SlideShare a Scribd company logo

Wpa3

Download as PPTX, PDF
Bhavya Dashora
Bhavya Dashora

This slide contains the Wireless Security protocol WPA3.

Technology
1 of 41
WPA3 Future of Wireless Security
Wireless Protocols • Wired Equivalent Privacy(WEP) • Wi-Fi Protected Access (WPA) • Wi-Fi Protected Access 2(WPA2)
WPA2 4-Way Handshake • When a client wants to join a WiFi network, a 4 Way handshake is executed between the client and the network. The purpose of this 4 Way Handshake is to Verify the Client posses Valid credentials Creation of PTK (Pairwise Transient Key) which is used for encryption • After the 4 Way Handshake,, all the data packets are encrypted with this freshly generated key.
Limitation Of WPA2 • Anyone can disconnect you • The password can be cracked online • Once you know the password, you can sniff or spoof someone • It won’t let you secure a password-less network • Silly "terms of service" in your cafe can break your Application
Packet No. Reuse by Tx Suppose two packets P1 and P2 are encrypted with PTK E1=P1 ⊕ KS1 and E2=P2 ⊕KS2 If P1 and P2 were to use same Packet Number(PN), then KS1=KS2 In that case E1 ⊕ E2 =P1 ⊕ P2 --- Effect of Encrypton Eliminated!! If P1 is known / Guessed .It is possible to Decrypt P2 So ,for a given key , Transmitter must never use the same Packet No (PN) in any two encrypted packet
KRACK Attack on WPA2 • All protected Wi-Fi networks use the 4-way handshake to generate a fresh session key. So far, this 14-year-old handshake has remained free from attacks, and is even proven secure. • However, we show that the 4-way handshake is vulnerable to a key reinstallation attack. Here, the adversary tricks a victim into reinstalling an already-in-use key. • This is achieved by manipulating and replaying handshake messages. When reinstalling the key, associated parameters such as the incremental transmit packet number (nonce) and receive packet number (replay counter) are reset to their initial value. • Our key reinstallation attack also breaks the PeerKey, group key, and Fast BSS Transition (FT) handshake. The impact depends on the handshake being attacked, and the data-confidentiality protocol in use. • Simplified, against AES-CCMP an adversary can replay and decrypt (but not forge) packets. This makes it possible to hijack TCP streams and inject malicious data into them. • Against WPATKIP and GCMP the impact is catastrophic: packets can be replayed, decrypted, and forged. Because GCMP uses the same authentication key in both communication directions, it is especially affected
• WPA3 Security will eliminate all the known security risks and attacks that are up today including the Key Reinstallation Attacks (KRACK). • The WPA3 standard adds four features not found in WPA2. Manufacturers must fully implement these four features to market their devices as “Wi-Fi CERTIFIED™ WPA3™”. These Features are as Follows: 1. A More Secure Handshake 2. Open Wi-Fi Network Security 3. Enables easy connectivity to devices with out display 4. 192-bit security suite
A More Secure Handshake • Deliver robust protections even when users choose passwords that fall short of typical complexity recommendations. • Ordinary home networks that are protected with a single password, will be required to use the Simultaneous Authentication of Equals (SAE) handshake. • This handshake is resistant against offline dictionary attacks. • SAE handshake is a variant of the Dragonfly handshake defined in RFC 7664, which in turn is based on the SPEKE handshake. • In a Wi-Fi network, the SAE handshake negotiates a fresh Pairwise Master Key (PMK). • The resulting PMK is then used in a traditional 4-way handshake to generate session keys. This means the SAE handshake is always followed by a 4-way handshake. • The 32-byte PMK that the SAE handshake negotiates cannot be guessed using a dictionary attack, even though it's used in the 4-way handshake. • Additionally, forward secrecy is indeed provided because the SAE handshake assures the PMK cannot be recovered if the password becomes known.
Open Wi-Fi Network Security • Strengthens user privacy in open networks through individualized data encryption. • Provide a simple way for public and guest WLANs to be encrypted and secure without the need for a personal VPN. • A “new” encryption, Opportunistic Wireless Encryption (OWE), is based on RFC8110. • Without a pre-configured password, client devices and access points will be able to create a one-time use Pairwise Master Key (PMK), replacing the most common current use of “Open” wireless security. • OWE handshake negotiates a new PMK using a Diffie-Hellman key exchange. • This handshake is encapsulated in Information Elements (IEs) in the (re)association request and response frames. • The resulting PMK is used in a 4-way handshake, which will negotiate and install frame encryption keys.
Enables easy connectivity to devices with out display • Designed to secure IoT devices, most of which have limited or no display interface. • The new Device Provisioning Protocol will provide a simple and secure way to add these devices to a Wi-Fi network. • Simplified, secure configuration and on boarding for devices with limited or no display interface. • More precisely, the replacement of WPS will be the Wi-Fi Device Provisioning Protocol (DPP). • This protocol allows you to add new devices to a network using QR codes. • Based on a quick scan of the draft standard, it seems it may also allow usage of USB, NFC, or Bluetooth to add a device to the network. The protocol itself is based on public key cryptography.
192 Bit Security Suite • This is a cryptographic strength enhancement. • The feature is aligned with the Commercial National Security Algorithm (CNSA) Suite and designed to maintain data integrity on networks requiring the highest security, even in a post-quantum computer era. • That means it meets requirements for high-level government work, defense agencies, and super secret industrial projects.
Opportunistic Wireless Encryption
Some Observation
Simultaneous Authentication of Equals • Simultaneous Authentication of Equals (SAE) is a variant of Dragonfly, a password-authenticated key exchange based on a zero-knowledge proof. • SAE is used by STAs to authenticate with a password and dynamically establish session keys • SAE supports both FFC (Finite Field Cryptography) and ECC (Elliptic Curve Cryptography) • By default, SAE uses ECC with order of 256-bit prime number. • An attacker is unable to make more than one guess at the password per attack. This implies that the attacker cannot make one attack and then go offline and make repeated guesses at the password until successful. In other words, SAE is resistant to dictionary attack. • An attacker is unable to determine either the password or the resulting PMK by passively observing an exchange or by interposing itself into the exchange by faithfully relaying messages between the two STAs.
Thank You !!!

