Difference between revisions of "WEP Cracking"

From ivc wiki
Jump to navigationJump to search
Line 34: Line 34:
* '''Key attack''':
* '''Key attack''':
# Detect reuse of Initialization Vectors (collisions), only 2^24 possibilities
# Detect reuse of Initialization Vectors (collisions), only 2^24 possibilities
# Reverse XOR on first 12-bytes using the known plain-text ARP data
# Reverse XOR on first 12-bytes using well-known plain-text ARP data
# 12-bytes of the RC4 stream cipher is revealed for that specific Initialization Vector
# 12-bytes of the RC4 stream cipher is revealed for that specific Initialization Vector
# Detect collisions
# Data used to build a table of Initialization Vectors and RC4 stream ciphers
# Data used to build a table of Initialization Vectors and RC4 stream ciphers
# Use table to gain a statistical factor for the remainder missing key bytes, 104-bit (13 character) key
# Use table to gain a statistical factor using the [http://en.wikipedia.org/wiki/Fluhrer,_Mantin,_and_Shamir_attack FMS attack] for the missing key bytes (104-bit, 13 character, key)


== References ==
== References ==

Revision as of 15:45, 27 August 2009

WEP is infamously known as the totally broken wireless security protocol. Severe misapplication of cryptographic primitives were discovered in 2001 and after several cascading discoveries afterwards, it's now possible to crack a WEP protected network in under a minute. WPA is the successor to WEP and features a better but not perfect security protocol.

Background

There are now many sources that describe the vulnerability in detail and APR replay to generate traffic, but this is a short summary. For an throughout explaination on how WEP is implemented and the vulnerabilities, see the link below.

Types attacks:

  • Passive attacks to decrypt traffic based on statistical analysis.
  • Active attack to inject new traffic from unauthorized mobile stations, based on known plaintext.
  • Active attacks to decrypt traffic, based on tricking the access point.
  • Dictionary-building attack that, after analysis of about a day's worth of traffic, allows real-time automated decryption of all traffic.

Original discoveries and paper:

Wep encryption.png

Way of attack

This is the most efficient method to crack a WEP protected network. The attack can be performed in under a minute. The result is the WEP hex/ascii-key used.

  • WEP encryption:
  1. 24-bit unencrypted initialization vector + 104-bit key (13 characters/bytes), 128-bit key
  2. Used to generate linear RC4 cipher stream, RC4(IV, Key)
  3. XOR the message using cipher stream
  4. Encrypted network frame
  • ARP replay:
  1. On the basis that the first 12-bytes of ARP packets always stays the same
  2. De-authenticate clients connected to the Access Point, creating an ARP request
  3. Capture this ARP packet (encrypted)
  4. Continuously inject packet back to into the network to stimulate traffic (it's a boardcast packet)
  5. Capture 10-20 000 ARP (or other data) packets
  • Key attack:
  1. Detect reuse of Initialization Vectors (collisions), only 2^24 possibilities
  2. Reverse XOR on first 12-bytes using well-known plain-text ARP data
  3. 12-bytes of the RC4 stream cipher is revealed for that specific Initialization Vector
  4. Data used to build a table of Initialization Vectors and RC4 stream ciphers
  5. Use table to gain a statistical factor using the FMS attack for the missing key bytes (104-bit, 13 character, key)

References