chap18.wireless Network Security

Similar documents
CS 356 Lecture 29 Wireless Security. Spring 2013

How To Secure Wireless Networks

White paper. Testing for Wi-Fi Protected Access (WPA) in WLAN Access Points.

CS 336/536 Computer Network Security. Summer Term Wi-Fi Protected Access (WPA) compiled by Anthony Barnard

UNIK4250 Security in Distributed Systems University of Oslo Spring Part 7 Wireless Network Security

Security+ Guide to Network Security Fundamentals, Third Edition. Chapter 6. Wireless Network Security

Certified Wireless Security Professional (CWSP) Course Overview

Security (WEP, WPA\WPA2) 19/05/2009. Giulio Rossetti Unipi

Chapter 6 CDMA/802.11i

IEEE Wireless LAN Security Overview

Security Awareness. Wireless Network Security

NXC5500/2500. Application Note w Management Frame Protection. ZyXEL NXC Application Notes. Version 4.20 Edition 2, 02/2015

12/3/08. Security in Wireless LANs and Mobile Networks. Wireless Magnifies Exposure Vulnerability. Mobility Makes it Difficult to Establish Trust

Wireless security. Any station within range of the RF receives data Two security mechanism

CS5490/6490: Network Security- Lecture Notes - November 9 th 2015

Lecture Objectives. Lecture 8 Mobile Networks: Security in Wireless LANs and Mobile Networks. Agenda. References

CS549: Cryptography and Network Security

The following chart provides the breakdown of exam as to the weight of each section of the exam.

Table of Contents. Cisco Wi Fi Protected Access 2 (WPA 2) Configuration Example

Chapter 2 Wireless Networking Basics

XIV. Title. 2.1 Schematics of the WEP Encryption in WEP technique Decryption in WEP technique Process of TKIP 25

Symm ym e m t e r t ic i c cr c yptogr ypt aphy a Ex: RC4, AES 2

All vulnerabilities that exist in conventional wired networks apply and likely easier Theft, tampering of devices

1. discovery phase 2. authentication and association phase 3. EAP/802.1x/RADIUS authentication 4. 4-way handshake 5. group key handshake 6.

Journal of Mobile, Embedded and Distributed Systems, vol. I, no. 1, 2009 ISSN

Overview. Summary of Key Findings. Tech Note PCI Wireless Guideline

Huawei WLAN Authentication and Encryption

WLAN Access Security Technical White Paper. Issue 02. Date HUAWEI TECHNOLOGIES CO., LTD.

WIRELESS NETWORKING SECURITY

Recommended Wireless Local Area Network Architecture

Link Layer and Network Layer Security for Wireless Networks

Security in IEEE WLANs

Wi-Fi Protected Access: Strong, standards-based, interoperable security for today s Wi-Fi networks Wi-Fi Alliance April 29, 2003

Wireless Networks. Welcome to Wireless

Wireless Security for Mobile Computers

Wireless Robust Security Networks: Keeping the Bad Guys Out with i (WPA2)

WEP Overview 1/2. and encryption mechanisms Now deprecated. Shared key Open key (the client will authenticate always) Shared key authentication

WLAN Security. Giwhan Cho Distributed/Mobile Computing System Lab. Chonbuk National University

ANALYSIS OF SECURITY PROTOCOLS FOR WIRELESS NETWORKS

Network security, TKK, Nov

Wireless Security Overview. Ann Geyer Partner, Tunitas Group Chair, Mobile Healthcare Alliance

Wireless Security with Cyberoam

Technical Brief. Wireless Intrusion Protection

WLAN Security Why Your Firewall, VPN, and IEEE i Aren t Enough to Protect Your Network

Advanced Security Issues in Wireless Networks

A DISCUSSION OF WIRELESS SECURITY TECHNOLOGIES

How To Protect A Wireless Lan From A Rogue Access Point

Analysis of Security Issues and Their Solutions in Wireless LAN 1 Shenam Chugh, 2 Dr.Kamal

