I was today rumbling a bit with wireless security, and more specific in creating Fake Access-Points to make Wi-Fi users enter their password on a phishing-page (by using the Fluxion tool).
One of the steps require you to deauthenticate the user(s) in order to capture the handshake. When I launched this deauth-attack the Windows-computers and Android-phones connected to that network were indeed disconnected; however my iPhone connected to the same network was not getting affected at all! It's MAC-address was not even shown in the Xterm Fluxion showed. I retried it with different tools but iPhone was never affected.
So, is iPhone somehow 'secured' against deauth attacks? And why aren't deauth packets authenticated by the Access Point to avoid these deauth attacks are not possible?