Recommended

WPA 3
WPA 3WPA 3
WPA 3
diggu22
 
WPA-3: SEA and Dragonfly
WPA-3: SEA and DragonflyWPA-3: SEA and Dragonfly
WPA-3: SEA and Dragonfly
Napier University
 
WPA2
WPA2WPA2
WPA2
Mshari Alabdulkarim
 
Wpa vs Wpa2
Wpa vs Wpa2Wpa vs Wpa2
Wpa vs Wpa2
Nzava Luwawa
 
Wi-Fi security – WEP, WPA and WPA2
Wi-Fi security – WEP, WPA and WPA2Wi-Fi security – WEP, WPA and WPA2
Wi-Fi security – WEP, WPA and WPA2
Fábio Afonso
 
Wi fi protected access
Wi fi protected accessWi fi protected access
Wi fi protected access
Lopamudra Das
 
WPA3 - What is it good for?
WPA3 - What is it good for?WPA3 - What is it good for?
WPA3 - What is it good for?
Tom Isaacson
 
Wired equivalent privacy (wep)
Wired equivalent privacy (wep)Wired equivalent privacy (wep)
Wired equivalent privacy (wep)
akruthi k
 

Recommended

WPA 3
WPA 3WPA 3
WPA 3
diggu22
 
WPA-3: SEA and Dragonfly
WPA-3: SEA and DragonflyWPA-3: SEA and Dragonfly
WPA-3: SEA and Dragonfly
Napier University
 
