Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Graphics Security Software Wireless Networking Hardware

Elcomsoft Claims WPA/WPA2 Cracking Breakthrough 349

secmartin writes "Russian security firm Elcomsoft has released software that uses Nvidia GPUs to speed up the cracking of WPA and WPA2 keys by a factor of 100. Since the software allows them to network thousands of PCs, this anouncement effectively signals the death of wireless networking in business networks; any network handling sensitive data should start using VPN encryption on machines connecting over Wi-Fi networks, or stop using these networks altogether."
This discussion has been archived. No new comments can be posted.

Elcomsoft Claims WPA/WPA2 Cracking Breakthrough

Comments Filter:
  • Looks Like I'm Safe (Score:5, Interesting)

    by linuxmeepster ( 1383107 ) * on Sunday October 12, 2008 @01:15PM (#25346535) Homepage
    "Brute Force Attack will take up to 128299838271 years" at 500,000 passwords a second. ElcomSoft is claiming a 20x improvement in speed, but that won't make a dent into an exponential-sized problem. See http://lastbit.com/pswcalc.asp [lastbit.com] for calculation.
    • Re: (Score:3, Informative)

      by Daimanta ( 1140543 )

      True, buy most people will use a alphanum pass with 10 characters or less.

      (26*2+1)^10 = 839299365868340224

      Which is a lot more crackable.

      • by Anonymous Coward on Sunday October 12, 2008 @01:40PM (#25346665)

        Steve Gibson has a site that generates random passwords on the fly (unique for you): https://www.grc.com/passwords.htm [grc.com]

        These are especially good for wireless routers since you normally don't need to type them yourself and they don't get changed that often. (Of course, you should still change them once in a while.)

        • by mlts ( 1038732 ) * on Sunday October 12, 2008 @01:53PM (#25346743)

          I personally recommend KeePass for password generation. It can generate 63 char passwords for WPA/WPA2 keys with cryptographically random unpredictability as it uses keyboard/mouse movements as part of seeding. Because its done on the local machine, there is no chance of the password being leaked as compared over the web. With a 63 character password, that is far more entropy than the 128 or 256 bits keys used for AES, so for someone to guess a password of that length, they either have to be able to brute force AES at full strength, or find a weakness in the algorithm's implementation.

          I generate a KeePass password, save it to a USB flash drive, then paste it into my router's config. I then take the USB flash drive to the physical machines and do a copy and paste of the 63 char key into their network preferences. This is a lot easier than typing it. Should I lose the key... not hard to fix -- generate another one and rekey the 3-4 machines on my network. Because the WPA/WPA2 key is easily resettable with physical access to the machines, there is no reason to go less than the maximum character length, and it doesn't matter if the password gets forgotten, as long as you remember your router and machine's access passwords. (This for a home network. Businesses should use a RADIUS server where all the machines are not reliant on a single shared encryption key.)

          If you have to use fewer characters, I'd say never use fewer than 20 characters, but even that is cutting it thin, factoring in Moor's law, botnets, and usage of GPUs for additional number crunching.

          • Re: (Score:3, Informative)

            I'll second KeePass and its UNIXy-OSXy variant KeepassX (the DB file that it stores passwords in can be read on all three platforms). In addition to its password generating abilities, it makes a handy home for my network/web logins. Sourceforge has both programs in all their gleaming, open source goodness.
          • Yeah, that's great.... But it doesn't work too well for the "I'll set up our 200 unit network for wireless in 2 hours" crowd. Those are the ones who are likely using WPA with PSK and easy-to-type-in passwords.
            • by Hork_Monkey ( 580728 ) on Sunday October 12, 2008 @04:02PM (#25347715)
              If you're setting up a 200 device wireless network with WPA PSK, you're doing it wrong.
        • Re: (Score:3, Interesting)

          by Bert64 ( 520050 )

          What's amusing, is that devices like mobile phones encourage people to use weaker passwords, as typing a long complicated password into a cellphone is quite a hassle.

