IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [psk]

7 questions
3
votes
1 answer

Using PSK between an openssl server and client

I'm trying to create a connection between an openssl server and client on my machine using ECDHE-PSK-AES256-CBC-SHA384 What am I doing wrong with these commands? openssl s_server -cipher ECDHE-PSK-AES256-CBC-SHA384 -nocert -psk 123456 openssl…
Philippe
  • 205
  • 2
  • 6
2
votes
1 answer

Why does EAP-TLS 1.3 not allow for PSK authentication?

EAP-TLS with TLS 1.3 is standardized in RFC 9190. Section 2.1.1 specifies Authentication. The RFC states that PSK authentication shall not be used except for resumption. This is surprising, because TLS 1.3 allows authentication with PSK (and…
Mark Thomas
  • 41
  • 4
2
votes
2 answers

How are PSKs agreed upon by the TLS server and client?

I've read that pre-shared keys (PSKs) are symmetric keys shared in advance among communicating parties but have found no explanation as to how the TLS client and server agree upon the value of the PSK. How is this done?
Michael
  • 23
  • 2
2
votes
1 answer

IPsec with PSK: Can PSK be used for passive eavesdroping?

I use a PSK to connect to an IPsec VPN. Let's say an attacker can gain access to my PSK. He can then impersonate me, that much is clear. But would she also be able to decrypt intercepted traffic? Or at least have an advantage compared to an attacker…
manduca
  • 1,111
  • 7
  • 10
1
vote
3 answers

I don't understand TLS 1.3 allowing PSK

TLS 1.3 removes the use of non-ephemeral Diffie-Hellman, which is great! But it still allows PSK. I'm not as familiar with PSK configuration but wouldn't that mean TLS 1.3 still is allowing the use of some form of non-ephemeral? Or is there a…
HeadphoneHaxZ
  • 13
  • 4
0
votes
1 answer

Is there a point in randomizing my WPA2-Personal SSID (meaning, set a random string in place of the SSID)?

I was looking for ways to make Wi-Fi that uses WPA2-Personal/WPA-PSK secure, and I stumbled in this answer (the second one, from Terrence Koeman): WPA2-PSK (aka WPA2 Personal) basically does the same thing as WPA2-Enterprise from the clients…
re.sole
  • 5
  • 3
0
votes
0 answers

How to identify a unidentified PSK wifi encryption

I have an unidentified PSK encryption in airodump's output (see red square on screenshot) and I would like to get more information about the encryption method used by the network: do you know any tool that would give me more information about the…
John Kravicz
  • 142
  • 7