Improved WPA and WPA2 password-cracking tool causes concern
http://www.heise-online.co.uk/security/ ... ews/111713
(followed link) WiFi is no longer a viable secure connection
http://www.scmagazineuk.com/WiFi-is-no- ... le/119294/
WPA/WPA2 encryption is no longer considered secure ?
-
Puppy
- Senior ThinkPadder

- Posts: 2264
- Joined: Sat Oct 30, 2004 4:52 am
- Location: Prague, Czech Republic
WPA/WPA2 encryption is no longer considered secure ?
Last edited by Puppy on Tue Oct 14, 2008 6:43 pm, edited 1 time in total.
ThinkPad (1992 - 2012): R51, X31, X220, Tablet 8
-
bill bolton
- Admin

- Posts: 3848
- Joined: Thu Sep 01, 2005 10:09 am
- Location: Sydney, Australia - Best Address on Earth!
"Whether Elcomsoft's tool really represents a danger to WLANs using WPA remains to be seen. The attack is a simple brute-force one, using the computational power of multiple GPUs to accelerate the process. If strong passwords are used – that is, long and containing unpredictable sequences of characters – then the attack could still a considerable amount of time, even at 100 times the speed. The fastest password-breaking from this system will require a cluster of powerful workstations with multiple pairs of high-end dual-processor graphics cards, working possibly for some days, so it's not an attack that people will be launching from a PDA or smartphone, nor even from a car parked outside. A serious attack on a well-set-up WLAN will require grabbing a significant chunk of network traffic with a sniffer, then taking it offsite for processing. By the time the security has been broken, a tightly-secured network will have changed the keys anyway.
Weak passwords, on the other hand, are a problem, even without EDPR. In addition, TKIP is often used on corporate networks for encryption, meaning that the network key continually changes every few kilobytes during a session. Elcomsoft has not reported whether its new tool can also quickly attack such networks."

Weak passwords, on the other hand, are a problem, even without EDPR. In addition, TKIP is often used on corporate networks for encryption, meaning that the network key continually changes every few kilobytes during a session. Elcomsoft has not reported whether its new tool can also quickly attack such networks."
Elcomsoft didn't find a flaw in the encryption algorithm, they only speed up the process of cracking it using brute force.
So, WPA/WPA2 secured networks are somewhat less secure, but when cracking WPA/WPA2 keys using brute force, we're still talking tousands of years, as long as you use a good key.
good means:
- long
- not to be found in any dictionary
- combination of upper and lower case letters, numbers, possibly special characters (as supported)
- keep the key secret, the more people know it, the more likely it is misused
And if you use a key that is one or two characters longer then the one you used up until now, you have approximately the same security as you had before.
So, WPA/WPA2 secured networks are somewhat less secure, but when cracking WPA/WPA2 keys using brute force, we're still talking tousands of years, as long as you use a good key.
good means:
- long
- not to be found in any dictionary
- combination of upper and lower case letters, numbers, possibly special characters (as supported)
- keep the key secret, the more people know it, the more likely it is misused
And if you use a key that is one or two characters longer then the one you used up until now, you have approximately the same security as you had before.
IBM ThinkPad R61 | IBM ThinkPad X60 | IBM ThinkPad X32 | IBM ThinkPad T23
-
- Similar Topics
- Replies
- Views
- Last post
-
- 8 Replies
- 700 Views
-
Last post by RealBlackStuff
Tue Apr 04, 2017 7:38 am
-
-
Win10Pro, SSD hardware encryption. How do I enable it?
by slowmail » Wed Jun 14, 2017 1:56 am » in Windows 10 - 4 Replies
- 174 Views
-
Last post by slowmail
Thu Jun 15, 2017 11:41 am
-
-
-
SL400 Battery No Longer Charges
by Imperatrix » Tue Mar 07, 2017 4:06 pm » in ThinkPad SL and L Series - 3 Replies
- 1892 Views
-
Last post by Imperatrix
Sun Mar 12, 2017 5:10 pm
-
-
-
[Solved] Yoga 2 Pro Model 20266 with Windows 10. Botched SSD upgrade (screen no longer works)
by prophetic » Wed Mar 29, 2017 12:39 am » in IdeaPad Series Laptops - 2 Replies
- 1280 Views
-
Last post by prophetic
Wed Mar 29, 2017 9:26 am
-
Who is online
Users browsing this forum: No registered users and 5 guests



