Skip to navigation
   
Davey Winder's Blog
RSS

WiFi Security: Gone in 60 Seconds

By Davey Winder in Editorial

Posted in WiFi, Security on August 30, 2009 at 10:14 pm

Permalink | Author Profile

Without repetition, hesitation or deviation WPA WiFi Encryption has been cracked wide open - in just a minute. Yep, Japanese researchers at Hiroshima and Kobe universities have reportedly managed to break the WPA encryption found on wireless routers in less than 60 seconds.

Toshihiro Ohigashi of Hiroshima University and Masakatu Morii of Kobe University will be explaining all to an eager audience in Hiroshima at a technical conference towards the end of September. It is, I am led to believe, the first time that previously purely theoretical WPA hacking techniques have been moved into the seriously practical realm. So whereas previous WPA attacks have been able to crack a relatively small set of routers, and took an admittedly still rather worryingly quick 15 minutes or so, the new method is said to be far more wide reaching and a whole heap quicker despite it using a similar approach in targeting the TKIP algorithm.

As far as I am aware, both WPA2 and AES remain safe from the techniques involved.

I have to admit that I am not entirely surprised by the new claims, only surprised that it has taken so long to destroy the integrity of what was only ever meant to be a stop gap encryption measure. Anyone serious about securing their WiFi networks would surely have moved to WPA2 yonks ago and dumped WPA with TKIP at the earliest opportunity. Indeed, it has been some three years now since all WiFi certified products have been required to support WPA2 so it is no new thing. Heck, it’s even relatively simple to step up from TKIP to AES on a lot of older WPA only routers. Mind you, even WPA2 encryption has come under attack recently with a Russian security company claiming it can crack WPA2 passwords quickly with a little help from NVIDIA graphics cards.

The full report “A Practical Message Falsification Attack on WPA” regarding the latest WPA attack methodology can be found here.

12345
Rated: 100% (1 votes)
Loading ... Loading ...

Previous Post | Next Post

 
 
Comments

Comment by A.SALMON - September 14, 2009 on 7:46 pm

Becareful when entering into a free Notebook for internet provider rental agreement,as often,as in my case,the cheap notebook they provide doesnt have the wifi strength necessary to get you connected.I have also had problems with netgears bottom of the range products,now i have found the solution and upgraded,its worth it in the long run folks because even if you have a weak connection living in a valley,and you do get on, then all those videos are going to jam when you play them. The solution then is is a product from WIFI-Link Technologies (UK)A Powerful Attenna.[for those out of townies.that will take you there!

Comment by ed hardy shoes - October 9, 2009 on 7:57 am

i like

Comment by links of london - October 16, 2009 on 8:10 am

It was a very nice idea! Just wanna say thank you for the information you have shared. Just continue writing this kind of post. I will be your loyal reader. Thanks again.

Comment by prom dresses shop - November 4, 2009 on 10:20 am

Hello, I want to thank you for this nice blog.

Trackback by Cleora Zanueta - February 9, 2012 on 8:37 am

wiki sopa strike…

[…]cold concrete cell with noticed dirt covered flooring […]…

Make a comment

* required

* required

We stop spam using reCaptcha.
Type the words below and click Submit Comment.

   
Tag cloud

spending sick Amazon Beta services management world of warcraft news Windows 7 size Ballmer Mafia console Steve Jobs Internet code terrorism Zango avatar President payment server e-commerce open source search IDC Banned Software Sex Top 500 family OCR security Eee linkedin information HP Government Advertising Yahoo Children Press Parenting Battery Linux universe Silverlight Apps Lotus Noro copyright The Federation patch management GSM Election Texting Johnny Depp Architecture crime MiniBook smartphone tax economics Health AMD symantec NBC computer mail VeriSign NASA Tesco Blogging patent data protection social networking Digital Footprint Trojan recession service ISPA politics transactional security help Intel Windows payments Voice Education MSNBC IT Geeks iPhone 3GS worm Trousers Study exploit Gateway SSL Research scareware iPad ISP Networks Funny man-in-the-middle lawsuit iPhone 3G App HPC statistics virtualisation network home surveys Rant MSN gaming workplace fraud Supercomputer Gadget Gartner admin outsourcing Pirate christmas Scotland Programming worker Rumour Russia Music Addiction Nexus second life fun trust Flash hubdub Top 10 PS3 IP eBook Facebook innovation books Employment stupid debian holidays Europe library Browser Death acquisition Big Brother iPod Spotify hacker Obama MessageLabs Hack Application BSI gadgets fool ROFL carbon copy Experiment Recall Media Conference Michael Jackson office computing Analysis cloud storage dumb monetisation Energy support snooping Performance computing spam Army millions adware meme broadband CAPTCHA theft Vista black hat Palm campaign poll Marketing Digg remote working VM OS Olympics web encryption e Mobile Phones betting hardware XP report IBM Eee PC scan Space Browsers RATM Psychic migration Madness Kaspersky desktop Retail EU ecommerce xmas GMail Paris Hilton shopping law Web Development biometrics BOFH museum hacking games Internet Explorer standards Adobe virus ID Theft phishing chips money Microsoft football Guardian Blog Bill Gates wifi parental control VPN Opinion students Microchip rootkits nightmare YouTube web 2.0 environment Enterprise Android Developers Project DNS printing Harry Potter prison School computers malware Palm Pre credit card fraud virtual world Mobile Phone policy McKinnon hypervisor Licensing memory work tech data Nintendo Apple SMS fake Meh mobile development Review Porn global Twitter Jobs technology banking green Military Video Windows Phone 7 Series Google productivity teleworking staffing Notebooks China documentation Google Earth virtual machine Backlash iPhone stupidity hoax App Store Dell USA Texas Instruments Mars Kill Switch credit crunch scam RAM Data Centre banks email Kindle survey compromise disclosure Acer Steve Ballmer graphics privacy ASUS digitise science Netbook Game Sony FBI economy earth hour Cisco Psion remote Patents Deal Kin archiving Business botnet InfoSec Firefox Jesus Phone Finjan
Advertisement

   
Archives

   
Most commented posts

   
Highest Rated Blog Posts

Advertisement