Quote:
|
also there is no 100% effective way to lock down a wifi no matter what anyone says. The only 100% secure network is an ethernet lan with no outside network access.
|
WEP with properly implemented WPA is
unbroken.
Note that there is a conceptual weakness to offline "dictionary attack"-like hacking, but it would require a database with 2.9010624113146182337306275467414e+39 entries. I don't think you (or any human) has anyway comprehension of how big that number is. Then you would have to scan it looking for a match. Currently, assuming approximately 25 million fields are checked per
second , scanning that database would take more years than the Universe has existed. For example, in a recent analysis my colleagues and I did into a similiar dictionary attack, it worked out that it would take 1,900,000,000 years to scan a dictionary that is 25 orders of
magnitude SMALLER than the one above.
So yeah... I guess you could say that it's not 100% secure. But I doubt you're gonna hack it mate. :-) You dont' seem to undestand the fundamental underlying cryptographic concepts.
Moving on,
Because WEP is still a flawed RC4 based protocol, the 802.11i protocol was developed. This replaces WEP with 128bit AES, in CCM mode (CCM is Counter Mode for confidentiality and CBC-MAC mode for integrity). It also uses an optimized 4-way handshake to establish the PTK (Pairwise Transient Key) and distribute the GTK (Group Transient Key).
If you want more information on 802.11i, and how it prevents WLAN hacking with any tools currently available, then go to
http://csrc.nist.gov/wireless/S10_80...erview-jw1.pdf - The Computer Security Resource Centre of the National Institute of Standards and Technology.
802.11i, using AES instead of WEP, is unbroken.
What's the point of all these statistics and references? Basically, for all intents and purposes, it
IS possible to secure a WLAN against hacking.
Mr Mephisto