        • Re: (Score:3, Informative)

          by pipatron ( 966506 )
          If you run a debian-ish system: aptitude install pwgen
        • Re: (Score:3, Informative)

          by rtfa-troll ( 1340807 )

          You would trust some random other person's web site to generate a critical password? I admit it's probably better than what many people do, but it's almost certainly not acceptable in a commercial situation.

          Other's have already provided some downloadable solutions, but here's a solution which should be available on most modern operating systems. Just get to a command line and type the following.

          dd if=/dev/urandom bs=200 count=1 | tr -cd 'A-Za-z0-9!@$#%_'; echo

          Use /dev/random if you want even bet

        • Re: (Score:3, Insightful)

          by ultranova ( 717540 )

          Steve Gibson has a site that generates random passwords on the fly (unique for you): https://www.grc.com/passwords.htm [grc.com]

          So let me get this straight: you're recommending I set my password to what some dude on the Internet is telling me to, and who can trivially connect it to me since he knows the IP address it was sent to ? And the dude, who's presumably advocating this practice since he's going out of his way to enable it, is supposedly a security expert ?

          Suddenly, in a flash of pure black light, it dawned

      • by Anonymous Coward on Sunday October 12, 2008 @01:42PM (#25346681)
        Uh, where are you getting that number? (26*2+1)^10 works out to 1.7488747 * 10^17 [google.com]. Wouldn't it be more like ((26*2)+10)^10, assuming no spaces?
      • true but that's a weakness in people - not the protocol. I was a little worried until I also read it was nothing more than a brute force attack using a faster processing unit.

        WEP is broken. It's broken because with a little time I can crack it on my G4 iMac. WPA isn't.
        • Re: (Score:3, Funny)

          by GameboyRMH ( 1153867 )

          I was a little worried until I also read it was nothing more than a brute force attack using a faster processing unit.

          My thoughts exactly. This is like fitting two bigass turbochargers and jumbo cams to a big 'ol American V8 and calling it a breakthrough in engine design. The headline should be "Elcomsoft turns WPA/WPA2 brute force attack speed up to 11"

      • Agreed. My brother's password gets a measly 4 years.
    • by Sasayaki ( 1096761 ) on Sunday October 12, 2008 @01:50PM (#25346729)

      "Brute Force Attack will take up to 128299838271 years"

      Look, I understand that's enough security for your mortals, but I plan to live forever. I don't want someone getting my data just after my 128,299,838,295th birthday!

    • Heh, my old password would have taken 1,559,007,293,804,841,500,000,000 years (20 chars, uppercase/lowercase/digits/common punctuation) to crack at 500,000 combinations/second. I recently moved up 23 chars, but it won't calculate that for me.

      Although while 500,000 combinations/second may sound impressive, it is a useless metric without comparing it to how many combos/second a normal machine can pump out.
    • "Brute Force Attack will take up to 128299838271 years" at 500,000 passwords a second. ElcomSoft is claiming a 20x improvement in speed, but that won't make a dent into an exponential-sized problem. See http://lastbit.com/pswcalc.asp [lastbit.com] for calculation.

      Yep. And computers won't get any faster in the next 128 billion years...

      • by TheRaven64 ( 641858 ) on Sunday October 12, 2008 @05:19PM (#25348363) Journal

        So, computing speed doubles roughly every 18 months. At this rate, it will be down to one year in 55 years (assuming computers keep getting faster at the same rate - 55 years is about as long as we've had commercial computers).

        Of course, if you add another alphanumeric to the password, you multiply the complexity by 56, which adds another 10 years to the time before computers will be fast enough to crack it in a year. Another alphanumeric takes it up to 73 years, another up to 81, and so on.

        There are some physical limits [wikipedia.org] to the maximum speed of computation. All of the ones we've come close to so far have been practical engineering problems, rather than theoretical ones. 21 more doublings in transistor density and IC features are smaller than the nucleus of an atom (9 more and they're smaller than a helium atom including its electron cloud) - only possible if you're building your CPU out of neutronium, so it seems unlikely that we'll get to 54 without some brand new physics. Increasing transistor density isn't the only way of increasing computational power, but so far it's been the easiest (although each doubling does require an R&D budget measured in billions of dollars).

