Uploaded byzmulani8
PPTX, PDF7 views

unit_3_AAA Wi-Fi Security_WLAN Security_2.pptxfdgf

fdgfdgfdgfdg

Download to read offline
AAA Wi-Fi Security WLAN Security - WEP, WPA, WPA-2, radius, CHAP
Wifi-Security • needed to manage remote access when users are moving Authentication infrastructure:- • The IEEE 802.1x standard recommends the usage of the RADIUS server (Remote Authentication Dial-In User Server). • Authentication can be conducted by a server located in the visited domain or outside it. • establishes a trust circle, through which an authentication message is supported by multiple servers linked together by security associations. Radio security. • Radio security’s aim is to ensure the confidentiality, integrity and packet signature. • delivered by protocols such as WEP (Wired Equivalent Privacy), TKIP (Temporal Key Integrity Protocol) or CCMP (Counter mode with CBC MAC Protocol) • protocols use keys derived from a master key, after the authentication process.
Wifi-Security Packet filtering • based on the packet signature using keys derived from the authentication process • frames that enter the distribution system are safe (no risk of spoofing or disguise). • Filtering systems -access point or portal • destruction of illicit packets • services for QoS (Quality of Service) Access to remote services (roaming) • Access to remote services may be designed generically under the VPN (Virtual Private Network) • For example, implementation of secure inter-domains can be achieved using IPsec or SSL protocols.
Attacks on wireless networks Passive Attacks:- • an unauthorized person obtains access to a resource without changing its content • Attacks may be passive eavesdropping or traffic analysis Features:- Eavesdropping Traffic analysis
Attacks on wireless networks Active attacks • making unauthorized changes are made to messages and data flows or files Features:- Masquerade Replay Message modification Denial-of-service TCP attacks Trojan attack Dictionary attacks
IEEE 802.11 security mechanisms • The access points used in wireless networks -broadcast data to all stations in their emission range. • a malicious user can enter the area of a network and retrieve information in order to obtain access to the network. • To overcome this problem, a client must establish a relationship, called an association with an access point. • A complete association with an access point requires the client to pass through three states: 1) non-authenticated, non-associated; 2) authenticated, non-associated; 3) authenticated, associated.
WEP (Wired Equivalent Privacy) • broadcast on a radio wave • it is necessary to introduce a mechanism to protect communications from malicious eavesdropping • WEP is based on a symmetric cipher RC4 stream and was created to satisfy access control, privacy, authentication and integrity. • WEP is defined as an optional protocol, and the WLAN stations and the access points are not obliged to use it. • mechanisms defined in WEP are also optional • a station can use the authentication mechanism, for example, but not the encryption algorithm, and vice versa.
WEP (Wired Equivalent Privacy) I. Access control to control access and not to permit users without authorization access to the medium. has two functions: authentication and authorization. Authentication makes it possible to check the identity of the client who wants to be connected authorization gives him the permission to enter the network. It is possible to be authenticated but not authorized. can be done on both sides of the communication: client and server sides.
WEP (Wired Equivalent Privacy) II The SSID • The network identifier or SSID (Service Set ID) is the first mechanism of security offered by WEP for network access control. • The SSID is the name given to a network or domain. • The term “network name” is primarily used at the network configuration. • All stations and all access points belonging to the same network must have the SSID, even if the WLAN stations are in ad hoc mode or in infrastructure mode. • If one or more stations enter a network under the control of an access point, they must provide the SSID to the access point. • WLAN stations can access the network if they have the correct SSID.
WEP III The ACL (Access Control List) • Some Wi-Fi manufacturers implement the ACL on MAC addresses of the terminals • In this case, an access point performs the combination of a terminal only if the MAC address of the terminal is in its ACL. • MAC address is a unique address of every Wi-Fi or Ethernet card. • According to this address, WLAN stations can be recognized in the network. • ACL is an optional mechanism and can be configured only by the administrator of the access point.
WEP IV Confidentiality • transmitted frames in wireless networks are protected by encryption • Only the decryption using the proper static WEP key, shared between the terminal and the network, is allowed. • This key is obtained by concatenation of a secret key of 40 or 104 bits and an initialization vector (IV) to 24 bits. It is dynamically changed for each frame. The size of the final key is 64 or 128 bits
WEP IV Confidentiality • RC4 algorithm performs the encryption of data in stream cipher. • RC4 key has a length of 8 and 2,048 bits. • key is placed in a generator of pseudo-random numbers, called RC4 PRNG (Pseudo-Random Number Generator), from RSA Laboratories. • This generator determines a sequence of pseudo- random bytes known as key stream or Ksi. • This series of bytes is used to encrypt a message, or Mi, with a classical Vernam protocol, performing exclusive XOR ( ) between Ksi and Mi. † • The result obtained from the exclusive XOR gives a new value, called Ci, such that:
WEP V Authentication • Two types of authentication procedures are available in WEP: open authentication and shared key authentication, which is a method of challenge/response. • Open authentication is the default process. • It contains no explicit authentication: a terminal can associate with the access point which is broadcasting its SSID and listen to all the data in transit within the BSS. • Shared key authentication provides a better level of security using a sharing key mechanism. The authentication occurs in four steps
