Slashdot Mirror


Researchers Crack WPA Wi-Fi Encryption

narramissic writes "Researchers Erik Tews and Martin Beck 'have just opened the box on a whole new hacker playground, says Dragos Ruiu, organizer of the PacSec conference. At the conference, Tews will show how he was able to partially crack WPA encryption in order to read data being sent from a router to a laptop. To do this, Tews and Beck found a way to break the Temporal Key Integrity Protocol (TKIP) key, used by WPA, in a relatively short amount of time: 12 to 15 minutes. They have not, however, managed to crack the encryption keys used to secure data that goes from the PC to the router in this particular attack. 'Its just the starting point,' said Ruiu."

17 of 311 comments (clear)

  1. Ha ha ha ha by Anonymous Coward · · Score: 3, Funny

    All your AP are belong to us.

    You have no chance to survive make your time.

  2. Hahaha! by u38cg · · Score: 5, Funny

    I use WEP!

    --
    [FUCK BETA]
    1. Re:Hahaha! by PotatoFarmer · · Score: 5, Funny

      We know. By the way, do you think you could talk your ISP into increasing your download bandwidth?

    2. Re:Hahaha! by russotto · · Score: 4, Funny

      Yeah, and I run an open access point with the SSID hidden called "secret_awesome".

      I run one called "man_in_the_middle". Best pay attention to those certificate warnings when you're using it.

  3. Re:OHNOES! by Coraon · · Score: 4, Funny

    I know I just got root access...BTW could you put in some bread? I'm trying to install pop-up's.

    --
    -Ours is the wisdom of Solomon, the magic of Merlyn, the fall of Icaris.
  4. Re:WPA2 is NOT broken by sexconker · · Score: 4, Funny

    Nerds like to sit.
    You can sniff packets while sitting just about anywhere. In your kitchen. In your car. On the crapper.
    To tap a line, you usually have to get up, and you often have to use some archaic toolset like Screw.Driver or Flash.Light that you haven't supported since 3 forks ago.

  5. Re:WPA2 is NOT broken by MasterNetHead · · Score: 3, Funny

    Its funny... my neighbors are probably thinking the same thing.

  6. Re:Meh by monkeySauce · · Score: 4, Funny

    Bah... cat5 is already broken, and cat5e is next.

    Got to think cat6 at least, if not cat7. They're much thicker; harder to break.

  7. Re:Meh by Otto · · Score: 3, Funny

    You can even do it without physical access on cheap routers and/or modems, by pointing a good digital camera and a telescope at the blinkenlights on the front of them. :D

    --
    - Give a man a fire and he's warm for a day, but set him on fire and he's warm for the rest of his life.
  8. Re:'Story' tag by athakur999 · · Score: 4, Funny

    They should tagged it "tagged" if it is tagged and "!tagged" if it's not tagged.

    --
    "People that quote themselves in their signatures bother me" - athakur999
  9. Re:Meh by Endo13 · · Score: 4, Funny

    Apparently you just haven't watched enough movies. Obtaining physical access IS trivial. All you need is a hot chick to go swipe the security guard's badge that he conveniently left lying on his desk, and you're guaranteed access anywhere in the building.

    --
    There is no -1 Disagree mod. Slashdot.org/faq defines mod options. USE IT.
  10. Re:Meh by Endo13 · · Score: 4, Funny

    Well duh, of course it's trivial. They're always swooning over you. (Well, except when they're pretending to fight with you, but even then they always come around just in time.) Haven't you learned anything from Hollywood??

    --
    There is no -1 Disagree mod. Slashdot.org/faq defines mod options. USE IT.
  11. Re:Meh by fataugie · · Score: 5, Funny

    Yeah, except smarts and hotness are inversly proportianal in most cases.
    What good is getting access when the bubblehead can't figure out what a wiring closet looks like.

    --

    WTF? Over?

  12. Re:Who uses TKIP instead of AES? by fataugie · · Score: 4, Funny

    What's also funny is that my router gives me better throughput with WPA/AES than WEP

    That's because your router is laughing at you using WEP in between encrypting/decrypting the packets....that's why it takes longer.

    --

    WTF? Over?

  13. Re:Meh by RiotingPacifist · · Score: 3, Funny

    hey its "yes, you can08" to meet the new stricter password requirements

    --
    IranAir Flight 655 never forget!
  14. Obviously by spazdor · · Score: 3, Funny

    over 9000.

    --
    DRM: Terminator crops for your mind!
  15. Re:Meh by Logic+and+Reason · · Score: 4, Funny

    smarts and hotness are inversly proportianal

    Wow, you must be really hot...