Overview of 802概述 Security IEEE.pptVIP

March 2001 Jesse Walker, Intel Corporation month year doc.: IEEE 802.15-doc# author, company Overview of 802.11 Security Jesse Walker, Intel Corporation (503) 712-1849 jesse.walker@ Acknowledgements Bernard Aboba Dave Halasz Nikita Borisov Duncan Kitchin Agenda Introduction and Goals 802.11 Security Today What’s Wrong Today? Proposed Encapsulation Proposed Authentication, Authorization, and Key Management Summary Introduction 802.11 security recently gained notoriety: Celebrated UC Berkeley paper by Borisov et. al. publicized attacks on 802.11 Most of these were discussed privately in 802.11 TGe throughout last year and documented in doc. IEEE 802.11/00-362 UC Berkeley group wasn’t participating in the process, but 802.11 was living in sin Goals Develop a wider understanding of network security requirements Explain how 802.11 security works now Describe its major issues Understand what is being done to address the issues Agenda Introduction and Goals 802.11 Security Today What’s Wrong Today? Proposed Encapsulation Proposed Authentication, Authorization, and Key Management Summary 802.11 Security Today Goals of existing 802.11 security Existing security consists of two subsystems A data encapsulation technique called Wired Equivalent Privacy (WEP) An authentication algorithm called Shared Key Authentication Existing 802.11 Security Goals Create the privacy achieved by a wired network Only prevent intellectual property from leaking through casual browsing Simulate physical access control by denying access to unauthenticated stations WEP Encapsulation WEP Authentication Agenda Introduction and Goals 802.11 Security Today So What’s Wrong Today? Proposed Encapsulation Proposed Authentication, Authorization, and Key Management Summary So What’s Wrong Today? Properties of Vernam Ciphers How to read WEP Encrypted Traffic How to authentication without the key Traffic modification Lessons Requirements for a networked data encapsulation scheme Properties of Vernam Ciphers