V Authentication 1) When a WLAN station requires an association with an access point, it sends an authentication request. 2) When the access point receives this frame, it sends to the WLAN station a frame containing a challenge of 128 bits generated by the WEP protocol. 3) The station copies the challenge in an authentication frame and encrypts it with the secret key, then its sends them to the access point. 4) The access point decrypts the message with the help of the secret key and compares it with the sent message. Then, it sends the result of authentication to the WLAN station.
WEP VI.Data integrity • The ICV is a CRC (Cyclic Redundancy Check) 32-bit based on the block. • To prevent changes to the messages conveyed, the ICV is encrypted with the same key as that used for encryption.
AAA • Authentication, Authorization, Accounting • Authentication identifies the user requesting access to network services. • Authorization limits the user’s access to permitted services only. • Accounting serves to count the network resources that are consumed by the user.
AAA • terminal interacts with the access router. • In the case where a terminal connects from a switched network (PSTN, ISDN, GSM), • access router becomes a NAS (Network Access Server) gateway that ensures the connectivity between the switched network and IP network. • Once it is physically connected to the network, the user terminal is authenticated. • only packets belonging to the authentication protocol and addressed to the AAA server are authorized and relayed by the NAS. • Upon a successful authentication, the NAS authorizes other packets coming from the user
AAA • two ports at the NAS: a controlled port and an uncontrolled port. • During the authentication phase, the traffic - controlled port After user authenticates, - second port. • From the operator’s point of view, the AAA client located on the NAS captures the authentication messages (e.g. EAP) coming from the terminal, encapsulates them into AAA messages, and sends AAA messages to the AAA server. • The AAA server accesses a database that stores all the information relative to the users and necessary for authentication. • AAA server and the terminal share a secret that allows the AAA server to authenticate the user
AAA • In the context of roaming, the AAA architecture defines domains of administration. • Each domain has its AAA server. • A mobile user is registered with his home AAA (AAAH) server of origin and can be authenticated by any visited network or domain through an inter-domain AAA protocol. • This inter-domain authentication is conducted by an AAA broker
AAA AAA functions for: – the terminal-NAS interface: two protocols are now envisaged for the transport of EAP messages, namely 802.1X and PANA (Protocol for carrying Authentication for Network Access) – the interface between the NAS and the AAA server for intra-domain which is provided by the RADIUS protocol – the interface between AAA servers for inter-domain which is implemented by the Diameter protocol
Authentication in wireless networks • WPA and WPA2 protocols start with the client authentication RADIUS (Remote Authentication Dial-In User Server) Cisco Access Registrar is a RADIUS (Remote Authentication Dial-In User Service) server that allows multiple dial-in Network Access Server (NAS) devices to share a common authentication, authorization, and accounting database. Access Registrar tasks: • Authentication—determines the identity of users and whether they may be allowed to access the network • Authorization—determines the level of network services available to authenticated users after they are connected • Accounting—keeps track of each user’s network activity • Session and resource management—tracks user sessions and allocates dynamic resources all security information in a single, centralized database
RADIUS (Remote Authentication Dial-In User Server) • Access Registrar is based on a client/server model, which supports AAA (authentication, authorization, and accounting). • The client is the Network Access Server (NAS) and the server is Cisco Access Registrar. • The client passes user information on to the RADIUS server and acts on the response it receives. • The server, on the other hand, is responsible for receiving user access requests, authenticating and authorizing users, and returning all of the necessary configuration information the client can then pass on to the user. • The protocol is a simple packet exchange in which the NAS sends a request packet to the Cisco Access Registrar with a name and a password. • Cisco AR looks up the name and password to verify it is correct, determines for which dynamic resources the user is authorized, then returns an accept packet that contains configuration information for the user session
Packet Exchange Between User, NAS, and RADIUS
steps
Steps continued….
Types of RADIUS Messages • The client/server packet exchange consists primarily of the following types of RADIUS messages: • Access-Request—sent by the client (NAS) requesting access • Access-Reject—sent by the RADIUS server rejecting access • Access-Accept—sent by the RADIUS server allowing access • Access-Challenge—sent by the RADIUS server requesting more information in order to allow • access. The NAS, after communicating with the user, responds with another Access-Request
Proxying to an LDAP Server for Authentication
Challenge Handshake Authentication Protocol (CHAP) • is a three-way hand-shaking authentication protocol • provides greater security than PAP • password is kept secret; it is never sent online 1. The system sends the user a challenge packet containing a challenge value, usually a few byte 2. The user applies a predefined function that takes the challenge value and the user's own password and creates a result. user sends the result in the response packet to the system
Challenge Handshake Authentication Protocol (CHAP) 3. The system does the same. It applies the same function to the password of the user (known to the system) and the challenge value to create a result. If the result created is the same as the result sent in the response packet, access is granted; otherwise, it is denied.
CHAP