WPA2
WPA2WPA2
WPA2
Mshari Alabdulkarim
 
Wpa vs Wpa2
Wpa vs Wpa2Wpa vs Wpa2
Wpa vs Wpa2
Nzava Luwawa
 
Wi-Fi security – WEP, WPA and WPA2
Wi-Fi security – WEP, WPA and WPA2Wi-Fi security – WEP, WPA and WPA2
Wi-Fi security – WEP, WPA and WPA2
Fábio Afonso
 
Wi fi protected access
Wi fi protected accessWi fi protected access
Wi fi protected access
Lopamudra Das
 
WPA3 - What is it good for?
WPA3 - What is it good for?WPA3 - What is it good for?
WPA3 - What is it good for?
Tom Isaacson
 
Wired equivalent privacy (wep)
Wired equivalent privacy (wep)Wired equivalent privacy (wep)
Wired equivalent privacy (wep)
akruthi k
 
802.1x
802.1x802.1x
802.1x
akruthi k
 
Wireless security presentation
Wireless security presentationWireless security presentation
Wireless security presentation
Muhammad Zia
 
Wireless Network Security
Wireless Network SecurityWireless Network Security
Wireless Network Security
kentquirk
 
Wireless Networking Security
Wireless Networking SecurityWireless Networking Security
Wireless Networking Security
Anshuman Biswal
 
Wireless Device and Network level security
Wireless Device and Network level securityWireless Device and Network level security
Wireless Device and Network level security
Chetan Kumar S
 
Wifi Security
Wifi SecurityWifi Security
Wifi Security
Shital Kat
 
Wireless security using wpa2
Wireless security using wpa2Wireless security using wpa2
Wireless security using wpa2
Tushar Anand
 
WiFi Secuiry: Attack & Defence
WiFi Secuiry: Attack & DefenceWiFi Secuiry: Attack & Defence
WiFi Secuiry: Attack & Defence
Prakashchand Suthar
 
Ipsec
IpsecIpsec
Ipsec
Rupesh Mishra
 
WEP/WPA attacks
WEP/WPA attacksWEP/WPA attacks
WEP/WPA attacks
Huda Seyam
 
Wi Fi Security
Wi Fi SecurityWi Fi Security
Wi Fi Security
yousef emami
 
Wireless Security null seminar
Wireless Security null seminarWireless Security null seminar
Wireless Security null seminar
Nilesh Sapariya
 
Wlan security
Wlan securityWlan security
Wlan security
Sajan Sahu
 
Kerberos
KerberosKerberos
Kerberos
Sparkbit
 
IPSec and VPN
IPSec and VPNIPSec and VPN
IPSec and VPN
Abdullaziz Tagawy
 
IPV6 ADDRESS
IPV6 ADDRESSIPV6 ADDRESS
IPV6 ADDRESS
Jothi Lakshmi
 
Implementing 802.1x Authentication
Implementing 802.1x AuthenticationImplementing 802.1x Authentication
Implementing 802.1x Authentication
dkaya
 
Information and data security advanced encryption standard (aes)
Information and data security advanced encryption standard (aes)Information and data security advanced encryption standard (aes)
Information and data security advanced encryption standard (aes)
Mazin Alwaaly
 
Wpa2 psk security measure
Wpa2 psk security measureWpa2 psk security measure
Wpa2 psk security measure
Shivam Singh
 
IP Security
IP SecurityIP Security
IP Security
Dr.Florence Dayana
 
DTS Solution - Wireless Security Protocols / PenTesting
DTS Solution - Wireless Security Protocols / PenTesting DTS Solution - Wireless Security Protocols / PenTesting
DTS Solution - Wireless Security Protocols / PenTesting
Shah Sheikh
 
Workshop on Wireless Security
Workshop on Wireless SecurityWorkshop on Wireless Security
Workshop on Wireless Security
amiable_indian
 

More Related Content

What's hot

Wireless Networking Security
Wireless Networking SecurityWireless Networking Security
Wireless Networking Security
Anshuman Biswal
 

What's hot (20)

802.1x
802.1x802.1x
802.1x
 
Wireless security presentation
Wireless security presentationWireless security presentation
Wireless security presentation
 
