Sudeep Kulkarni, profile picture
Uploaded bySudeep Kulkarni
PPTX, PDF6,491 views

WEP

WEP (Wired Equivalent Privacy) was the original security protocol for 802.11 wireless networks. It uses RC4 encryption with a weak 40-bit key. WEP has significant flaws like small keys, key reuse, and IV reuse that allow attackers to decrypt packets and compromise networks. While it provides some protection, WEP is insecure and better alternatives like WPA or IPsec should be used to securely encrypt wireless traffic.

Embed presentation

Downloaded 325 times
WEP PRESENTED BY SUDEEP KULKARNI (W5097046) SWAPNIL KULKARNI (W5097047) SNEHAL LOKARE (W5097048) ABHISHEK MULAY (W5097056)
INTRODUCTION  Wireless network connectivity is becoming very important part of computing environments  One of the most popular wireless network standard is 802.11 i.e. WLAN. In this standard data is transmitted over radio waves  Wireless networks rely on Open Medium  With an open network medium, unprotected traffic can be seen by anybody  Guarding against such attacks constitutes the domain of Cryptography
What is WEP?  WEP is “Wired Equivalent Privacy” or “Wireless Encryption Protocol”  It is the original wireless security protocol for the 802.11 standard.  It uses the RC4 stream cipher, using a 64-bit key consisting of:  A 24-bit master key  A 40-bit initialization vector (IV)  It also employs a CRC integrity checksum
WEP Cryptographic Operations  Three major objectives of communication security  Confidentiality  Integrity  Authentication  WEP provides operations that attempt to meet these criteria  Frame body encryption supports confidentiality.  An integrity check sequence protects data in transit and allows receivers to validate that the received data was not altered in transit.
WEP Data Processing  Confidentiality and integrity are handled simultaneously.  Before encryption, the frame is run through an integrity check algorithm, generating a hash called an integrity check value (ICV)  The ICV protects the contents against tampering by ensuring that the frame has not changed in transit.  The frame and the ICV are both encrypted, so the ICV is not available to casual attackers
WEP Data Processing  As input, WEP requires Three Items viz.  Payload  Key  Initialization Vector (IV)  After processing, WEP has a single output.  Encrypted Frame
WEP Keys  Mapped Keys/Station Keys  For Unicast traffic.  Default Keys  WEP keys have an associated number. Up to four keys may be defined in an 802.11 station.  Each station receives two keys from the access point  A mapping key (0)  A default Key (1)
WEP key numbering and Storage  To efficiently encrypt frames, many 802.11 chipsets include a data structure known as Key Cache.  Most chipsets include four key slots.  Two types of Key Distribution:  Static/Manual  Dynamic  Static WEP uses one key slot whilw dynamic WEP uses two.
WEP Encapsulation  When WEP is in use, the frame body expands by 8 bytes.  4 bytes for IV Header  Remaining 4 for ICV Trailer
Design flaws of the WEP System  Key management  Manual key management is a minefield of problems  Static WEP offers a shared secret of only 40 bits.  Key Reuse  Stream ciphers are vulnerable to analysis when the key stream is reused.  IV reuse:  WEP's IV size is 24 bits.  WEP uses the same IV for different data packets.  An attacker can decrypt packets that were encrypted with the same IV.  Inappropriate Integrity check:  MD5 or SHA-1 algorithms are more suitable for cryptographic hash than CRC-32.
Attacks on WEP  FMS Attack  Fluhrer, Martin and Shamir published the first key recovery attack onWEP.  If the first 2 bytes of enough key stream are known -> The RC4 key is discovered  The first 8 bytes of WEP packet is a known SNAP-SAP header  AirSnort implements this attack  Recovers key after 20,000 packets = 11 seconds
Attacks on WEP  IP redirection:  Change the destination of an encrypted packet to a machine controlled by the attacker on the wired network.  Send modified frame to AP that will decrypt it and send to attacker machine  Derive keystream from this ciphertext, plaintext pair  Attacker can reuse keysteam to send/receive WLAN traffic
Attacks on WEP  Bit Flipping
Solutions to improve security of WEP  Multiple Security measures along with WEP.  Using VPN.  Using Efficient key management techniques as an additional measure.  Using alternative encryption techniques like IPsec instead of WEP.
Conclusions  WEP does little to secure the WLAN’s from attackers.  Better to use WEP rather than not using any encryption.  New standards and specifications which will replace WEP can be expected to provide sufficient security for wireless LAN’s.
THANK YOU

