MIT Researchers Defend Against Wireless Attacks

Posted by timothy on Thursday August 25, 2011 @11:20AM from the just-kill-anyone-in-any-sort-of-middle dept.

alphadogg writes "MIT researchers have devised a protocol to flummox man-in-the-middle attacks against wireless networks. The all-software solution lets wireless radios automatically pair without the use of passwords and without relying on out-of-band techniques such as infrared or video channels. Dubbed Tamper-evident pairing, or TEP, the technique is based on understanding how man-in-the-middle attacks tamper with wireless messages, and then detects and in some cases blocks the tampering. The researchers suggest that TEP could have detected the reported but still unconfirmed cellular man-in-the-middle attack that unfolded at the Defcon conference earlier this month in Las Vegas."

2 of 65 comments (clear)

Min score:

Reason:

Sort:

Very poor summary by Mensa+Babe · 2011-08-25 11:35 · Score: 5, Insightful

I happen to have been following the work of Dina Katabi et al. for quite some time now and I have to admit that it is a very poor summary even for Slashdot. I can assure you that you can understand much more by skipping the summary, skipping the Original Source link and just reading the paper in question. It is a truly revolutionary idea that will soon change the way we perceive the risks in wireless communication.

--
Karma: Positive (probably because of superiour intellect)
you miss the point by Chirs · 2011-08-25 12:09 · Score: 5, Insightful

The client sees the "lie", and doesn't trust either of the offers because it isn't sure which is real.
Based on this, it's possible to DOS a router by sending out connection offers, but you can't do a MITM attack.