A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP

Proceedings of the International Conference on Information Science and Security, ICISS 2008

Volumn , Issue , 2008, Pages 164-170

  Hyunuk, Hwang ^a   Gyeok, Jung ^a   Kiwook, Sohn ^a   Sangseo, Park ^a  

^a ETRI

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; NETWORK SECURITY;

802.11I; AUTHENTICATION INFORMATION; AUTHENTICATION SERVERS; EAP-TTLS; MAN IN THE MIDDLE; UNAUTHORIZED USERS;

WIRELESS LOCAL AREA NETWORKS (WLAN);

EID: 48349106601     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICISS.2008.10     Document Type: Conference Paper

References (16)

1. J. Walker, Unsafe at Any Key Size: an Analysis of the WEP Encapsulation, Tech. Rep. 03628E, IEEE 802.11 committee, March 2000, http://grouper.ieee.Org/ groups/802/11/Documents/Document Holder/0-362.zip.
2. S. Fluhrer et al., "Weakness in the key scheduling algorithm of RC4", Eighth Annual Workshop on Selected Areas in Cryptography, Toronto, Canada, Aug. 2001.
3. John Bellardo, Stefan Savage, "802.11 Denial of Service Attacks: Real Vulnerabilities and Practical Solutions", 2003, Usenix2003 Proceedings.
4. IEEE Std 802.11i/D2.0, Specification for Enhanced Security, Mar. 2002.
5. Wi-Fi Alliance, "Enhanced Security Implementation Based on IEEE P802.1 Ii standard", Aug. 2004.
6. IEEE 802.1 Working Group, 802.1X - port based network access control.
7. Foundary NETWORKS, Using IEEE 802. IX to Enhance Network Security, Oct. 2002.
8. C. Rigney, Remote Authentication Dial In User Service(RADIUS), IETF RFC 2865, June 2000.
9. D. Simon et al., RADIUS Master Session Key Attribute, http://www.potaroo.net/ietf/ids/draftsimon-radius-key-attr-00.txt, Mar. 2000.
10. L. Blunk et al., PPP Extensible Authentication Protocol(EAP), IETF RFC 2284, Mar. 1998.
11. T. Dierks et al., The TLS Protocol Version 1.0, IETF RFC 2246, Jan. 1999.
12. P. Calhoun and C. Perkins, PPP EAP TLS Authentication Protocol, IETF RFC 2794, Mar. 2000.
13. P. Funk et al., EAP Tunneled TLS Authentication Protocol, http://www.potaroo.net/ietf/ids/draftietf-pppext-eap-ttls-01.txt, Feb. 2002.
14. L. Blunk, J. Vollbrecht, PPP Extensible Authentication Protocol (EAP), IETF RFC 2284, Mar. 1998.
15. Shmoo group, http://airsnarf.shmoo.com.
16. Host AP driver for Intersil Prism2/2.5/3, hostapd, WPA Supplicant, http://hostap.epitest.fi.