More Related Content

PPT
5169 wireless network_security_amine_k
byRama Krishna M
 
PPTX
WLAN Security-2new.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmm
byiit2022057
 
PPT
4 wifi security
byal-sari7
 
PPT
Shashank wireless lans security
byShashank Srivastava
 
PPTX
Wireless lan security(10.8)
bySubashiniRathinavel
 
PPT
Wireless hacking septafiansyah
bySeptafiansyah P
 
PPT
Ch06 Wireless Network Security
byInformation Technology
 
PPTX
WLAN SECURITY BY SAIKIRAN PANJALA
bySaikiran Panjala
 
5169 wireless network_security_amine_k
byRama Krishna M
 
WLAN Security-2new.pptxmmmmmmmmmmmmmmmmmmmmmmmmmmm
byiit2022057
 
4 wifi security
byal-sari7
 
Shashank wireless lans security
byShashank Srivastava
 
Wireless lan security(10.8)
bySubashiniRathinavel
 
Wireless hacking septafiansyah
bySeptafiansyah P
 
Ch06 Wireless Network Security
byInformation Technology
 
WLAN SECURITY BY SAIKIRAN PANJALA
bySaikiran Panjala
 

Similar to unit_3_AAA Wi-Fi Security_WLAN Security_2.pptxfdgf

PPTX
lm_wireless_security_overview_of_wireless_sec.pptx
byLucintaLuna4
 
PDF
wi-fi technology
bytardeep
 
PPT
Wi Fi Technology
byAlok Pandey (AP)
 