  • by Mad Merlin ( 837387 ) on Sunday October 12, 2008 @01:17PM (#25346539) Homepage

    This doesn't surprise me. Anyone who wasn't already assuming that anything you sent via wireless was already in the hands of your enemies (unencrypted) is a bit naive.

    • by Anonymous Coward on Sunday October 12, 2008 @01:20PM (#25346547)

      I don't care how you're accessing the net, if it's important encrypt it.

    • How about pushing out new keys every XX hours to all wireless devices? I do this manually on my little network.

      • Re: (Score:3, Insightful)

        by Ironsides ( 739422 )
        So, all I need to do is record the data, crack the first set of keys and then I can decrypt all subsequently sent packets as you have convieniently provided the new keys in the (now decrypted) data stream.
    • by hedwards ( 940851 ) on Sunday October 12, 2008 @03:19PM (#25347313)

      That was my reaction, the standard advice going back a long ways was use WEP, but for the love of god also use VPN between the devices. I can't imagine why WPA or WPA2 would make people think that you should be ditching the VPN.

      Admittedly I've been guilty of not doing it, but it was more a matter of inferior Windows facilities than anything else.

      • Re: (Score:3, Interesting)

        by virtual_mps ( 62997 )

        That was my reaction, the standard advice going back a long ways was use WEP, but for the love of god also use VPN between the devices. I can't imagine why WPA or WPA2 would make people think that you should be ditching the VPN.

        Since WPA2 uses the same encryption that you'd find in a VPN, I wonder why you think it would be less secure?

  • Rotate your keys (Score:5, Insightful)

    by Legion_SB ( 1300215 ) on Sunday October 12, 2008 @01:21PM (#25346551) Homepage

    With good keys, even a 100x increase in cracking speed is still not fast

    Don't use a little 8-character passphrase. Use long keys, and don't just leave them in place forever. Change them periodically.

    • Better even, change them randomly.
    • by Marcika ( 1003625 ) on Sunday October 12, 2008 @02:30PM (#25346957)
      ... Most people use passwords. Some people use passphrases. Bruce Schneier uses an epic passpoem, detailing the life and works of seven mythical Norse heroes.
    • Re: (Score:3, Insightful)

      by Kjella ( 173770 )

      Rotating keys is not a smart way to try to extend the keyspace, if he can brute force one password he can quite probably do it again. Rotating passwords is a good idea if unwanted people may have had access to the password or a device it was on like say in a corporate network, guest network or whatever. For the traditional home network where the overwhelmingly likely scenario is that he's got no inside knowledge, just set one password at maximum length with some special characters so you're using the full k

  • by Llywelyn ( 531070 ) on Sunday October 12, 2008 @01:21PM (#25346555) Homepage
    Most businesses I've seen have had easily guessable passwords, used open relays, or WEP encryption. Many don't change their keys even after firing someone. Saying that this is a "death knell" is serious hyperbole since, for many companies, convenience trumps hardened security.

    That said, the biggest risk is still always going to be insiders and former insiders who won't need to crack into the wireless network: they will already know how to get access.
    • Re: (Score:2, Insightful)

      by Anonymous Coward

      In terms of quantity of seperate attacks, partner networks and outsiders are the biggest risk. In terms of records stolen per breach (still arguably not the biggest risk, since Verizon didn't report cost/record) insiders were top.

      http://www.verizonbusiness.com/resources/security/databreachreport.pdf [pdf]

    • Cracking WEP/WPA will hardly be the end of business WiFi.

      For instance: The company where I'm working has operated for years on the assumption that WiFi's own encryption is just a warning sign and trivially broken.

      They have the WiFi on its own subnet with its own firewall. Get on (with the WEP key) and you can only reach the nameserver, VPN server, and SSH server. Use an encrypted tunnel or you might as well be standalone.

