|
Science Forum Index » Cryptography Forum » WPA2-PSK safty despite PSK compromise...
Page 1 of 1
|
| Author |
Message |
| Thorsten Tarrach... |
 Posted: Wed Jul 16, 2008 9:57 am |
|
|
|
Guest
|
Hi,
I'm wondering about WPA2 safety in the scenario of a compromised preshared
key (PSK).
I'm aware that the protocol is safe by today's knowledge if they key is kept
secure.
But what if I share the key with another person to enable that person to use
my AP. Will that break confidentiality of my communication with the AP?
The AES encryption key is derived from the PSK in some form of handshake. I
want to know now if someone else can obtain that key by capturing the
handshake and knowing the PSK?
Thanks, Thorsten |
|
|
| Back to top |
|
| Carsten Krueger... |
| Posted: Wed Jul 16, 2008 1:09 pm |
|
|
|
Guest
|
|
| Back to top |
|
| Thorsten Tarrach... |
| Posted: Thu Jul 17, 2008 2:56 am |
|
|
|
Guest
|
Hi Carsten,
I agree that a man in the middle attack (probably ARP poisoning) would be
feasible but to sustain it over long periods unnoticed would be difficult.
So what about the case of a silent listener?
Thanks, Thorsten
"Carsten Krueger" <cakruege at (no spam) invalid.invalid> wrote in message
news:945u0oramtk8$.dlg at (no spam) cakruege.my-fqdn.de...
Quote: Am Wed, 16 Jul 2008 16:57:01 +0200 schrieb Thorsten Tarrach:
Will that break confidentiality of my communication with the AP?
Yes, because he can do a man in the middle attack
greetings
Carsten |
|
|
| Back to top |
|
| Carsten Krueger... |
| Posted: Thu Jul 17, 2008 12:04 pm |
|
|
|
Guest
|
|
| Back to top |
|
| Dale Harris... |
| Posted: Fri Jul 18, 2008 7:01 am |
|
|
|
Guest
|
"Thorsten Tarrach" <tho_public at (no spam) gmx.de> wrote in message
news:487e0c3f$0$23894$8a7afdce at (no spam) news4.usenet4u.nl...
Quote: Hi,
I'm wondering about WPA2 safety in the scenario of a compromised preshared
key (PSK).
I'm aware that the protocol is safe by today's knowledge if they key is
kept
secure.
But what if I share the key with another person to enable that person to
use
my AP. Will that break confidentiality of my communication with the AP?
The AES encryption key is derived from the PSK in some form of handshake.
I
want to know now if someone else can obtain that key by capturing the
handshake and knowing the PSK?
If the key is compromised than you cannot expect any security. Cryptology is
all about keys.
** Posted from http://www.teranews.com ** |
|
|
| Back to top |
|
| Carsten Krueger... |
| Posted: Fri Jul 18, 2008 5:34 pm |
|
|
|
Guest
|
|
| Back to top |
|
| Thorsten Tarrach... |
| Posted: Wed Jul 23, 2008 5:19 pm |
|
|
|
Guest
|
"Carsten Krueger" <cakruege at (no spam) invalid.invalid> wrote in message
news:smxz9qy52cbr.dlg at (no spam) cakruege.my-fqdn.de...
That's what I would have expected. With Diffie-Hellman key exchange the AP
and station could derive a key without a passive adversary gaining access to
it. |
|
|
| Back to top |
|
| |
