Security flaws in 802.11 data link protocols

Communications of the ACM

Volumn 46, Issue 5, 2003, Pages 35-39

  Cam Winget, Nancy ^a   Housley, Russ ^b   Wagner, David ^c   Walker, Jesse ^d  

^a CISCO SYSTEMS   (United States)

^b Vigil Security   (United States)

^c UNIVERSITY OF CALIFORNIA   (United States)

^d INTEL CORPORATION   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ALGORITHMS; CODES (SYMBOLS); COMPUTER PRIVACY; CRYPTOGRAPHY; DATA COMMUNICATION SYSTEMS; LOCAL AREA NETWORKS; NETWORK PROTOCOLS; RADIO RECEIVERS; RADIO TRANSMITTERS; WIRELESS TELECOMMUNICATION SYSTEMS;

DATA LINK SECURITY PROTOCOLS; INTEGRITY CHECK VALUE; MESSAGE INTEGRITY CODE; WIRELESS EQUIVALENT PRIVACY; WIRELESS LOCAL AREA NETWORK;

SECURITY OF DATA;

EID: 0037766154     PISSN: 00010782     EISSN: None     Source Type: Journal    
DOI: 10.1145/769800.769823     Document Type: Article

References (11)

1. Arbaugh, W. An Inductive Chosen Plaintext Attack Against WEP/WEP2. IEEE Document 802.11-02/230, May 2001; grouper.ieee.org/groups/802/11.
2. Borisov, N., Goldberg, I., and Wagner, D. Intercepting mobile communications: The insecurity of 802.11. In Proceedings of the International Conference on Mobile Computing and Networking, (July 2001), 180-189.
3. Dworkin, M. Recommendation for Block Cipher Modes of Operation: Methods and Techniques. NIST Special Publication 800-38A, Dec. 2001.
4. Ferguson, N. Michael: An improved MIC for 802.11 WEP. IEEE 802.11 doc 02-020r0, Jan. 17, 2002, grouper.ieee.org/groups/802/11.
5. Fluhrer, S., Mantin, I., and Smith, A. Weaknesses in the key schedule algorithm of RC4. In Proceedings of the 4th Annual Workshop on Selected Areas of Cryptography, 2001.
6. Housley, R. and Arbaugh, W. Security problems in 802.11-based networks. Commun. ACM 46, 5, (May 2003).
7. ISO/IEC 8802-11 ANSI/IEEE Std 802.11-1999. Information technology - Telecommunications and information systems - Local and metropolitan area networks - Specific requirements - Part 11: Wireless LAN Media Access Control (MAC) and Physical Layer (PHY) specifications.
8. National Institute of Standards and Technology. FIPS Pub 197: Advanced Encryption Standard (AES). Nov. 26, 2001.
9. National Institute of Standards and Technology. FIPS Pub 113: Computer Data Authentication. May 30, 1985.
10. Stubblefield, A., Ioannidis, J., and Rubin, A. Using the Fluhrer, Mantin, and Shamir attack to break WEP. In Proceedings of the 2002 Network and Distributed Systems Security Symposium (2002), 17-22.
11. Walker, J. Unsafe at Any Key Size: An Analysis of the WEP Encapsulation. IEEE 802.11 doc 00-362, Oct. 27, 2000; grouper.ieee.org/groups/802/11.