Falsification Attacks against WPA-TKIP in a Realistic Environment

IEICE Transactions on Information and Systems E95D 巻 2 号 588-595 頁 2012 発行
アクセス数 : 1273
ダウンロード数 : 260

今月のアクセス数 : 8
今月のダウンロード数 : 0
ファイル情報(添付)
タイトル ( eng )
Falsification Attacks against WPA-TKIP in a Realistic Environment
作成者
Todo Yosuke
Ozawa Yuki
Morii Masakatu
収録物名
IEICE Transactions on Information and Systems
E95D
2
開始ページ 588
終了ページ 595
抄録
In this paper, we propose two new falsification attacks against Wi-Fi Protected Access Temporal Key Integrity Protocol (WPA-TKIP). A previous realistic attack succeeds only for a network that supports IEEE 802.11e QoS features by both an access point (AP) and a client, and it has an execution time of 12-15min, in which it recovers a message integrity code (MIC) key from an ARP packet. Our first attack reduces the execution time for recovering a MIC key. It can recover the MIC key within 7-8min. Our second attack expands its targets that can be attacked. This attack focuses on a new vulnerability of QoS packet processing, and this vulnerability can remove the condition that the AP supports IEEE 802.11e. In addition, we discovered another vulnerability by which our attack succeeds under the condition that the chipset of the client supports IEEE 802.11e even if the client disables this standard through the OS. We demonstrate that chipsets developed by several kinds of vendors have the same vulnerability.
著者キーワード
wireless LAN network
WPA-TKIP
falsification attack
QoS
vulnerability
NDC分類
総記 [ 000 ]
言語
英語
資源タイプ 学術雑誌論文
出版者
一般社団法人電子情報通信学会
発行日 2012
権利情報
Copyright (c) 2012 The Institute of Electronics, Information and Communication Engineers
出版タイプ Version of Record(出版社版。早期公開を含む)
アクセス権 オープンアクセス
収録物識別子
[ISSN] 0916-8532
[DOI] 10.1587/transinf.E95.D.588
[NCID] AA10826272
[DOI] http://dx.doi.org/10.1587/transinf.E95.D.588