Wireless Network Security
Wireless Network SecurityWireless Network Security
Wireless Network Security
 
Wireless Networking Security
Wireless Networking SecurityWireless Networking Security
Wireless Networking Security
 
Wireless Device and Network level security
Wireless Device and Network level securityWireless Device and Network level security
Wireless Device and Network level security
 
Wifi Security
Wifi SecurityWifi Security
Wifi Security
 
Wireless security using wpa2
Wireless security using wpa2Wireless security using wpa2
Wireless security using wpa2
 
WiFi Secuiry: Attack & Defence
WiFi Secuiry: Attack & DefenceWiFi Secuiry: Attack & Defence
WiFi Secuiry: Attack & Defence
 
Ipsec
IpsecIpsec
Ipsec
 
WEP/WPA attacks
WEP/WPA attacksWEP/WPA attacks
WEP/WPA attacks
 
Wi Fi Security
Wi Fi SecurityWi Fi Security
Wi Fi Security
 
Wireless Security null seminar
Wireless Security null seminarWireless Security null seminar
Wireless Security null seminar
 
Wlan security
Wlan securityWlan security
Wlan security
 
Kerberos
KerberosKerberos
Kerberos
 
IPSec and VPN
IPSec and VPNIPSec and VPN
IPSec and VPN
 
IPV6 ADDRESS
IPV6 ADDRESSIPV6 ADDRESS
IPV6 ADDRESS
 
Implementing 802.1x Authentication
Implementing 802.1x AuthenticationImplementing 802.1x Authentication
Implementing 802.1x Authentication
 
Information and data security advanced encryption standard (aes)
Information and data security advanced encryption standard (aes)Information and data security advanced encryption standard (aes)
Information and data security advanced encryption standard (aes)
 
Wpa2 psk security measure
Wpa2 psk security measureWpa2 psk security measure
Wpa2 psk security measure
 
IP Security
IP SecurityIP Security
IP Security
 

Similar to Wpa3

Workshop on Wireless Security
Workshop on Wireless SecurityWorkshop on Wireless Security
Workshop on Wireless Security
amiable_indian
 
Sheetal - Wirelesss Hacking - ClubHack2008
Sheetal - Wirelesss Hacking - ClubHack2008Sheetal - Wirelesss Hacking - ClubHack2008
Sheetal - Wirelesss Hacking - ClubHack2008
ClubHack
 
Security standard
Security standardSecurity standard
Security standard
lyndyv
 
wi-fi technology
wi-fi technologywi-fi technology
wi-fi technology
tardeep
 
4 wifi security
4 wifi security4 wifi security
4 wifi security
al-sari7
 

Similar to Wpa3 (20)

DTS Solution - Wireless Security Protocols / PenTesting
DTS Solution - Wireless Security Protocols / PenTesting DTS Solution - Wireless Security Protocols / PenTesting
DTS Solution - Wireless Security Protocols / PenTesting
 
Workshop on Wireless Security
Workshop on Wireless SecurityWorkshop on Wireless Security
Workshop on Wireless Security
 
Sheetal - Wirelesss Hacking - ClubHack2008
Sheetal - Wirelesss Hacking - ClubHack2008Sheetal - Wirelesss Hacking - ClubHack2008
Sheetal - Wirelesss Hacking - ClubHack2008
 
Wi fi security
Wi fi securityWi fi security
Wi fi security
 
Wifi cracking Step by Step Using CMD and Kali Linux 2018
Wifi cracking Step by Step Using CMD and Kali Linux 2018Wifi cracking Step by Step Using CMD and Kali Linux 2018
Wifi cracking Step by Step Using CMD and Kali Linux 2018
 
Shashank wireless lans security
Shashank wireless lans securityShashank wireless lans security
Shashank wireless lans security
 
Wireless hacking
Wireless hackingWireless hacking
Wireless hacking
 
Wireless and how safe are you
Wireless and how safe are youWireless and how safe are you
Wireless and how safe are you
 
