New encryption technology closes WLAN security loopholes

Bill Stewart bill.stewart at pobox.com
Mon Oct 1 03:36:42 EDT 2001


At 07:48 AM 10/01/2001 +0530, Udhay Shankar N wrote:
>Is there a howto for IPsec or any other kind of session encryption over 
>802.11 ?

The basic howto is "ignore 802.11 - pretend it's just an ethernet
that anybody can plug in to, and do whatever flavor of ipsec you like."
Getting slightly more serious, the two issues you need to resolve are
eavesdropping and authorization.  Any ipsec system takes care of the
eavesdropping problem; the harder part is deciding how to do authorization.
If you're trying to keep the system open for public use,
but also keep your intranet private, you've got a more complex problem.

One interesting issue with radio networks is Man-in-the-middle attacks,
because nobody can intercept a request and forward it
faster than you can receive it directly, unless there are
distances that are too far for the two parties to reach each other
but still let the MITM contact both.






---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com




More information about the cryptography mailing list