More Related Content

PPTX
Wireless network security
byShahid Beheshti University
 
PPTX
Wi Fi Security
byyousef emami
 
PPTX
Wireless hacking
byarushi bhatnagar
 
PDF
Network Security Fundamentals
byFat-Thing Gabriel-Culley
 
PPT
Network security and protocols
byOnline
 
PPT
UTM Unified Threat Management
byLokesh Sharma
 
PPTX
Authentication vs authorization
byFrank Victory
 
PPTX
Secure communication
byTushar Swami
 
Wireless network security
byShahid Beheshti University
 
Wi Fi Security
byyousef emami
 
Wireless hacking
byarushi bhatnagar
 
Network Security Fundamentals
byFat-Thing Gabriel-Culley
 
Network security and protocols
byOnline
 
UTM Unified Threat Management
byLokesh Sharma
 
Authentication vs authorization
byFrank Victory
 
Secure communication
byTushar Swami
 

What's hot

PPT
WEP
bynashniv
 
PPT
chapter 7 -wireless network security.ppt
byabenimelos
 
PPT
RC4&RC5
byMohamed El-Serngawy
 
PPTX
Wpa vs Wpa2
byNzava Luwawa
 
PPTX
Hash Function
bySiddharth Srivastava
 
PPTX
Wpa3
byBhavya Dashora
 
PPTX
WPA 3
bydiggu22
 
PDF
Wireless Networking Security
byAnshuman Biswal
 
PPTX
Cryptography.ppt
byUday Meena
 
PPTX
Key Management and Distribution
bySyed Bahadur Shah
 
PPTX
Metasploit
byLalith Sai
 
PPTX
Firewall presentation
bygaurav96raj
 
PPSX
WPA2
byMshari Alabdulkarim
 
PDF
IP Security
byAmbo University
 
PPTX
RSA ALGORITHM
bySathish Kumar
 
PDF
18CS2005 Cryptography and Network Security
byKathirvel Ayyaswamy
 
PPTX
Intrusion detection
byCAS
 
PPT
Intrusion Detection Systems and Intrusion Prevention Systems
byCleverence Kombe
 
PDF
Anatomy of a cyber attack
byMark Silver
 
PPTX
Firewall and vpn
byJoseph Sebastian
 
WEP
bynashniv
 
chapter 7 -wireless network security.ppt
byabenimelos
 
RC4&RC5
byMohamed El-Serngawy
 
Wpa vs Wpa2
byNzava Luwawa
 
Hash Function
bySiddharth Srivastava
 
Wpa3
byBhavya Dashora
 
WPA 3
bydiggu22
 
Wireless Networking Security
byAnshuman Biswal
 
Cryptography.ppt
byUday Meena
 
Key Management and Distribution
bySyed Bahadur Shah
 
Metasploit
byLalith Sai
 
Firewall presentation
bygaurav96raj
 
WPA2
byMshari Alabdulkarim
 
IP Security
byAmbo University
 
RSA ALGORITHM
bySathish Kumar
 
18CS2005 Cryptography and Network Security
byKathirvel Ayyaswamy
 
Intrusion detection
byCAS
 
Intrusion Detection Systems and Intrusion Prevention Systems
byCleverence Kombe
 
Anatomy of a cyber attack
byMark Silver
 
Firewall and vpn
byJoseph Sebastian
 

Viewers also liked

PDF
Wi-Fi security – WEP, WPA and WPA2
byFábio Afonso
 
PPTX
Wired equivalent privacy (wep)
byakruthi k
 
PDF
Seguridad wi fi wep-wpa_wpa2
byTRANS-REFORM S.L
 
PPT
Web Security
byBharath Manoharan
 
PDF
Introduction to OpenID Connect
byNat Sakimura
 
PPTX
Kerberos
bySudeep Shouche
 
PDF
NTLM
byGuang Ying Yuan
 
PPTX
Abusing Microsoft Kerberos - Sorry you guys don't get it
byBenjamin Delpy
 
PDF
Transport corporation of india hbj capital
byHBJ Capital Services Pvt. Ltd
 
PPTX
OpenID Connect: An Overview
byPat Patterson
 
PDF
Wpa supplicant introduction
byawkman
 
PDF
Cracking WEP Secured Wireless Networks
byHammam Samara
 
PDF
nl80211 and libnl
byawkman
 
PDF
OpenID Connect: The new standard for connecting to your Customers, Partners, ...
bySalesforce Developers
 
