Don’t Use WEP For Wi-Fi Security, Researchers Say

Kristin Abraham — Fri, 13 Apr 2007 09:02:00 +0000

If you’re relying on Wired Equivalent Privacy (WEP) protocol for Wi-Fi security you may be at risk. Three German security researchers have found a way to tap into WEP protected data within a minute. Previosly, WEP had been criticized for flaws in the basic algorithm structure but cracking into the system took several minutes. Now, with the help of a 1.7 GHz Pentium M processor, WEP is rendered useless in a few seconds. Switching to WPA encryption can take up to a few hours but the switch could protect your private and sensitive data.
Via [computerworld.com]

New Attack Cracks WEP In Record Time

Eliza Villarino — Thu, 12 Apr 2007 08:12:00 +0000

Researchers at the Technische Universitat Darmstadt have found a way to crack 104-bit WEP, a typical security tool for 802.11b/g/n networks. The team used a 1.7GHz Pentium-M machine to compute the success rate of grabbing the key. The attack needs sufficient traffic, so the researchers made the protected network generate packets. At 40,000 packets, the probability of extracting the key is at 50 percent. This could go up to 80 percent with an additional 20,000 packets, and rise to 95 percent when traffic involves 95,000 packets. Hitting 95 percent, based on the experiment, would only take 1 minute and 51 seconds.

Because of WEP’s vulnerabilities, it is recommended that wireless network owners opt for WPA2, which is yet to be cracked by any known cryptographic attacks. The mechanism also provides support for infrastructure and ad-hoc networks, and includes pre-authentication and CCMP encryption features.
Via [arstechnica.com]

NetStumbler

Don’t Use WEP For Wi-Fi Security, Researchers Say

New Attack Cracks WEP In Record Time