  • by imsabbel ( 611519 ) on Sunday October 12, 2008 @01:23PM (#25346561)

    There is no special flaw or exploit in use. They just throw more transitors at a special problem.

    Everybody who really want to crack into some network (think NSA or industrial espionage) could have used FPGAs for even bigger gains.

    And for joe sixpack, weeks on a small cluster is still not a viable way for free internet...

    • Exactly.

      Apparently you can brute-force easily guessable passwords. Film at 11.

    • Also (Score:4, Informative)

      by Sycraft-fu ( 314770 ) on Sunday October 12, 2008 @04:39PM (#25348029)

      A "100x" increase in the speed of cracking an encryption system is not necessarily impressive, or indeed meaningful.

      It sounds like a lot, and would be if it were a situation of "It used to take 100 years to crack a password, now it takes 1." Ok well that just moved the problem from something impossible or at least totally worthless (the technology will be outdated by the time you get the answer) to something potentially useful for a determined attacker.

      However, that isn't the sort of timescale we are talking about for modern encryption. We are instead talking about amounts of years that are generally expressed with exponents. Ahh, well now that changes things. If an encryption system currently takes 10^14 years to crack and you've sped up cracking 100 times so it now only takes 10^12... Well that still doesn't get you anything. You are talking many times longer than the universe has been around. Even an increase of 1,000,000 times doesn't get you anywhere near anything useful.

      So while announcements like this are cool in an academic sense, they have no real application or threat.

  • by mcrbids ( 148650 ) on Sunday October 12, 2008 @01:23PM (#25346565) Journal

    Seriously. We've had a number of standards with names like "Wired Equivalency Protocol" and "Wifi Protected Access" and yet they seem to be falling, one-by-one, to relatively trivial attacks. I'm not saying that WPA is as bad as WEP, but how come they can't copy/paste something as good as good old-fashioned SSL?

    SSL has withstood the tests of time, over, and over, and over, and over again. SSL is the gold standard for encryption. It's used on every HTTPS website, it's used for SSH, it's used as part of kerberos, IMAPS, POPS, TLS, and just about every other good-quality security tool.

    So why are wireless chipset manufacturers trying to re-invent the wheel, when it's widely known that these kinds of wheels are FRIGGEN HARD to re-invent well?

    Start with normal, unencrypted wireless. Getting that to work was solved long ago. Embed an SSL engine into your wireless device, with a randomly generated private key. Provide a means to access the public key, and copy/paste that key into your high security wireless driver. If you want to be paranoid, your local driver generates a private/public key pair as well, and that can be copy/pasted to your wireless device.

    Done! Now you *KNOW* that if you are accessing the Internet through the driver, you are doing so through the correct wireless hotspot. Who cares about wireless MITM attacks at that point? The SSL protocol *ASSUMES* that there are MITM attempts, and foils them quite effectively, over the equally open and unsecured Internet.

    Seriously, folks. This is a problem that was solved over a decade ago. Why are we doing this again?

    • by swillden ( 191260 ) <shawn-ds@willden.org> on Sunday October 12, 2008 @01:35PM (#25346629) Journal

      Seriously. We've had a number of standards with names like "Wired Equivalency Protocol" and "Wifi Protected Access" and yet they seem to be falling, one-by-one, to relatively trivial attacks.

      "Seem" is the key word in this paragraph.

      The claimed attack is nothing more than a brute force search on WPA/WPA2 pre-shared keys, a search that will fail if the keys are well-chosen. It has no effect whatsoever on WPA or WPA2 when used with any of the EAP authentication modes. But PSK requires the network admin to choose a key, and the key is typically chosen by typing in a passphrase. If that passphrase is weak, then given enough computation power an attacker can guess it. Big surprise.

      WPA and WPA2 ARE just as solid as SSL. The only difference is that everyone knows that if you're doing SSL you should use a good random number generator to help generate your key pair and to generate the session keys.

