MIT Researchers Defend Against Wireless Attacks 65
alphadogg writes "MIT researchers have devised a protocol to flummox man-in-the-middle attacks against wireless networks. The all-software solution lets wireless radios automatically pair without the use of passwords and without relying on out-of-band techniques such as infrared or video channels. Dubbed Tamper-evident pairing, or TEP, the technique is based on understanding how man-in-the-middle attacks tamper with wireless messages, and then detects and in some cases blocks the tampering. The researchers suggest that TEP could have detected the reported but still unconfirmed cellular man-in-the-middle attack that unfolded at the Defcon conference earlier this month in Las Vegas."
Re:Tamper Evident (Score:4, Interesting)
A proper and real diversity system can detect the angle of the radio to the receiver. A properly designed setup with 4 antennas can give a 0-360 degree direction of the radio it is contacting and a crude distance. this added information and watching radio traffic in the spectrum. I.E see a packet transmitted from radio 3 to radio 4 and then the same packet is transmitted to the base, flag it as mitm and contact radio 3 directly.
It would make a $299 AP cost about $3400 but it could be effective.