment-5706 WPA2 finds itself in a “hole”! Vulnerable to insider attacks! Fri, 23 Jul 2010 06:11:53 +0000 http://blog.airtightnetworks.com/?p=1336#comment-5706 [...] TKIP fell by the wayside, WPA2 emerged as the “Last Wi-Fi Security Protocol Standing.” Wi-Fi Alliance recently announced its plan to phase out WEP and TKIP, promoting WPA2 as the go-to security [...] [...] TKIP fell by the wayside, WPA2 emerged as the “Last Wi-Fi Security Protocol Standing.” Wi-Fi Alliance recently announced its plan to phase out WEP and TKIP, promoting WPA2 as the go-to security [...]

]]> Comment on One fine day in New Delhi by Jinesh http://blog.airtightnetworks.com/one-fine-day-in-new-delhi/comment-page-1/#comment-5506 Jinesh Sat, 10 Jul 2010 04:18:53 +0000 http://blog.airtightnetworks.com/?p=1373#comment-5506 sir, How to apply security in wireless sensor network? sir,
How to apply security in wireless sensor network?

]]> Comment on One fine day in New Delhi by Tweets that mention One fine day in New Delhi -- Topsy.com http://blog.airtightnetworks.com/one-fine-day-in-new-delhi/comment-page-1/#comment-5423 Tweets that mention One fine day in New Delhi -- Topsy.com Wed, 07 Jul 2010 08:22:48 +0000 http://blog.airtightnetworks.com/?p=1373#comment-5423 [...] This post was mentioned on Twitter by AirTight Networks, CWNP. CWNP said: CWNP Blogroll: One fine day in New Delhi http://goo.gl/fb/TSfe1 [...] [...] This post was mentioned on Twitter by AirTight Networks, CWNP. CWNP said: CWNP Blogroll: One fine day in New Delhi http://goo.gl/fb/TSfe1 [...]

]]>