    • The reality is that most businesses and home users don't want to deploy a Certificate Authority to make use of SSL. WEP, WPA, and WPA2 are "cheap" encryption solutions. If you are really worried about it, there are existing cert based solutions available that are independent of the wifi router/access point.
      • by mcrbids ( 148650 )

        You don't need a certificate authority to use SSL. SSH works fine without a Certificate Authority. The only value that a Certificate Authority provides is in positively identifying/validating a participant that you didn't previously validate.

        The protocol I mentioned requires no certificate, since the public key is being copy/pasted with a mechanism that is otherwise trusted.

        • The TLS standard (effectively SSL 4) mandates that the server present a certificate for perusal by the client. Sure, you can use a self-signed certificate, but then you're not using TLS in a secure fashion.

          SSH and Kerberos are not based on SSL/TLS. SSH probably uses similar techniques to SSL, but Kerberos is out there doing it's own wacky thing. See here [mit.edu] for an explanation of Kerberos's operation.

    • by GrenDel Fuego ( 2558 ) on Sunday October 12, 2008 @01:58PM (#25346761)

      What you're describing is EAP-TLS [wikipedia.org], and its definitely the way to go if you're running wireless for a larger business.

    • ....that's the difference.

      So long as people use convenient passphrases for their security then no amount of fancy algorithms will save them.

      This realization is why the US Government eventually dropped all the regulations they used to have on exports of strong encryption.

    • by jd ( 1658 )

      Well, SSL is one option, sure. Sun's SK/IP system would be another, since it was designed with unreliable connections in mind. Requiring client-side certs and using any of the public-key systems (ECC, for example) would be vastly superior to a shared key system. If privacy is not as big of a concern as just authenticating who sent the packets, 802.1x offers some interesting possibilities. Of these, how many are implemented in low-cost COTS wireless devices? 802.1x appears in a few, but not many. The others

    • Re: (Score:3, Interesting)

      by Tuoqui ( 1091447 )

      Problems...

      1) SSL as it stands for HTTPS and what not typically uses key lengths anywhere from 128-bit all the way up to 4096-bit.
      2) WEP/WPA requires the router to decrypt all packets over the wireless network so it can route them.
      3) Longer keys = More Processing power required.
      4) Encrypting and Decrypting everything may involve a performance hit without more processing power.

      End Result: You want it more secure, the router is gonna need more RAM and CPU power to pull it off which means instead of picking up

  • F@H (Score:5, Interesting)

    by Kooty-Sentinel ( 1291050 ) on Sunday October 12, 2008 @01:29PM (#25346599) Homepage
    I wonder how long it would take for the entire Folding@Home grid would take to crack a single WAP/WAP2 key. Can anyone do the math?
    • Re:F@H (Score:5, Funny)

      by 93 Escort Wagon ( 326346 ) on Sunday October 12, 2008 @02:05PM (#25346801)

      I wonder how long it would take for the entire Folding@Home grid would take to crack a single WAP/WAP2 key. Can anyone do the math?

      So that would be Cracking@home?

    • Re: (Score:2, Informative)

      by Anonymous Coward

      For a ballpark:

      total time / number of active cpu's

      From another comment:

      Brute Force Attack will take up to 128299838271 years at 500,000 passwords a second.

      And F@H has well over a million users (but less than 2, and many inactive), so I'll highball guesstimate at 2million.

      The result: 64,150 years, optimistically.

  • Wires. (Score:2, Insightful)

    by Anonymous Coward

    Proof that the best solution, by far, is to use wires. Wireless is fine when you don't care what's being sent over them (browsing, etc), but for any serious business or otherwise sensitive information, I want to be plugged into an actual, physical network. Not that it's 100% secure, of course, but at least your information isn't flying around in the air waiting for someone to decrypt it, and given time, *anything* can be decrypted.

    I will never own a wireless router in my home for that reason.

    • by jjohnson ( 62583 )

      What are you doing in your home that shouldn't be seen by anyone else? How's that basement fusion reactor going?