7 Network Security. 7.1 Introduction 7.2 Improving the Security 7.3 Internet Security Framework. 7.5 Absolute Security?

Wi-Fi in Healthcare:

Introduction to WiFi Security. Frank Sweetser WPI Network Operations and Security

PwC. Outline. The case for wireless networking. Access points and network cards. Introduction: OSI layers and 802 structure

Link Layer and Network Layer Security for Wireless Networks

VIDEO Intypedia012en LESSON 12: WI FI NETWORKS SECURITY. AUTHOR: Raúl Siles. Founder and Security Analyst at Taddong

Security in Wireless Local Area Network

WiFi Security: WEP, WPA, and WPA2

Wireless Networking Basics. NETGEAR, Inc Great America Parkway Santa Clara, CA USA

Wireless Security. New Standards for Encryption and Authentication. Ann Geyer

Wireless Network Security Position Paper - Technical

Lecture 3. WPA and i

Configuring Security Solutions

Chapter 2 Configuring Your Wireless Network and Security Settings

Vulnerabilities of Wireless Security protocols (WEP and WPA2)

Industrial Communication. Securing Industrial Wireless

Wireless Technology Seminar

THE IMPORTANCE OF CRYPTOGRAPHY STANDARD IN WIRELESS LOCAL AREA NETWORKING

WIRELESS SECURITY. Information Security in Systems & Networks Public Development Program. Sanjay Goel University at Albany, SUNY Fall 2006

Lecture 2 Secure Wireless LAN

WIRELESS SECURITY IN (WI-FI ) NETWORKS

Network Security Best Practices

WLAN w Technology

Agenda. Wireless LAN Security. TCP/IP Protocol Suite (Internet Model) Security for TCP/IP. Agenda. Car Security Story

A SURVEY OF WIRELESS NETWORK SECURITY PROTOCOLS

Network Security: WLAN Security. Tuomas Aura T Network security Aalto University, Nov-Dec 2010

WLAN Attacks. Wireless LAN Attacks and Protection Tools. (Section 3 contd.) Traffic Analysis. Passive Attacks. War Driving. War Driving contd.

1.1 Demonstrate how to recognize, perform, and prevent the following types of attacks, and discuss their impact on the organization:

The next generation of knowledge and expertise Wireless Security Basics

Chapter 3 Safeguarding Your Network

Running Head: WIRELESS DATA NETWORK SECURITY FOR HOSTPITALS

WiFi. Is for Wireless Fidelity Or IEEE Standard By Greg Goldman. WiFi 1

Understanding Wireless Security on Your Polycom SpectraLink 8400 Series Wireless Phones

Implementing Security for Wireless Networks


Ensuring HIPAA Compliance in Healthcare

Configure WorkGroup Bridge on the WAP131 Access Point

Security Of Wi-Fi Networks

9 Simple steps to secure your Wi-Fi Network.

EVOLUTION OF WIRELESS LAN SECURITY ARCHITECTURE TO IEEE i (WPA2)

How To Understand The Power Of A Network On A Microsoft Ipa 2.5 (Ipa) (Ipam) (Networking) 2 (Ipom) 2(2

Transcription:

SeoulTech UCS Lab 2015-1 st chap18.wireless Network Security JeongKyu Lee Email: jungkyu21@seoultech.ac.kr

Table of Contents 18.1 Wireless Security 18.2 Mobile Device Security 18.3 IEEE 802.11 Wireless LAN Overview 18.4 IEEE 802.11i Wireless LAN Security 18.5 Recommended Reading 18.6 Key Terms, Review Questions, and Problems 2

1. Wireless Security Some of the key factors contributing to the higher security risk of wireless networks compared to wired networks include the following Channel: Eavesdropping and jamming than wired networks. Wireless networks are also more vulnerable to active attacks that exploit Mobility: Mobility results in a number of risks. Resources: Limited memory and processing resources with which to counter threats, including denial of service and malware. Accessibility: Greatly increases their vulnerability to physical attacks. 3

