how-to block ads
|
|
2.1 WEP·What is WEP?
·WEP Problems and Weaknesses
·Can they beat my WEP?
·Open vs Shared Key
·Can I Improve WEP?
| | | Wired Equivalent Privacy, one of several wireless network security tools.
WEP can be typically configured in 3 possible modes:
• No encryption mode
• 64 bit encryption
• 128 bit encryption
By default, most Wireless Access Points have WEP turned off. Most public wireless LAN access points (i.e., airports, hotels, etc.) do not enable WEP. Based on statistical analysis in regions like New York, San Francisco, London, Atlanta, most companies do not turn on WEP security on their APs. If the AP does not enable WEP, the wireless clients can not use the WEP encryption.
In WAPs, it is optional whether the encryption is enforced. The WEP encryption may be turned on, but if it is not enforced, a client without encryption with the proper SSID can still access that base station.
 show feedback form
 close
by KeysCapt 
last modified: 2006-12-25 22:44:50 | | | There have been problems with WEP due to many security issues. In the 802.11 standard, WEP is defined as "protecting authorized users of a WLAN from casual eavesdropping." As such, WEP is not a terribly strong form of protection and is subject to numerous exploits based on vulnerabilities and weaknesses.
These include:
1. A high percentage of wireless networks have WEP disabled because of the administrative overhead of maintaining a shared WEP key.
2. WEP has the same problem as all systems based upon shared keys: any secret held by more than one person soon becomes public knowledge. An example is an employee who leaves a company ... the employee still knows the shared WEP key and could sit outside the company sniffing network traffic or even attacking the internal network.
3. The initialization vector that seeds the WEP algorithm is sent in the clear.
4. The WEP checksum is linear and predictable.
show feedback form
close
by KeysCapt
last modified: 2005-01-14 20:40:58 | | | There are numerous tools that afford someone with enough time on his hands the opportunity to try cracking your WEP-enabled Access Point. WEP is now considered to be a very weak, largely ineffective security tool for wireless LANs. Some examples of cracking tools are:
AirSnort is a wireless LAN tool which cracks encryption keys on 802.11b WEP networks. It operates by passively monitoring transmissions and computing the WEP encryption key when enough packets have been gathered.
BSD-Airtools is a complete toolset for wireless 802.11b auditing. It contains a cracking application called dweputils (as well as kernel patches for NetBSD, OpenBSD, and FreeBSD). It also contains a detection application similar to Netstumbler that can be used to detect wireless access points and connected nodes, view signal to noise graphs, and interactively scroll through scanned Access Points and view statistics for each.
WEPCrack is a tool that cracks 802.11 WEP encryption keys by exploiting the weaknesses of RC4 key scheduling.
WepAttack is a WLAN open source Linux tool for breaking 802.11 WEP keys. This tool is based on an active dictionary attack that tests millions of words to find the right key. Only one packet is required to start an attack on WEP.
WEPWedgie is a tool for determining 802.11 WEP keystreams and injecting traffic with known keystreams. The toolkit also includes logic for firewall rule mapping, pingscanning, and portscanning via the injection channel and a cellular modem.
show feedback form
close
by KeysCapt
last modified: 2005-12-24 09:14:22 | | | What is the difference between WEP Open Key and WEP Shared Key?
See this thread for some good information on this question:
/forum/remark,8645211~mode=flat
show feedback form
close
by Bill edited by KeysCapt
last modified: 2005-01-12 12:27:02 | | | WEP gets a bad rap because it uses a key which can be cracked without too much difficulty.
One way to 'beef up' WEP is by using tinyPEAP from »www.tinypeap.com which replaces the key every five minutes, which makes cracking the key useless.
You can learn more about this application here:
»Need opinion on my wireless security.
show feedback form
close
by KeysCapt |
|