      • Comment removed based on user account deletion
      • Re: (Score:3, Insightful)

        by rtfa-troll ( 1340807 )
        • Being there or not being there. When you leave your wife/girlfriend/etc. alone at home for a long time should be nobody's business but your own.
        • Sex.
        • Bathing children. Note; your own opinion of this is irrelevant. The question is, for example, whether photos could be illegal and used against you.
        • Not wanting to be interrupted whilst dying of a "prolonged illness".
        • memorising my new PIN number
        • Nobody's business but my own.

        Privacy is a security issue.

  • by subreality ( 157447 ) on Sunday October 12, 2008 @01:35PM (#25346637)

    This is seriously overhyped. #1:

    This anouncement effectively signals the death of wireless networking in business networks;

    Bullshit. The underlying encryption is based on AES*. AES is not a toy algorithm, and is designed to defend against specialized cracking hardware, and all other known attacks. It is *plenty* strong enough to hold up to a 100X increase in cracking speed, as long as you use good keys, which hopefully you are in a business environment.

    I'm willing to believe that a key handling vulnerability might exist in WPA, or a flaw in AES, but the notion that brute force has brought about the death of WPA in business networks is just absurd. At best, this is a reminder to use good keys.

    any network handling sensitive data should start using VPN encryption on machines connecting over Wi-Fi networks, or stop using these networks altogether.

    Do you think your VPN software has a better underlying algorithm than AES?

    * Unless you're using TKIP, which is a toy algorithm, which exists for backwards hardware compatibility, and in my experience isn't used by anyone who cares about security... But even there, the potential attack vectors are through algorithm weaknesses, not brute forcing the keys.

    • Re: (Score:2, Informative)

      by secmartin ( 1336705 )
      When used with any authentication scheme that is *not* PSK-based, WPA is still pretty secure. VPN connections are perfectly fine as well, as long as you don't choose a simple guessable pre-shared key...
    • by Kizeh ( 71312 )

      Also, any real business (even my university) is using WPA2-Enterprise, which is AES / 802.1X based. There are not pre-shared passwords that suffer from possibly being too short, and each client negotiates the actual encryption per connection, and there's re-keying so even if you could crack the encryption for one client at one time, you still would have to repeat the task for every other client and other sessions.

  • 3DES (Score:5, Interesting)

    by Detritus ( 11846 ) on Sunday October 12, 2008 @01:36PM (#25346647) Homepage

    The article says that 3DES has been broken. I think they are mistaken. DES was cracked by a brute force attack but 3DES is still considered secure.

    How is their distributed processor system going to crack a 128-bit key that has 128 bits of entropy? Maybe the solution is to update the wi-fi software to make it easier to generate, transport, and install, truly random keys.

  • by Qwavel ( 733416 ) on Sunday October 12, 2008 @01:41PM (#25346673)

    Businesses that are serious about their security use one of the many types of WPA-Enterprise. The method described in this article only applies to WPA-Personal which is targeted at home users.

    Those businesses that do use WPA-Personal can simply institute a policy that requires better passwords to secure them against this exploit.

    Some businesses will continue to use WPA-Personal with poor passwords, and that's fine, but those businesses are probably not too worried about security and have many other bigger vulnerabilities.

    So, the claim that "this anouncement effectively signals the death of wireless networking in business networks" is ridiculous.

    • So today I feel a bit pedantic, so let's burn some karma:

      First, The terms "WPA-Enterprise" and "WPA-Personal" are inventions of Apple (or at least used by them) to describe what is really going on ('cause, hey, why use crazy acronyms?).

      "WPA-Personal" refers to WPA-PSK (pre-shared key) meaning that in order to get into the network all you need is a password. This means the single password is used by everyone to join the network.

      "WPA-Enterprise" refers to using 802.1x authentication, which means you have a s

  • Hype-Sicle (Score:2, Interesting)

    by sarkeizen ( 106737 )

    Weird that this article seems to call down doom for WPA in general and particularly in the enterprise.

    a) 100x increase, even using 10,000 machines seems insignificant if you are using the maximum WPA key length employing uppercase, lowercase and punctuation? Even a 30 char password seems to last far longer than most of us will be alive. So at worst all this changes is the minimum key length that can usefully be employed on WPA.

    b) In the enterprise in my experience you either use no encrypting and rely on

    • by Tuoqui ( 1091447 )

      You're forgetting how many zombie computers there are in existence that can be used at a hacker's whim to crack such... But that aside being able to use processing power on other things like PS3's and what not could help speed things up particularly if you can make their GPU's do what you want as well.

