Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống
1
/ 38 trang
THÔNG TIN TÀI LIỆU
Thông tin cơ bản
Định dạng
Số trang
38
Dung lượng
1,89 MB
Nội dung
Wireless LAN Security Wireless LAN Security Hồ Đắc Biên bien.ho@ttgtc.com 0985 196 884 MCSA , MCITP-EA , CCNP , , ,, CCIE Written, Security+, CEH Website : http://ttgtc.com Forum : http://ttgtc.com/forum Agenda Agenda Introduction WLAN Security Threats Evolution of Wireless LAN Securit y y Demo : Crack WEP, WPA PSK Prevention Prevention Q&A Website : http://ttgtc.com Forum : http://ttgtc.com/forum Introduction WLAN Security Threats Website : http://ttgtc.com Forum : http://ttgtc.com/forum Introduction Introduction Website : http://ttgtc.com Forum : http://ttgtc.com/forum Wireless LAN Security Threats Wireless LAN Security Threats Website : http://ttgtc.com Forum : http://ttgtc.com/forum WarDriving Equipment +18dB Antenna Poor guys A laptop with WLAN adapter Rich guys Website : http://ttgtc.com Forum : http://ttgtc.com/forum Toys for Hackers Toys for Hackers Website : http://ttgtc.com Forum : http://ttgtc.com/forum ADual - Use Product A Dual Use Product Website : http://ttgtc.com Forum : http://ttgtc.com/forum Netstumbler Netstumbler Website : http://ttgtc.com Forum : http://ttgtc.com/forum Kismet Kismet Website : http://ttgtc.com Forum : http://ttgtc.com/forum [...]...Sniffer on WLAN • • All messages are sent in clear over the wireless network Eavesdroppers may be stealing your messages secretly… eavesdropper gateway.cs telnet gateway.cs login: 58888888 password: … … • asdfg888 Other insecure applications: pop3, web-based email services, etc Website : http://ttgtc.com Forum : http://ttgtc.com/forum Evolution of Wireless LAN Security Website : http://ttgtc.com... Forum : http://ttgtc.com/forum Wireless network model We assume that: 1 Wireless router’s wan interface connects to a DSL/Cable Modem 2 A user computer connects to p router through wireless connection which is protected by WEP 3 Attacker doesn’t know the WEP password and even the SSID and Channel Website : http://ttgtc.com Forum : http://ttgtc.com/forum Crack WEP Key 1 Wireless card support crack WEP... web-based email services, etc Website : http://ttgtc.com Forum : http://ttgtc.com/forum Evolution of Wireless LAN Security Website : http://ttgtc.com Forum : http://ttgtc.com/forum Evolution of Wireless LAN Security 1997 2001 2003 2004 to Present WEP 802.1x EAP WPA 802.11i / WPA2 Basic encryption Dynamic keys Standardized No strong authentication Improved encryption Improved encryption Static, Static... support crack WEP key pp y http://backtrack.offensive -security. com/index.php?title=HCL :Wireless 2 Driver http://www.wildpackets.com/support/product_support/airopeek/hardware 3 Crack Tool : Aircrack Suite BackTrack http://aircrack-ng.org/doku.php#aircrack-ng_suite1 htt // i k /d k h # i k it 1 Website : http://ttgtc.com Forum : http://ttgtc.com/forum Wireless Card Crack WEP TL-WN510G WG511T D-Link WUA-1340... encryption Test all access points for weak packets (Kismet) Consider changing shared access keys periodically or when security situation changes Use with MAC controls on small networks Keep access points behind a firewall in a DMZ Assume the network is untrusted and provide for additional security Website : http://ttgtc.com Forum : http://ttgtc.com/forum Securing WPA/WPA2 Use WPA2 or WPA when ever available... http://ttgtc.com d hb0d stumbler.net Forum : http://ttgtc.com/forum Resources and References http://www.informationheadquarters.com/Internet/WIFI.shtml http://www.networkintrusion.co.uk /wireless. htm http://www.usbwifi.orcon.net.nz/... PSK aircrack-ng -w (dictionary file) (file name of cap created by airdump) Website : http://ttgtc.com Forum : http://ttgtc.com/forum Prevention Website : http://ttgtc.com Forum : http://ttgtc.com/forum Security on Open Networks y p Use U a secure VPN to access private resources i http://hotspotshield.com/ Use SSL encrypted versions of access protocols https instead of http pop3s instead of pop3 imaps... Uses CCMP Uses AES with 128-bit key and 128-bit block size y Required part of 802.11i standard Website : http://ttgtc.com Forum : http://ttgtc.com/forum Cracks in WEP – Historic Evolution 2001 - The insecurity of 802.11, Mobicom, July 2001 N Borisov, I Goldberg and D Wagner 2001 - Weaknesses in the key scheduling algorithm of RC4 S Fluhrer, I Mantin, A Shamir Aug 2001 2002 - U i th Fl h Using the Fluhrer,... http://ttgtc.com/forum Demo: Airodump 1.Select 1 Select adapter 2.Choose interface 3.Choose channel 3 Ch h l 4.Name the output file file 5.Select Content that is captured *Airodump supports limited kind of wireless adapters including: Atheros Aironet, Aironet, Realteak, PrismGT and Intel Realteak, 3956 Website : http://ttgtc.com Forum : http://ttgtc.com/forum Aircrack ng Aircrack-ng Website : http://ttgtc.com... http://www.informationheadquarters.com/Internet/WIFI.shtml http://www.networkintrusion.co.uk /wireless. htm http://www.usbwifi.orcon.net.nz/ htt // b ifi t / http://www.wi-fi.org/ http://www.wifinetnews.com/ http://www.wi-fiplanet.com/ http://grouper.ieee.org/groups/802/11/ http://www.drizzle.com/ aboba/IEEE/ http://www drizzle com/~aboba/IEEE/ Website : http://ttgtc.com Forum : http://ttgtc.com/forum . services, etc. Evolution of Wireless LAN Security Website : http://ttgtc.com Forum : http://ttgtc.com/forum Evolution of Wireless LAN Security Evolution of Wireless LAN Security 1997 2001 2003. Wireless LAN Security Wireless LAN Security Hồ Đắc Biên bien.ho@ttgtc.com 0985 196 884 MCSA , MCITP-EA , CCNP , , ,, CCIE Written, Security+ , CEH Website : http://ttgtc.com Forum. WLAN Security Threats Website : http://ttgtc.com Forum : http://ttgtc.com/forum Introduction Introduction Website : http://ttgtc.com Forum : http://ttgtc.com/forum Wireless LAN Security Threats Wireless