DOS attack on WPA 802.11?

William Arbaugh waa at cs.umd.edu
Sun Dec 8 16:30:20 EST 2002 

There is another reason why it won't change. The majority of the IEEE 
are not interested in denial of service attacks. This issue has been 
brought up several times at TGi and other meetings by myself, Bernard 
Aboba and a few others. The standard response is that this is RF and 
you can always do a DoS.  But, they're missing the point of the cost of 
the attacker to run the attack.

Unfortunately right now, anyone with a NIC card and laptop can deny 
service to multiple AP's on a WLAN using tools available on the 
Internet. This is true for the current and ALL future standards, and 
each case they don't have to resort to sending malformed frames to 
TKIP. It is just a simple, unprotected by a MIC/MAC, disassociate 
message.

On Thursday, Dec 5, 2002, at 12:40 US/Eastern, Arnold G. Reinhold wrote:

> At 10:48 PM -0500 11/29/02, Donald Eastlake 3rd wrote:
>> Arnold,
>>
>> If you want to play with this as in intellectual exercise, be my 
>> guest. 
>> But the probability of changing the underlying IEEE 802.11i draft
>> standard, which would take a 3/4 majority of the voting members of 
>> IEEE
>> 802.11, or of making the WiFi Alliance WPA profiling and subseting of
>> 802.11i incompatible with the standard, are close to zero.
>>
>
> Cryptographic standards should be judged on their merits, not on the 
> bureaucratic difficulties in changing them. Specs have been amended 
> before. Even NSA was willing to revise its original secure hash 
> standard. That's why we have SHA1.  If I am right and WPA needlessly 
> introduces a significant denial of service vulnerability, then it 
> should be fixed. If I am wrong, no change is needed of course.
>
> Check out the President's message for September 202 at the Association 
> of Old Crows web site ("Serving the Electronic Warfare and Information 
> Operations Community"): http://www.aochq.org/news.htm
>
>
> Arnold Reinhold
>
> ---------------------------------------------------------------------
> The Cryptography Mailing List
> Unsubscribe by sending "unsubscribe cryptography" to 
> majordomo at wasabisystems.com
>


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com

More information about the cryptography mailing list