PDF
OAuth 2.0 & OpenID Connect @ OpenSource Conference 2011 Tokyo #osc11tk
byNov Matake
 
PPTX
Work study
bySaifur Rahman
 
PPT
WeP Corporate Profile (2).PPT
byWep Mps
 
PPTX
Kerberos, Token and Hadoop
byKai Zheng
 
ODP
Diving inside Android Wifi
byNanik Tolaram
 
DOCX
Identification of Training Needs at WeP Solutions Ltd.
byHimanshu Tomar
 
Wi-Fi security – WEP, WPA and WPA2
byFábio Afonso
 
Wired equivalent privacy (wep)
byakruthi k
 
Seguridad wi fi wep-wpa_wpa2
byTRANS-REFORM S.L
 
Web Security
byBharath Manoharan
 
Introduction to OpenID Connect
byNat Sakimura
 
Kerberos
bySudeep Shouche
 
NTLM
byGuang Ying Yuan
 
Abusing Microsoft Kerberos - Sorry you guys don't get it
byBenjamin Delpy
 
Transport corporation of india hbj capital
byHBJ Capital Services Pvt. Ltd
 
OpenID Connect: An Overview
byPat Patterson
 
Wpa supplicant introduction
byawkman
 
Cracking WEP Secured Wireless Networks
byHammam Samara
 
nl80211 and libnl
byawkman
 
OpenID Connect: The new standard for connecting to your Customers, Partners, ...
bySalesforce Developers
 
OAuth 2.0 & OpenID Connect @ OpenSource Conference 2011 Tokyo #osc11tk
byNov Matake
 
Work study
bySaifur Rahman
 
WeP Corporate Profile (2).PPT
byWep Mps
 
Kerberos, Token and Hadoop
byKai Zheng
 
Diving inside Android Wifi
byNanik Tolaram
 
Identification of Training Needs at WeP Solutions Ltd.
byHimanshu Tomar
 

Similar to WEP

PPT
Wireless security presentation
byMuhammad Zia
 
PPTX
WEP/WPA attacks
byHuda Seyam
 
PPT
Security Issues of IEEE 802.11b
bySreekanth GS
 
PPT
Wireless security837
bymark scott
 
PPTX
WLAN Security-2new.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmm
byiit2022057
 
PPT
Wireless hacking and security
byAdel Zalok
 
PPT
Security Issues of 802.11b
byguestd7b627
 
PDF
A Comparitive Analysis of Wireless Security Protocols (WEP And WPA2)
bypijans
 
PPT
Wireless Security.ppt
byMavaz
 
PPT
Wireless Security.ppt
byNotSure11
 
PPT
Mobile Security - Wireless hacking
byphanleson
 
PPT
4 wifi security
byal-sari7
 
PPT
5169 wireless network_security_amine_k
byRama Krishna M
 
PDF
Attack Robustness and Security Enhancement with Improved Wired Equivalent Pro...
byIDES Editor
 
PPT
Wireless Security (1).ppt
byEvaBlessed
 
PPTX
Wireless security
byvinay chitrakathi
 
DOC
Network security
byChintan Gosai
 
PDF
Viable means using which Wireless Network Security can be Jeopardized
byIRJET Journal
 
PDF
A comparitive analysis of wireless security protocols (wep and wpa2)
bypijans
 
PPT
wireless security ppt by david wagner UCB
byHimaniP19CSE013
 
Wireless security presentation
byMuhammad Zia
 
WEP/WPA attacks
byHuda Seyam
 
Security Issues of IEEE 802.11b
bySreekanth GS
 
Wireless security837
bymark scott
 
WLAN Security-2new.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmm
byiit2022057
 
Wireless hacking and security
byAdel Zalok
 
Security Issues of 802.11b
byguestd7b627
 
A Comparitive Analysis of Wireless Security Protocols (WEP And WPA2)
bypijans
 
Wireless Security.ppt
byMavaz
 
Wireless Security.ppt
byNotSure11
 
Mobile Security - Wireless hacking
byphanleson
 
4 wifi security
byal-sari7
 
5169 wireless network_security_amine_k
byRama Krishna M
 
Attack Robustness and Security Enhancement with Improved Wired Equivalent Pro...
byIDES Editor
 
Wireless Security (1).ppt
byEvaBlessed
 
Wireless security
byvinay chitrakathi
 
Network security
byChintan Gosai
 
Viable means using which Wireless Network Security can be Jeopardized
byIRJET Journal
 
