Researchers Claim to Crack 802.1x WiFi

satsujin writes: "Researchers from the University of Maryland have released a paper on the weaknesses found in the 802.11x protocol. It looks like it might not be as strong as Cisco has contended."

Classical goofs

[gweihir]

In any good crypto lecture you learn that there are two parts to authentication:

1. Authentication of both sides towards the other.
   
2. Keeping up the authentication while you communicate.
   

Seems these people goofed in both tasks! First they did not do two-way authentication. So everybody can claim to be the non-authenticated party. Then they used a form of authentication that allows a succesful imposter to now pose as the authenticated party. And third they did not prevent session hijacking, i.e. do not keep up the authentication!

Very, very incompetent. Obviously these people did not have a good crypto lecture or did not understand what they where supposed to learn there.

And they apperaently did not even read the specification of the infrastructure they are using. My favorite quote:

"If you look at the 802.1x, they tell you the 1x protocol is insecure when used in a shared medium environment unless a security association is established. Since 802.11 doesn't do that, so by IEEE's own words it is insecure," Arbaugh said.