Slashdot Mirror

← Back to Stories (view on slashdot.org)

Elcomsoft Claims WPA/WPA2 Cracking Breakthrough

Posted by timothy on from the it-budget-excuse-par-excellence dept.

secmartin writes "Russian security firm Elcomsoft has released software that uses Nvidia GPUs to speed up the cracking of WPA and WPA2 keys by a factor of 100. Since the software allows them to network thousands of PCs, this anouncement effectively signals the death of wireless networking in business networks; any network handling sensitive data should start using VPN encryption on machines connecting over Wi-Fi networks, or stop using these networks altogether."

8 of 349 comments (clear)

  1. Re:Why does wireless security suck so bad? by swillden · · Score: 5, Informative

    Seriously. We've had a number of standards with names like "Wired Equivalency Protocol" and "Wifi Protected Access" and yet they seem to be falling, one-by-one, to relatively trivial attacks.

    "Seem" is the key word in this paragraph.

    The claimed attack is nothing more than a brute force search on WPA/WPA2 pre-shared keys, a search that will fail if the keys are well-chosen. It has no effect whatsoever on WPA or WPA2 when used with any of the EAP authentication modes. But PSK requires the network admin to choose a key, and the key is typically chosen by typing in a passphrase. If that passphrase is weak, then given enough computation power an attacker can guess it. Big surprise.

    WPA and WPA2 ARE just as solid as SSL. The only difference is that everyone knows that if you're doing SSL you should use a good random number generator to help generate your key pair and to generate the session keys.

    --
    Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  2. Summary is quite silly! by Qwavel · · Score: 5, Informative

    Businesses that are serious about their security use one of the many types of WPA-Enterprise. The method described in this article only applies to WPA-Personal which is targeted at home users.

    Those businesses that do use WPA-Personal can simply institute a policy that requires better passwords to secure them against this exploit.

    Some businesses will continue to use WPA-Personal with poor passwords, and that's fine, but those businesses are probably not too worried about security and have many other bigger vulnerabilities.

    So, the claim that "this anouncement effectively signals the death of wireless networking in business networks" is ridiculous.

  3. Re:Looks Like I'm Safe by Anonymous Coward · · Score: 5, Informative

    Uh, where are you getting that number? (26*2+1)^10 works out to 1.7488747 * 10^17. Wouldn't it be more like ((26*2)+10)^10, assuming no spaces?

  4. Re:You can get hard passwords by mlts · · Score: 5, Informative

    I personally recommend KeePass for password generation. It can generate 63 char passwords for WPA/WPA2 keys with cryptographically random unpredictability as it uses keyboard/mouse movements as part of seeding. Because its done on the local machine, there is no chance of the password being leaked as compared over the web. With a 63 character password, that is far more entropy than the 128 or 256 bits keys used for AES, so for someone to guess a password of that length, they either have to be able to brute force AES at full strength, or find a weakness in the algorithm's implementation.

    I generate a KeePass password, save it to a USB flash drive, then paste it into my router's config. I then take the USB flash drive to the physical machines and do a copy and paste of the 63 char key into their network preferences. This is a lot easier than typing it. Should I lose the key... not hard to fix -- generate another one and rekey the 3-4 machines on my network. Because the WPA/WPA2 key is easily resettable with physical access to the machines, there is no reason to go less than the maximum character length, and it doesn't matter if the password gets forgotten, as long as you remember your router and machine's access passwords. (This for a home network. Businesses should use a RADIUS server where all the machines are not reliant on a single shared encryption key.)

    If you have to use fewer characters, I'd say never use fewer than 20 characters, but even that is cutting it thin, factoring in Moor's law, botnets, and usage of GPUs for additional number crunching.

  5. Re:Why does wireless security suck so bad? by Simon+(S2) · · Score: 4, Informative

    Yes.

    --
    I just don't trust anything that bleeds for five days and doesn't die.
  6. Already GPL'ed ... by Anonymous Coward · · Score: 4, Informative

    All of this is already available as a GPL'ed tool that has been out for about a month. See http://pyrit.googlecode.com

  7. Re:Why does wireless security suck so bad? by databeast · · Score: 5, Informative

    Better yet, use 802.1x (WPA + RADIUS) which completely avoids all the key-exchange weaknesses of WEP and WPA.

  8. Re:You can get hard passwords by Hork_Monkey · · Score: 5, Informative

    If you're setting up a 200 device wireless network with WPA PSK, you're doing it wrong.