PPT
Introdutction – Security & Authentication in WLAN
bycszxd
 
PPT
Introdutction – Security & Authentication in WLAN
bycszxd
 
PPT
Wireless and WLAN Secuirty, Presented by Vijay
bythevijayps
 
PPTX
Wireless security
byparipec
 
PDF
DTS Solution - Wireless Security Protocols / PenTesting
byShah Sheikh
 
PPTX
Hacking Wireless Networks : Null Delhi (November)
byMandeep Jadon
 
PPT
Wifi
byTheSmit Chheda
 
PPT
Wireless security837
bymark scott
 
PDF
Hacking Wireless Networks by Mandeep Singh Jadon
byOWASP Delhi
 
PPT
wireless lan security for their all details
bySatyamPrakash38
 
PPTX
Wireless network security
byVishal Agarwal
 
PDF
WIRELESS SECURITY course in bachelor of engineering.pdf
bysridharsiva5
 
PPTX
Wireless security
byvinay chitrakathi
 
PPT
chapter 8.ppt
byKidaneKenenisa1
 
PPT
Wireless Security.ppt
byMavaz
 
PPT
Wireless Security.ppt
byNotSure11
 
PPT
wireless lan security.ppt
bySagarBedarkar3
 
lm_wireless_security_overview_of_wireless_sec.pptx
byLucintaLuna4
 
wi-fi technology
bytardeep
 
Wi Fi Technology
byAlok Pandey (AP)
 