18.1 Wireless Security Wireless Network Threats (1/2) Accidental association : A user intending to connect to one LAN may unintentionally lock on to a wireless access point from a neighboring network. Malicious association : a wireless device is configured to appear to be a legitimate access point, enabling the operator to steal passwords from legitimate users and then penetrate a wired network through a legitimate wireless access point. Ad hoc networks : peer-to-peer networks between wireless computers with no access point between them Nontraditional networks : Nontraditional networks and links, such as personal network Bluetooth devices, barcode readers, and handheld PDAs, pose a security risk in terms of both eavesdropping and spoofing. 4

18.1 Wireless Security Wireless Network Threats (2/2) Identity theft (MAC spoofing): This occurs when an attacker is able to eavesdrop on network traffic and identify the MAC address of a computer with network privileges. Man-in-the middle attacks: This attack involves persuading a user and an access point to believe that they are talking to each other when in fact the communication is going through an intermediate attacking device. Wireless networks are particularly vulnerable to such attacks. Denial of service (DoS): The wireless environment lends itself to this type of attack, because it is so easy for the attacker to direct multiple wireless messages at the target. Network injection: A network injection attack targets wireless access points that are exposed to nonfiltered network traffic, such as routing protocol messages or network management messages. An example of such an attack is one in which bogus reconfiguration commands are used to affect routers and switches to degrade network performance. 5

18.1 Wireless Security Wireless Security Measures (1/2) Securing Wireless Transmissions principal threats to wireless transmission are eavesdropping, altering or inserting messages, and disruption Signal-hiding techniques: Organizations can take a number of measures to make it more difficult for an attacker to locate their wireless access points, including turning off service set identifier (SSID) broadcasting by wireless access points; assigning cryptic names to SSIDs; reducing signal strength to the lowest level that still provides requisite coverage; and locating wireless access points in the interior of the building, away from windows and exterior walls. Greater security can be achieved by the use of directional antennas and of signal-shielding techniques. Encryption: Encryption of all wireless transmission is effective against eavesdropping to the extent that the encryption keys are secured. 6

18.1 Wireless Security Wireless Security Measures (2/2) Securing Wireless Access Points The main threat involving wireless access points is unauthorized access to the network. The principal approach for preventing such access is the IEEE 802.1X standard for port-based network access control. Securing Wireless Networks 1. Use encryption. Wireless routers are typically equipped with built-in encryption mechanisms for router-to-router traffic. 2. Use antivirus and antispyware software, and a firewall. 3. Turn off identifier broadcasting. If a network is configured so that authorized devices know the identity of routers, this capability can be disabled, so as to thwart attackers. 4. Change the identifier on your router from the default. 5. Change your router s pre-set password for administration. This is another prudent step. 6. Allow only specific computers to access your wireless network. A router can be configured to only communicate with approved MAC addresses. 7

18.2 Mobile Device Security Security Threats (1/4) SP 800-14 lists seven major security concerns for mobile devices. Lack of Physical Security Controls Mobile device is required to remain on premises, the user may move the device within the organization between secure and nonsecured locations. theft and tampering are realistic threats. The threat is two fold: 1) A malicious party may attempt to recover sensitive data from the device itself 2) may use the device to gain access to the organization s resources. 8

18.2 Mobile Device Security Security Threats (2/4) Use of Untrusted Mobile Devices In addition to company-issued and company-controlled mobile devices, virtually all employees will have personal smartphones and/or tablets. The organization must assume that these devices are not trustworthy. Use of Untrusted Networks If a mobile device is used on premises, it can connect to organization resources over the organization s own in-house wireless networks. Thus, traffic that includes an off-premises segment is potentially susceptible to eavesdropping or man-in-themiddle types of attacks. 9

18.2 Mobile Device Security Security Threats (3/4) Use of Applications Created by Unknown Parties By design, it is easy to find and install third-party applications on mobile devices. This poses the obvious risk of installing malicious software. Interaction with Other Systems Unless an organization has control of all the devices involved in synchronization, there is considerable risk of the organization s data being stored in an unsecured location, plus the risk of the introduction of malware. 10