A comparitive analysis of wireless security protocols (wep and wpa2)
bypijans
 
wireless security ppt by david wagner UCB
byHimaniP19CSE013
 

WEP

  • 1.
    WEP PRESENTED BY SUDEEP KULKARNI (W5097046) SWAPNIL KULKARNI (W5097047) SNEHAL LOKARE (W5097048) ABHISHEK MULAY (W5097056)
  • 2.
    INTRODUCTION  Wireless networkconnectivity is becoming very important part of computing environments  One of the most popular wireless network standard is 802.11 i.e. WLAN. In this standard data is transmitted over radio waves  Wireless networks rely on Open Medium  With an open network medium, unprotected traffic can be seen by anybody  Guarding against such attacks constitutes the domain of Cryptography
  • 3.
    What is WEP? WEP is “Wired Equivalent Privacy” or “Wireless Encryption Protocol”  It is the original wireless security protocol for the 802.11 standard.  It uses the RC4 stream cipher, using a 64-bit key consisting of:  A 24-bit master key  A 40-bit initialization vector (IV)  It also employs a CRC integrity checksum
  • 4.
    WEP Cryptographic Operations Three major objectives of communication security  Confidentiality  Integrity  Authentication  WEP provides operations that attempt to meet these criteria  Frame body encryption supports confidentiality.  An integrity check sequence protects data in transit and allows receivers to validate that the received data was not altered in transit.
  • 5.
    WEP Data Processing Confidentiality and integrity are handled simultaneously.  Before encryption, the frame is run through an integrity check algorithm, generating a hash called an integrity check value (ICV)  The ICV protects the contents against tampering by ensuring that the frame has not changed in transit.  The frame and the ICV are both encrypted, so the ICV is not available to casual attackers
  • 7.
    WEP Data Processing As input, WEP requires Three Items viz.  Payload  Key  Initialization Vector (IV)  After processing, WEP has a single output.  Encrypted Frame
  • 8.
    WEP Keys  MappedKeys/Station Keys  For Unicast traffic.  Default Keys  WEP keys have an associated number. Up to four keys may be defined in an 802.11 station.  Each station receives two keys from the access point  A mapping key (0)  A default Key (1)
  • 9.
    WEP key numberingand Storage  To efficiently encrypt frames, many 802.11 chipsets include a data structure known as Key Cache.  Most chipsets include four key slots.  Two types of Key Distribution:  Static/Manual  Dynamic  Static WEP uses one key slot whilw dynamic WEP uses two.
  • 10.
    WEP Encapsulation  WhenWEP is in use, the frame body expands by 8 bytes.  4 bytes for IV Header  Remaining 4 for ICV Trailer
  • 11.
    Design flaws ofthe WEP System  Key management  Manual key management is a minefield of problems  Static WEP offers a shared secret of only 40 bits.  Key Reuse  Stream ciphers are vulnerable to analysis when the key stream is reused.  IV reuse:  WEP's IV size is 24 bits.  WEP uses the same IV for different data packets.  An attacker can decrypt packets that were encrypted with the same IV.  Inappropriate Integrity check:  MD5 or SHA-1 algorithms are more suitable for cryptographic hash than CRC-32.
  • 12.
    Attacks on WEP FMS Attack  Fluhrer, Martin and Shamir published the first key recovery attack onWEP.  If the first 2 bytes of enough key stream are known -> The RC4 key is discovered  The first 8 bytes of WEP packet is a known SNAP-SAP header  AirSnort implements this attack  Recovers key after 20,000 packets = 11 seconds
  • 13.
    Attacks on WEP IP redirection:  Change the destination of an encrypted packet to a machine controlled by the attacker on the wired network.  Send modified frame to AP that will decrypt it and send to attacker machine  Derive keystream from this ciphertext, plaintext pair  Attacker can reuse keysteam to send/receive WLAN traffic
  • 14.
    Attacks on WEP Bit Flipping
  • 15.
    Solutions to improvesecurity of WEP  Multiple Security measures along with WEP.  Using VPN.  Using Efficient key management techniques as an additional measure.  Using alternative encryption techniques like IPsec instead of WEP.
  • 16.
    Conclusions  WEP doeslittle to secure the WLAN’s from attackers.  Better to use WEP rather than not using any encryption.  New standards and specifications which will replace WEP can be expected to provide sufficient security for wireless LAN’s.
  • 17.