There are well known attacks to WPA by capturing handshake and running offline hashcracking against it. Also there are tools to exploit vulnerability in WPS to get the PIN. My question is why WPS handshake (if it is called handshake) cannot be captured and the PIN revealed. It seems impossible otherwise obviously someone had done it already.
Asked
Active
Viewed 3,214 times
1 Answers
2
A Diffie-Hellman key exchange occurs before exchanging the sensitive information. Please see https://www.grc.com/sn/sn-338.htm . The relevant part:
"But it absolutely will encrypt the dialogue so that somebody just capturing the packet traffic is unable to, as I said last week, get the data, take it home, and crack the PIN offline. That can't happen because the dialogue is protected by this initial establishment of a secret key which doesn't authenticate, but it does give them privacy."
So cracking the 'handshake' as you call it (it isn't really a handshake), would be much much more complex than just performing a brute-force attack against the PIN, as this 'handshake' is encrypted with strong asymmetric encryption.
Michael
- 5,393
- 2
- 32
- 57
-
So even before PIN exchange they already have shared secret. But then it is vulnerable to man in the middle attacks right ? – user3155036 Jun 02 '14 at 19:56
-
Diffie Hellman is vulnerable to MITM, but not the way you think. It is a bit too complex to explain, but basically the two parties 'create' their public-private keypair on the fly. There is NO shared secret that is exchanged; the shared secret is created. Of course, a MITM could intercept the messages used for this 'creation'. Explanation of Diffie Hellman: https://security.stackexchange.com/questions/58658/diffie-hellman-key-exchange Explanation of Diffie Hellman MITM vulnerability: http://stackoverflow.com/questions/9953187/how-to-exploit-diffie-hellman-to-perform-a-man-in-the-middle-attack – Michael Jun 03 '14 at 08:17
-
1Yes I understand diffie hellman. I mean theoretically you could intercept the dialog between AP and client and make a DH exchange with both parties. But in practice it seems not easy since you cant prevent radio waves reaching other party. With some kind of jammer maybe? Anyways thanks for clearing it for me. – user3155036 Jun 03 '14 at 10:09
-
Ok I understood your comment incorrectly. So what you mean is that you setup a rogue AP, and that you ask clients to connect through a WPS pin. I guess that would be possible, theoretically. I have no references to a practical implementation of that, though. – Michael Jun 03 '14 at 10:27
-
@user3155036 Theoretically it should be possible, but your device must be on during the handshake. Is it realistic? – Smit Johnth Jul 11 '17 at 17:01