18.2 Mobile Device Security Security Threats (4/4) Use of Untrusted Content Mobile devices may access and use content that other computing devices do not encounter.. Use of Location Services The GPS service, it creates security risks. An attacker can use the location information to determine where the device and user are located, which may be of use to the attacker. 11

18.2 Mobile Device Security Fig1. Mobile Device Security Elements 12

18.3 IEEE 802.11 Wireless LAN Overview Station : The device is compatible with MAC and physical layer to IEEE802.11 Access point (AP) : Station has a function. And an object that provides access to the distribution system over a wireless medium Basic service set (BSS) : Station set of all possible approaches, including the AP and the AP Distribution system (DS) : BBS and the LAN and connects the system to generate an extended service set Extended service set (ESS) : A set of two or more mutually connected BSS in the expanded form of the BSS. 13

18.3 IEEE 802.11 Wireless LAN Overview Coordination function : Station logic function which operates within the BBS is decided to permit the transfer and acceptor Protocol data units (PDUs) MAC protocol data unit (MPDU) : Unit for exchanging data using a physical layer service between the two MAC entities MAC service data unit (MSDU) : One information unit between MAC users 14

18.3 IEEE 802.11 Wireless LAN Overview... Transport Layer Network Layer Data Link Layer Physical Layer OSI 7Layer IEEE Standard Protocol Model Fig2. IEEE 802.11 Protocol Stack 15

18.3 IEEE 802.11 Wireless LAN Overview LLC Layer MSDU Aggregation MPDU Format MAC Layer MPDU Aggregation Physical Layer MPDU FlowChart Fig3. General IEEE 802 MPDU Format 16

18.3 IEEE 802.11 Wireless LAN Overview Fig5. IEEE 802.11 Extended Service Set Direct communication between the client stations in the BSS does not occur. All Station within the BSS is a BSS, which is called directly transmitted and received without passing through the AP Independent BSS (IBSS). 17

18.3 IEEE 802.11 Wireless LAN Overview Primary service used by stations to exchange MPDUs when the MPDUs must traverse the DS to get from a station in one BSS to a station in another BSS Service enables transfer of data between a station on an IEEE 802.11 LAN and a station on an integrated IEEE 802.x LAN. The term integrated refers to a wired LAN that is physically connected to the DS and whose stations may be logically connected to an IEEE 802.11 LAN via the integration service. 18

18.3 IEEE 802.11 Wireless LAN Overview Association : Establishes an initial association between a station and an AP. Before a station can transmit or receive frames on a wireless LAN, its identity and address must be known. For this purpose, a station must establish an association with an AP within a particular BSS. The AP can then communicate this information to other APs within the ESS to facilitate routing and delivery of addressed frames. Reassociation : Enables an established association to be transferred from one AP to another, allowing a mobile station to move from one BSS to another. Disassociation : A notification from either a station or an AP that an existing association is terminated. A station should give this notification before leaving an ESS or shutting down. However, the MAC management facility protects itself against stations that disappear without notification. 19

18.4 IEEE 802.11i Wireless Security Wired Equivalent Privacy (WEP) algorithm Provides security between the wireless LAN operated as part of the 802.11. Wi-Fi Protected Access (WPA) Was created by the WiFi Alliance. 802.11i security protocols to be used in the draft version Robust Security Network (RSN) Recent 802.11i standard form 20

18.4 IEEE 802.11i Wireless Security 802.11i RSN security services Authentication: Mutual recognition between the user and the AS using the protocol and defines a temporary key generation used between the client and the AP between the wireless link. Access control: Use the authentication function, will be done through the proper message routing and key exchange. The implementation of this feature, using a variety of authentication protocols. Privacy with message integrity: Encrypting the message with the integrity code can be confirmed that the data has not changed the data in the MAC layer. 21

18.4 IEEE 802.11i Wireless Security Elements of RSN CBC-MAC = Cipher Block Chaining Message Authentication Code (MAC) CCM = Counter Mode with Cipher Block Chaining Message Authentication Code CCMP = Counter Mode with Cipher Block Chaining MAC Protocol TKIP = Temporal Key Integrity Protocol Fig6. Elements of IEEE 802.11 22

