Comments on: Crack Wi Fi Encryption 100 Times Faster ! http://www.geekwithlaptop.com/crack-wi-fi-encryption-100-times-faster Laptops, Netbooks, Gadgets - News and Reviews from the Geek perspective! Mon, 23 Nov 2009 01:38:32 -0500 http://wordpress.org/?v=2.8.6 hourly 1 By: dankyhttp://www.geekwithlaptop.com/crack-wi-fi-encryption-100-times-faster/comment-page-1#comment-56998 danky Tue, 02 Dec 2008 02:40:19 +0000 http://www.geekwithlaptop.com/?p=1786#comment-56998 I believe he was talking about an increased processing power with the NVIDIA hardware that can crack passwords faster with the so called GPU. The focus was not on wireless security. So thats why he didn't metion the PSK exception. BLaBlaBla I believe he was talking about an increased processing power with the NVIDIA hardware that can crack passwords faster with the so called GPU. The focus was not on wireless security. So thats why he didn’t metion the PSK exception. BLaBlaBla

]]> By: Jim Joneshttp://www.geekwithlaptop.com/crack-wi-fi-encryption-100-times-faster/comment-page-1#comment-56773 Jim Jones Mon, 13 Oct 2008 03:00:21 +0000 http://www.geekwithlaptop.com/?p=1786#comment-56773 Contrary to the hyped up news reports - this "new" attack ONLY applies to wpa-psk and wpa2-psk, both of which used non-dynamic seed values (a passphrase) to derive the PMK. Wpa-psk and wpa2-psk were long considered vulnerable due to the static passphrase nature of the implementation (the static passphrase is used to generate the pairwise master key which in turn spawns the rotating temporal keys used for actual encryption) - existing tools like cowpatty and aircrack-ng 1.0 prove that.Full (aka Enterprise) WPA/WPA2, which use a radius server to generate the master key in a fully dynamic and random manner, are not vulnerable to this "acceleration" attack. The only current way to attack a full WPA/WPA2 setup is to attack using a MITM approach, but that only works if there is no mutual authentication using certificates enabled between client and server. All current attacks will fail if full WPA/WPA2 is deployed with mutual authentication using certificates between client and server.Conveniently omitting the "PSK" portion in the various news articles is dubious at best. I challenge anyone to prove that this software can defeat a full WPA/WPA2 setup and not just WPA-PSK/WPA2-PSK. Contrary to the hyped up news reports – this “new” attack ONLY applies to wpa-psk and wpa2-psk, both of which used non-dynamic seed values (a passphrase) to derive the PMK.
Wpa-psk and wpa2-psk were long considered vulnerable due to the static passphrase nature of the implementation (the static passphrase is used to generate the pairwise master key which in turn spawns the rotating temporal keys used for actual encryption) – existing tools like cowpatty and aircrack-ng 1.0 prove that.

Full (aka Enterprise) WPA/WPA2, which use a radius server to generate the master key in a fully dynamic and random manner, are not vulnerable to this “acceleration” attack. The only current way to attack a full WPA/WPA2 setup is to attack using a MITM approach, but that only works if there is no mutual authentication using certificates enabled between client and server. All current attacks will fail if full WPA/WPA2 is deployed with mutual authentication using certificates between client and server.

Conveniently omitting the “PSK” portion in the various news articles is dubious at best. I challenge anyone to prove that this software can defeat a full WPA/WPA2 setup and not just WPA-PSK/WPA2-PSK.

]]>