Introdutction – Security & Authentication in WLAN
bycszxd
 
Introdutction – Security & Authentication in WLAN
bycszxd
 
Wireless and WLAN Secuirty, Presented by Vijay
bythevijayps
 
Wireless security
byparipec
 
DTS Solution - Wireless Security Protocols / PenTesting
byShah Sheikh
 
Hacking Wireless Networks : Null Delhi (November)
byMandeep Jadon
 
Wifi
byTheSmit Chheda
 
Wireless security837
bymark scott
 
Hacking Wireless Networks by Mandeep Singh Jadon
byOWASP Delhi
 
wireless lan security for their all details
bySatyamPrakash38
 
Wireless network security
byVishal Agarwal
 
WIRELESS SECURITY course in bachelor of engineering.pdf
bysridharsiva5
 
Wireless security
byvinay chitrakathi
 
chapter 8.ppt
byKidaneKenenisa1
 
Wireless Security.ppt
byMavaz
 
Wireless Security.ppt
byNotSure11
 
wireless lan security.ppt
bySagarBedarkar3
 

More from zmulani8

PPTX
raster and vector.pptxsdsdsdsdwdwdwded4d
byzmulani8
 
PDF
India's neighbours sst.pdfcxvgdggwegewgfwqt
byzmulani8
 
PDF
Ch-13.pdffgfdgfdgfdgfdgrtrfdgregregergreyh
byzmulani8
 
PPTX
cloud computing.pptxddsgfgqwgfgfgfgfgfdg
byzmulani8
 
PPT
sequentialcircuit.pptfdgfdgfdyhfdr5hyrthtrfhf
byzmulani8
 
PPT
kmap.pptdgdgdsdsgdsgdsgdsgtgujtrjghjhgjhgjhg
byzmulani8
 
PPT
combcircuit.pptxcdscsdcfewfewfewfsaffsfcvxcv
byzmulani8
 
PPT
02 Number System.pptsdfdesfdsfdsfdsf3wrwerwr
byzmulani8
 
PPT
olaptechnology.pptsfdsafsafsafsafrtygreyewry
byzmulani8
 
PPTX
unit 4 GIS.pptxzxczxcxzcxzcxzcxzcvnhfghrfhreyewte
byzmulani8
 
PPTX
Lect6_TWIN_PHIS.pptxdsdwdwdjjdo2jdo2d2d2d2d
byzmulani8
 
PPT
Lect1_3.pptjjjjedediodheiohdioeipojihiohi
byzmulani8
 
PPTX
unit 2 hbase last part.pptxddcdcdcdcdcxfd
byzmulani8
 
PPTX
cassandra.pptxsssssedededjjjedjededededed
byzmulani8
 
PPTX
Unit 3 dw.pptxlkkljkluioluio878o78o8ojjl
byzmulani8
 
PPTX
MongoDB-query_4.pptxgghjjhui7i78i709007u
byzmulani8
 
PPTX
unit2_password_attacks_2fdgf.pdfgdgdghgptx
byzmulani8
 
PPTX
unit 2_Authentication & Authorization vulnerabilities_4.pptx
byzmulani8
 
PPTX
unit_4_network_cloud_forlensics_3_4.pptx
byzmulani8
 
PPT
unit 1 _authentication protodfcols_2.ppt
byzmulani8
 
raster and vector.pptxsdsdsdsdwdwdwded4d
byzmulani8
 
India's neighbours sst.pdfcxvgdggwegewgfwqt
byzmulani8
 
Ch-13.pdffgfdgfdgfdgfdgrtrfdgregregergreyh
byzmulani8
 
cloud computing.pptxddsgfgqwgfgfgfgfgfdg
byzmulani8
 
sequentialcircuit.pptfdgfdgfdyhfdr5hyrthtrfhf
byzmulani8
 
kmap.pptdgdgdsdsgdsgdsgdsgtgujtrjghjhgjhgjhg
byzmulani8
 
combcircuit.pptxcdscsdcfewfewfewfsaffsfcvxcv
byzmulani8
 
02 Number System.pptsdfdesfdsfdsfdsf3wrwerwr
byzmulani8
 
olaptechnology.pptsfdsafsafsafsafrtygreyewry
byzmulani8
 
unit 4 GIS.pptxzxczxcxzcxzcxzcxzcvnhfghrfhreyewte
byzmulani8
 
Lect6_TWIN_PHIS.pptxdsdwdwdjjdo2jdo2d2d2d2d
byzmulani8
 
Lect1_3.pptjjjjedediodheiohdioeipojihiohi
byzmulani8
 
unit 2 hbase last part.pptxddcdcdcdcdcxfd
byzmulani8
 
cassandra.pptxsssssedededjjjedjededededed
byzmulani8
 
Unit 3 dw.pptxlkkljkluioluio878o78o8ojjl
byzmulani8
 
MongoDB-query_4.pptxgghjjhui7i78i709007u
byzmulani8
 
unit2_password_attacks_2fdgf.pdfgdgdghgptx
byzmulani8
 
unit 2_Authentication & Authorization vulnerabilities_4.pptx
byzmulani8
 
unit_4_network_cloud_forlensics_3_4.pptx
byzmulani8
 
unit 1 _authentication protodfcols_2.ppt
byzmulani8
 

Recently uploaded

PDF
John deere 401d tractor repair technical manual Tm1271
byabjekGoogle
 
PDF
Inventory model theory ppc module 4 introduction
bymrramkrishnasaraswat
 
PDF
TDJ2O1 - Perspective (3D) Drawings.pdfnn
byeternityisclose988
 
PPTX
https://www.slideshare.net/slideshow/save_water_presentation_rajkamal_sable p...
byrajkamalsable63stu
 
PDF
TM10690 624k John Deere 4WD Loader Operation Test Manual
byabjekGoogle
 
PPTX
GMTC-0403-Q1-FPF.pptxJSHFHBDJMJSFAFARDHNJ
byDarylWayneObligado
 
PDF
Premium BMW Body and Trim Restoration for a Flawless Finish
byUltimate Bimmer Service
 
DOCX
How & Where can I buy Telegram Accounts in 2025-2026.docx
bygolam mosabber
 
PPTX
1508902360-Mann_9e_PPT_Ch05.pptx ihiuuiuiu
bymuhammadaqeelabbas211
 
PDF
T3 & S2 John Deere 624K 4WD Loader Engine 6068HDW79 Technical Manual 1DW624K.pdf
byabjekGoogle
 
PPTX
Smart Dusting Tips for Cleaner Homes
byHeera Yadav
 
PDF
MT range from MANITOU telescopic handlers
byssuser757710
 
PDF
Y8 B1, C1 and P1 Revision - WC 27 Oct.pdf
byAmnaHamdani2
 
PDF
John Deere 7610 Tractor Operation & Test Manual - TM2030.pdf
byabjekGoogle
 
PDF
Android Security Certification in Practice: Lessons from GMS, CTS, and VTS
byCheng Wig
 
PDF
Restore Smooth Performance with Professional Land Rover Transmission Care
byGerman Auto Specialist
 
PPTX
SlideEgg_501498-Ghibli.pptxdsddsdddddddd
byLTun151874
 
PDF
John deere 401d tractor repair manual tm1271.pdf
byabjekGoogle
 
PDF
NoHo First UMC Good News November 2025.pdf
byNoHo FUMC
 
PDF
How to Top Premium Old GitHub Account Online in 2025
bynelag56683
 
John deere 401d tractor repair technical manual Tm1271
byabjekGoogle
 
Inventory model theory ppc module 4 introduction
bymrramkrishnasaraswat
 
TDJ2O1 - Perspective (3D) Drawings.pdfnn
byeternityisclose988
 
https://www.slideshare.net/slideshow/save_water_presentation_rajkamal_sable p...
byrajkamalsable63stu
 