18.4 IEEE 802.11i Wireless Security Fig7. IEEE 802.11i Phases of Operation 23

18.4 IEEE 802.11i Wireless Security Discovery Phases(1/3) The Discovery phase determines the technology used in the following areas. l Confidentiality Integrity Protocol MPDU l Authentication Method l Cryptographic key management scheme 24

18.4 IEEE 802.11i Wireless Security Discovery Phases(2/3) Encryption options are as follows for the confidentiality and integrity protection. l WEP l TKIP l CCMP 25

18.4 IEEE 802.11i Wireless Security Discovery Phases(3/3) MPDU exchange l network and security features l Open System Authentication l Association 26

18.4 IEEE 802.11i Wireless Security Authentication Phases(1/2) Authentication step of performing authentication between a STA and AS. Should allow an authenticated Station will use the network. Station to communicate with the network, and that we are guaranteeing the fair. Certification process step is composed of three steps: Connect to AS. ü EAP exchange. ü Secure Key Delivery. 27

18.4 IEEE 802.11i Wireless Security 28 Authentication Phases(2/2) 1. Connect to AS Station is connected to the AS sends a request to their AP. AP is a response to the received request, and transmits the access request to the AS. 2. EAP ( Extensible authentication protocol) exchange Do the mutual authentication between the Station and the AS. 3. Secure Key Delivery: The AS generates a Master Session Key (MSK) after mutual authentication and sent to the Station. Master keys are transferred to the Station through the AP.

18.4 IEEE 802.11i Wireless Security Key Management Phases(1/3) Out-of-band path PSK Pre-shared key EAP method path AAAK or MSK AAA Key 사용자 정의 No modification Possible truncation PRF(pseudo-random function) Using HMAC-SHA-1 PMK Pairwise master key PTK Pairwise transient key KCK KEK TK EAPOL key confirmation key EAPOL key Encryption key Temporal Key Fig8. Pairwise key hierarchy 29

18.4 IEEE 802.11i Wireless Security Key Management Phases(2/3) The key management phase, various encryption key is generated and being distributed Station. Pairwise key pair are commonly used for communication between the Station and the AP. This key is dynamically generated from a master key and limited use of time.. The top layer has two kinds of keys are present. ü PSK is AP and Station shared key to the dictionary.. ü MSK is generated during the authentication phase is different from the generation method according to the authentication protocol. 30

18.4 IEEE 802.11i Wireless Security Key Management Phases(3/3) Pairwise master key is generated in the following manner. ü PSK is used, generates a PMK with PSK ü MSK Gaga used if the PMK is cut using some MSK. After the end of the final stage of certification is the AP and Station to share the PMK. PMK is finished and after mutual authentication between the AP Station is used to generate a PTK is used for communication. PTK = HMAC( PMK the MAC addresses of the STA and AP nonces ). 31

18.4 IEEE 802.11i Wireless Security Fig9. Group key hierarchy 32

18.4 IEEE 802.11i Wireless Security Fig10. IEEE 802.11i Keys for Data Confidentiality and Integrity Protocols 33

18.4 IEEE 802.11i Wireless Security Fig10. IEEE 802.11i Phases of Operation: Four-Way Handshake and Group Key Handshake 34

18.4 IEEE 802.11i Wireless Security Protected Data Transfer Phases The IEEE 802.11i defines TKIP and CCMP two systems to deliver MPDU. 1. TKIP Message integrity : Then after the data field by attaching a Message integrity code (MIC) to ensure integrity. MIC is inputted with the destination MAC address, a data field and the key value through the Michael algorithm produces a 64-bit result value. Data Confidentiality: The MPDU encrypted data and MIC as RC4 to guarantee confidentiality. 2. CCMP Message integrity : Use the Cipher Block Chaining Authentication Code. Data Confidentiality : The use of 128-bit AES encryption. 35

Thank You! 36

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information