  • We're okay (Score:5, Funny)

    by Anonymous Coward on Sunday October 12, 2008 @02:07PM (#25346817)

    Hah! My company is okay- we're only using MAC filtering for our security, none of this insecure WEP/WPA crap.

  • can I get this software on The Pirate Bay? It's not like breaking into neighbour's network to use it for free is going to be worth an EUR 600 investment.
  • Already GPL'ed ... (Score:4, Informative)

    by Anonymous Coward on Sunday October 12, 2008 @02:18PM (#25346873)

    All of this is already available as a GPL'ed tool that has been out for about a month. See http://pyrit.googlecode.com

  • by Anonymous Coward on Sunday October 12, 2008 @02:31PM (#25346969)

    Using GPUs to crack is not "new", it's a well known tachnique. Furthermore, an increase of a factor a 100 is insignificant relative to the number of years it would take to crack a key, hence the crypto is not weakened, dispelling their whole "death of wireless networking" doommonger bullshit. The only thing this actually does is speed up already feasible attacks against bad passphrases, nothing new, and certainly not a "breakthrough".

  • yeah right (Score:5, Interesting)

    by Lord Byron II ( 671689 ) on Sunday October 12, 2008 @02:46PM (#25347063)

    wpa2 with a shared key is only crackable with a brute force attack. Assuming that an alphanumeric character is used for each character of the attack, then for a key of length 8 (the minimum) the attack takes 26+26+10+10=72^8 (lowercase+uppercase+numbers+shifted num keys) time which is 7x10^14. A factor of 100 isn't a big deal - it reduces it to 7x10^12.

    Even worse, if the key is longer than the minimum, say 14 digits, then the number of brute force keys are 1x10^26 and improving that to 1x10^24 isn't going to make much of a difference at all.

  • by Roskolnikov ( 68772 ) on Sunday October 12, 2008 @03:08PM (#25347231)

    The WIFI at my workplace is available, there is little if any security and the traffic isn't encrypted; why? well it has always been associated with being insecure, so when WIFI was rolled out it was placed on the Big I instead of the little i and to get anywhere internal you must bring up a VPN tunnel to work, add some poisoned routing information on both sides to account for the networks being used (internal versus internal) and you have some hope of preventing someone from bridging i to I.

    You shouldn't use WIFI for anything that you wouldn't want to share openly and even if you believe that what you are doing is secure you should know that someone could still be capturing your session and working on it offline; the vendors haven't helped either, most wireless routers will 'work' right out of the box, purchase at worst-buy, plug it into your cable modem and in 60 seconds your on, I can't tell you how many networks I've found this way, most still have the default admin account set (just google the model number being advertised by the network)
    and your in....

  • Just declare GPU's a munition ( like supercomputers are ) and restrict access/require registration.

    Then incorporate chip level DRM/TPM so only 'approved' applications can run.

    Hey, its for the children, right?

  • Their approach seems to be doing nothing but speeding up brute-force searching for the key. If it's a "bad" key, like a simple word, this will speed up the search greatly. If it's a "good" key then speeding up the search 100 times is, for all practical purposes, meaningless. Get back to me when you've achieved a 100 * 100 * 100 * 100 * 100 * 100 *100 * 100 faster search.

  • The flesh of the wireless user, that is. Or their brains. With the "personal" version of WPA or WPA2, the user enters a password or a passphrase, and the key is essentially a sophisticated hash of the password. As many have already pointed out, the article basically describes "automated password guessing". This is basically the same tool that we used in the old days to "recover" passwords from the hashes in the password file. Try a password, check if the hash match. Repeat with many plausible passwords. Wi

Some people manage by the book, even though they don't know who wrote the book or even what book.

Working...