TM10690 624k John Deere 4WD Loader Operation Test Manual
byabjekGoogle
 
GMTC-0403-Q1-FPF.pptxJSHFHBDJMJSFAFARDHNJ
byDarylWayneObligado
 
Premium BMW Body and Trim Restoration for a Flawless Finish
byUltimate Bimmer Service
 
How & Where can I buy Telegram Accounts in 2025-2026.docx
bygolam mosabber
 
1508902360-Mann_9e_PPT_Ch05.pptx ihiuuiuiu
bymuhammadaqeelabbas211
 
T3 & S2 John Deere 624K 4WD Loader Engine 6068HDW79 Technical Manual 1DW624K.pdf
byabjekGoogle
 
Smart Dusting Tips for Cleaner Homes
byHeera Yadav
 
MT range from MANITOU telescopic handlers
byssuser757710
 
Y8 B1, C1 and P1 Revision - WC 27 Oct.pdf
byAmnaHamdani2
 
John Deere 7610 Tractor Operation & Test Manual - TM2030.pdf
byabjekGoogle
 
Android Security Certification in Practice: Lessons from GMS, CTS, and VTS
byCheng Wig
 
Restore Smooth Performance with Professional Land Rover Transmission Care
byGerman Auto Specialist
 
SlideEgg_501498-Ghibli.pptxdsddsdddddddd
byLTun151874
 
John deere 401d tractor repair manual tm1271.pdf
byabjekGoogle
 
NoHo First UMC Good News November 2025.pdf
byNoHo FUMC
 
How to Top Premium Old GitHub Account Online in 2025
bynelag56683
 

unit_3_AAA Wi-Fi Security_WLAN Security_2.pptxfdgf

  • 1.
    AAA Wi-Fi Security WLAN Security- WEP, WPA, WPA-2, radius, CHAP
  • 2.
    Wifi-Security • needed tomanage remote access when users are moving Authentication infrastructure:- • The IEEE 802.1x standard recommends the usage of the RADIUS server (Remote Authentication Dial-In User Server). • Authentication can be conducted by a server located in the visited domain or outside it. • establishes a trust circle, through which an authentication message is supported by multiple servers linked together by security associations. Radio security. • Radio security’s aim is to ensure the confidentiality, integrity and packet signature. • delivered by protocols such as WEP (Wired Equivalent Privacy), TKIP (Temporal Key Integrity Protocol) or CCMP (Counter mode with CBC MAC Protocol) • protocols use keys derived from a master key, after the authentication process.
  • 3.
    Wifi-Security Packet filtering • basedon the packet signature using keys derived from the authentication process • frames that enter the distribution system are safe (no risk of spoofing or disguise). • Filtering systems -access point or portal • destruction of illicit packets • services for QoS (Quality of Service) Access to remote services (roaming) • Access to remote services may be designed generically under the VPN (Virtual Private Network) • For example, implementation of secure inter-domains can be achieved using IPsec or SSL protocols.
  • 4.
    Attacks on wirelessnetworks Passive Attacks:- • an unauthorized person obtains access to a resource without changing its content • Attacks may be passive eavesdropping or traffic analysis Features:- Eavesdropping Traffic analysis
  • 5.
    Attacks on wirelessnetworks Active attacks • making unauthorized changes are made to messages and data flows or files Features:- Masquerade Replay Message modification Denial-of-service TCP attacks Trojan attack Dictionary attacks
  • 6.
    IEEE 802.11 securitymechanisms • The access points used in wireless networks -broadcast data to all stations in their emission range. • a malicious user can enter the area of a network and retrieve information in order to obtain access to the network. • To overcome this problem, a client must establish a relationship, called an association with an access point. • A complete association with an access point requires the client to pass through three states: 1) non-authenticated, non-associated; 2) authenticated, non-associated; 3) authenticated, associated.
  • 8.
    WEP (Wired EquivalentPrivacy) • broadcast on a radio wave • it is necessary to introduce a mechanism to protect communications from malicious eavesdropping • WEP is based on a symmetric cipher RC4 stream and was created to satisfy access control, privacy, authentication and integrity. • WEP is defined as an optional protocol, and the WLAN stations and the access points are not obliged to use it. • mechanisms defined in WEP are also optional • a station can use the authentication mechanism, for example, but not the encryption algorithm, and vice versa.
  • 9.
    WEP (Wired EquivalentPrivacy) I. Access control to control access and not to permit users without authorization access to the medium. has two functions: authentication and authorization. Authentication makes it possible to check the identity of the client who wants to be connected authorization gives him the permission to enter the network. It is possible to be authenticated but not authorized. can be done on both sides of the communication: client and server sides.