KRACK attack
KRACK attackKRACK attack
KRACK attack
 
Wireless lan security(10.8)
Wireless lan security(10.8)Wireless lan security(10.8)
Wireless lan security(10.8)
 
Wireless Security.ppt
Wireless Security.pptWireless Security.ppt
Wireless Security.ppt
 
Wireless Security.ppt
Wireless Security.pptWireless Security.ppt
Wireless Security.ppt
 
Chapter 10 wireless hacking [compatibility mode]
Chapter 10 wireless hacking [compatibility mode]Chapter 10 wireless hacking [compatibility mode]
Chapter 10 wireless hacking [compatibility mode]
 
WLAN SECURITY BY SAIKIRAN PANJALA
WLAN SECURITY BY SAIKIRAN PANJALAWLAN SECURITY BY SAIKIRAN PANJALA
WLAN SECURITY BY SAIKIRAN PANJALA
 
IP security and VPN presentation
IP security and VPN presentation IP security and VPN presentation
IP security and VPN presentation
 
Security standard
Security standardSecurity standard
Security standard
 
Wifi- technology_moni
Wifi- technology_moniWifi- technology_moni
Wifi- technology_moni
 
wi-fi technology
wi-fi technologywi-fi technology
wi-fi technology
 
4 wifi security
4 wifi security4 wifi security
4 wifi security
 
Cryptography and network security
Cryptography and network securityCryptography and network security
Cryptography and network security
 

Recently uploaded

08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Delhi Call girls
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
 

Recently uploaded (20)

