New encryption technology closes WLAN security loopholes
Steven M. Bellovin
smb at research.att.com
Mon Oct 1 18:24:55 EDT 2001
In message <5.0.2.1.1.20011001002633.036f94a0 at idiom.com>, Bill Stewart writes:
>
>One interesting issue with radio networks is Man-in-the-middle attacks,
>because nobody can intercept a request and forward it
>faster than you can receive it directly, unless there are
>distances that are too far for the two parties to reach each other
>but still let the MITM contact both.
>
Move up the stack a bit. The way to launch a MITM attack on wireless
is via ARP-spoofing. *Maybe* the gateway will notice an ARP entry
being overwritten -- but most likely, a human will not.
--Steve Bellovin, http://www.research.att.com/~smb
http://www.wilyhacker.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list