  • 10.
    WEP (Wired EquivalentPrivacy) II The SSID • The network identifier or SSID (Service Set ID) is the first mechanism of security offered by WEP for network access control. • The SSID is the name given to a network or domain. • The term “network name” is primarily used at the network configuration. • All stations and all access points belonging to the same network must have the SSID, even if the WLAN stations are in ad hoc mode or in infrastructure mode. • If one or more stations enter a network under the control of an access point, they must provide the SSID to the access point. • WLAN stations can access the network if they have the correct SSID.
  • 11.
    WEP III The ACL(Access Control List) • Some Wi-Fi manufacturers implement the ACL on MAC addresses of the terminals • In this case, an access point performs the combination of a terminal only if the MAC address of the terminal is in its ACL. • MAC address is a unique address of every Wi-Fi or Ethernet card. • According to this address, WLAN stations can be recognized in the network. • ACL is an optional mechanism and can be configured only by the administrator of the access point.
  • 12.
    WEP IV Confidentiality • transmittedframes in wireless networks are protected by encryption • Only the decryption using the proper static WEP key, shared between the terminal and the network, is allowed. • This key is obtained by concatenation of a secret key of 40 or 104 bits and an initialization vector (IV) to 24 bits. It is dynamically changed for each frame. The size of the final key is 64 or 128 bits
  • 13.
    WEP IV Confidentiality • RC4algorithm performs the encryption of data in stream cipher. • RC4 key has a length of 8 and 2,048 bits. • key is placed in a generator of pseudo-random numbers, called RC4 PRNG (Pseudo-Random Number Generator), from RSA Laboratories. • This generator determines a sequence of pseudo- random bytes known as key stream or Ksi. • This series of bytes is used to encrypt a message, or Mi, with a classical Vernam protocol, performing exclusive XOR ( ) between Ksi and Mi. † • The result obtained from the exclusive XOR gives a new value, called Ci, such that:
  • 14.
    WEP V Authentication • Twotypes of authentication procedures are available in WEP: open authentication and shared key authentication, which is a method of challenge/response. • Open authentication is the default process. • It contains no explicit authentication: a terminal can associate with the access point which is broadcasting its SSID and listen to all the data in transit within the BSS. • Shared key authentication provides a better level of security using a sharing key mechanism. The authentication occurs in four steps
  • 15.
    V Authentication 1) Whena WLAN station requires an association with an access point, it sends an authentication request. 2) When the access point receives this frame, it sends to the WLAN station a frame containing a challenge of 128 bits generated by the WEP protocol. 3) The station copies the challenge in an authentication frame and encrypts it with the secret key, then its sends them to the access point. 4) The access point decrypts the message with the help of the secret key and compares it with the sent message. Then, it sends the result of authentication to the WLAN station.
  • 17.
    WEP VI.Data integrity • TheICV is a CRC (Cyclic Redundancy Check) 32-bit based on the block. • To prevent changes to the messages conveyed, the ICV is encrypted with the same key as that used for encryption.
  • 18.
    AAA • Authentication, Authorization,Accounting • Authentication identifies the user requesting access to network services. • Authorization limits the user’s access to permitted services only. • Accounting serves to count the network resources that are consumed by the user.
  • 19.
    AAA • terminal interactswith the access router. • In the case where a terminal connects from a switched network (PSTN, ISDN, GSM), • access router becomes a NAS (Network Access Server) gateway that ensures the connectivity between the switched network and IP network. • Once it is physically connected to the network, the user terminal is authenticated. • only packets belonging to the authentication protocol and addressed to the AAA server are authorized and relayed by the NAS. • Upon a successful authentication, the NAS authorizes other packets coming from the user
  • 20.