08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 

Wpa3

  • 2. Wireless Protocols • Wired Equivalent Privacy(WEP) • Wi-Fi Protected Access (WPA) • Wi-Fi Protected Access 2(WPA2)
  • 3.
  • 4. WPA2 4-Way Handshake • When a client wants to join a WiFi network, a 4 Way handshake is executed between the client and the network. The purpose of this 4 Way Handshake is to Verify the Client posses Valid credentials Creation of PTK (Pairwise Transient Key) which is used for encryption • After the 4 Way Handshake,, all the data packets are encrypted with this freshly generated key.
  • 5. Limitation Of WPA2 • Anyone can disconnect you • The password can be cracked online • Once you know the password, you can sniff or spoof someone • It won’t let you secure a password-less network • Silly "terms of service" in your cafe can break your Application
  • 6.
  • 7. Packet No. Reuse by Tx Suppose two packets P1 and P2 are encrypted with PTK E1=P1 ⊕ KS1 and E2=P2 ⊕KS2 If P1 and P2 were to use same Packet Number(PN), then KS1=KS2 In that case E1 ⊕ E2 =P1 ⊕ P2 --- Effect of Encrypton Eliminated!! If P1 is known / Guessed .It is possible to Decrypt P2 So ,for a given key , Transmitter must never use the same Packet No (PN) in any two encrypted packet
  • 8. KRACK Attack on WPA2 • All protected Wi-Fi networks use the 4-way handshake to generate a fresh session key. So far, this 14-year-old handshake has remained free from attacks, and is even proven secure. • However, we show that the 4-way handshake is vulnerable to a key reinstallation attack. Here, the adversary tricks a victim into reinstalling an already-in-use key. • This is achieved by manipulating and replaying handshake messages. When reinstalling the key, associated parameters such as the incremental transmit packet number (nonce) and receive packet number (replay counter) are reset to their initial value. • Our key reinstallation attack also breaks the PeerKey, group key, and Fast BSS Transition (FT) handshake. The impact depends on the handshake being attacked, and the data-confidentiality protocol in use. • Simplified, against AES-CCMP an adversary can replay and decrypt (but not forge) packets. This makes it possible to hijack TCP streams and inject malicious data into them. • Against WPATKIP and GCMP the impact is catastrophic: packets can be replayed, decrypted, and forged. Because GCMP uses the same authentication key in both communication directions, it is especially affected
  • 9.
  • 10.
  • 11.
  • 12.
  • 13.
  • 14.
  • 15.
  • 16.
  • 17.
  • 18.
  • 19.
  • 20.
  • 21.
  • 22.
  • 23.
  • 24.
  • 25.
  • 26.
  • 27.
  • 28.
  • 29.
  • 30.
  • 31.
  • 32. • WPA3 Security will eliminate all the known security risks and attacks that are up today including the Key Reinstallation Attacks (KRACK). • The WPA3 standard adds four features not found in WPA2. Manufacturers must fully implement these four features to market their devices as “Wi-Fi CERTIFIED™ WPA3™”. These Features are as Follows: 1. A More Secure Handshake 2. Open Wi-Fi Network Security 3. Enables easy connectivity to devices with out display 4. 192-bit security suite
  • 33. A More Secure Handshake • Deliver robust protections even when users choose passwords that fall short of typical complexity recommendations. • Ordinary home networks that are protected with a single password, will be required to use the Simultaneous Authentication of Equals (SAE) handshake. • This handshake is resistant against offline dictionary attacks. • SAE handshake is a variant of the Dragonfly handshake defined in RFC 7664, which in turn is based on the SPEKE handshake. • In a Wi-Fi network, the SAE handshake negotiates a fresh Pairwise Master Key (PMK). • The resulting PMK is then used in a traditional 4-way handshake to generate session keys. This means the SAE handshake is always followed by a 4-way handshake. • The 32-byte PMK that the SAE handshake negotiates cannot be guessed using a dictionary attack, even though it's used in the 4-way handshake. • Additionally, forward secrecy is indeed provided because the SAE handshake assures the PMK cannot be recovered if the password becomes known.
  • 34. Open Wi-Fi Network Security • Strengthens user privacy in open networks through individualized data encryption. • Provide a simple way for public and guest WLANs to be encrypted and secure without the need for a personal VPN. • A “new” encryption, Opportunistic Wireless Encryption (OWE), is based on RFC8110. • Without a pre-configured password, client devices and access points will be able to create a one-time use Pairwise Master Key (PMK), replacing the most common current use of “Open” wireless security. • OWE handshake negotiates a new PMK using a Diffie-Hellman key exchange. • This handshake is encapsulated in Information Elements (IEs) in the (re)association request and response frames. • The resulting PMK is used in a 4-way handshake, which will negotiate and install frame encryption keys.
  • 35. Enables easy connectivity to devices with out display • Designed to secure IoT devices, most of which have limited or no display interface. • The new Device Provisioning Protocol will provide a simple and secure way to add these devices to a Wi-Fi network. • Simplified, secure configuration and on boarding for devices with limited or no display interface. • More precisely, the replacement of WPS will be the Wi-Fi Device Provisioning Protocol (DPP). • This protocol allows you to add new devices to a network using QR codes. • Based on a quick scan of the draft standard, it seems it may also allow usage of USB, NFC, or Bluetooth to add a device to the network. The protocol itself is based on public key cryptography.
  • 36. 192 Bit Security Suite • This is a cryptographic strength enhancement. • The feature is aligned with the Commercial National Security Algorithm (CNSA) Suite and designed to maintain data integrity on networks requiring the highest security, even in a post-quantum computer era. • That means it meets requirements for high-level government work, defense agencies, and super secret industrial projects.
  • 39. Simultaneous Authentication of Equals • Simultaneous Authentication of Equals (SAE) is a variant of Dragonfly, a password-authenticated key exchange based on a zero-knowledge proof. • SAE is used by STAs to authenticate with a password and dynamically establish session keys • SAE supports both FFC (Finite Field Cryptography) and ECC (Elliptic Curve Cryptography) • By default, SAE uses ECC with order of 256-bit prime number. • An attacker is unable to make more than one guess at the password per attack. This implies that the attacker cannot make one attack and then go offline and make repeated guesses at the password until successful. In other words, SAE is resistant to dictionary attack. • An attacker is unable to determine either the password or the resulting PMK by passively observing an exchange or by interposing itself into the exchange by faithfully relaying messages between the two STAs.
  • 40.