    AAA • two portsat the NAS: a controlled port and an uncontrolled port. • During the authentication phase, the traffic - controlled port After user authenticates, - second port. • From the operator’s point of view, the AAA client located on the NAS captures the authentication messages (e.g. EAP) coming from the terminal, encapsulates them into AAA messages, and sends AAA messages to the AAA server. • The AAA server accesses a database that stores all the information relative to the users and necessary for authentication. • AAA server and the terminal share a secret that allows the AAA server to authenticate the user
  • 21.
    AAA • In thecontext of roaming, the AAA architecture defines domains of administration. • Each domain has its AAA server. • A mobile user is registered with his home AAA (AAAH) server of origin and can be authenticated by any visited network or domain through an inter-domain AAA protocol. • This inter-domain authentication is conducted by an AAA broker
  • 22.
    AAA AAA functions for:– the terminal-NAS interface: two protocols are now envisaged for the transport of EAP messages, namely 802.1X and PANA (Protocol for carrying Authentication for Network Access) – the interface between the NAS and the AAA server for intra-domain which is provided by the RADIUS protocol – the interface between AAA servers for inter-domain which is implemented by the Diameter protocol
  • 24.
    Authentication in wirelessnetworks • WPA and WPA2 protocols start with the client authentication RADIUS (Remote Authentication Dial-In User Server) Cisco Access Registrar is a RADIUS (Remote Authentication Dial-In User Service) server that allows multiple dial-in Network Access Server (NAS) devices to share a common authentication, authorization, and accounting database. Access Registrar tasks: • Authentication—determines the identity of users and whether they may be allowed to access the network • Authorization—determines the level of network services available to authenticated users after they are connected • Accounting—keeps track of each user’s network activity • Session and resource management—tracks user sessions and allocates dynamic resources all security information in a single, centralized database
  • 26.
    RADIUS (Remote AuthenticationDial-In User Server) • Access Registrar is based on a client/server model, which supports AAA (authentication, authorization, and accounting). • The client is the Network Access Server (NAS) and the server is Cisco Access Registrar. • The client passes user information on to the RADIUS server and acts on the response it receives. • The server, on the other hand, is responsible for receiving user access requests, authenticating and authorizing users, and returning all of the necessary configuration information the client can then pass on to the user. • The protocol is a simple packet exchange in which the NAS sends a request packet to the Cisco Access Registrar with a name and a password. • Cisco AR looks up the name and password to verify it is correct, determines for which dynamic resources the user is authorized, then returns an accept packet that contains configuration information for the user session
  • 27.
    Packet Exchange BetweenUser, NAS, and RADIUS
  • 28.
  • 29.
  • 30.
    Types of RADIUSMessages • The client/server packet exchange consists primarily of the following types of RADIUS messages: • Access-Request—sent by the client (NAS) requesting access • Access-Reject—sent by the RADIUS server rejecting access • Access-Accept—sent by the RADIUS server allowing access • Access-Challenge—sent by the RADIUS server requesting more information in order to allow • access. The NAS, after communicating with the user, responds with another Access-Request
  • 31.
    Proxying to anLDAP Server for Authentication
  • 32.
    Challenge Handshake AuthenticationProtocol (CHAP) • is a three-way hand-shaking authentication protocol • provides greater security than PAP • password is kept secret; it is never sent online 1. The system sends the user a challenge packet containing a challenge value, usually a few byte 2. The user applies a predefined function that takes the challenge value and the user's own password and creates a result. user sends the result in the response packet to the system
  • 33.
    Challenge Handshake AuthenticationProtocol (CHAP) 3. The system does the same. It applies the same function to the password of the user (known to the system) and the challenge value to create a result. If the result created is the same as the result sent in the response packet, access is granted; otherwise, it is denied.
  • 34.