Tkip Attack

The document discusses a vulnerability in the TKIP encryption protocol used in WPA wireless security. It describes how an attacker can exploit a weakness in the message integrity check (MIC) to decrypt packets and inject arbitrary packets by manipulating the integrity check value (ICV). The attack allows decrypting packets up to 68 bytes and targeting other devices on the network. Potential countermeasures are proposed like disabling QoS, frequent key rotation, or patching devices to detect and prevent the attack. The goal is to develop a patch to automatically detect and block the TKIP ICV attack.

Uploaded by

amriksingh24

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

218 views17 pages

Tkip Attack

Uploaded by

amriksingh24

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 17

TKIP WPA

ATTACK
09CS6048 Maj A S Sidhu
Project Guide
Prof A K Majumdar
PREVIEW
 WHY TKIP ATTACK?
 UNDERSTANDING TKIP
 TKIP EXPLOIT
 ATTACK TOOL
 PROPOSED COUNTERMEASURES
 PROPOSED FINAL SOLUTION
WHY TKIP ATTACK?
 WEP DECLARED AS VULNERABLE
 TKIP (PART OF WPA) IN VOGUE SINCE 2003
 BEING THOUGHT OF AS NON VULNERABLE
 NO MAJOR ATTACKS
 FIRST CONSIDERABLE ATTACK ON TKIP
 NO SOLUTION PROPOSED YET
UNDERSTANDING TKIP
WPA WAS INCORPORATED IN A MANNER THAT IT
CAN BE USED IN DEVICES USING WEP WITH ONLY A
SOFTWARE/ FIRMWARE UPGRADE
VULNERABILITIES IN WEP
 FLAWED IMPLEMENTATION OF IVs
 SHORT IV ( 24 BIT)
 IVs REPEATED (STATIC KEY)
 VULNERABILITY IN KEY SCHEDULING
WPA
 STANDARD BASED, INTEROPERABLE SECURITY
ENHANCEMENTS THAT STRONGLY INCREASE THE LEVEL OF
DATA PROTECTION AND ACCESS CONTROL FOR EXISTING
AND FUTURE WIRELESS LAN SYSTEM.
 USER AUTHENTICATION
 802.1X
 EAP
 TKIP (TEMPORAL KEY INTEGRITY PROTOCOL) ENCRYPTION
 RC4, DYNAMIC ENCRYPTION KEYS (SESSION BASED)
 48 BIT IV
 PER PACKET KEY MIXING FUNCTION
 FIXES ALL ISSUES FOUND FROM WEP
 USES MESSAGE INTEGRITY CODE (MIC)
 ENSURES DATA INTEGRITY
TKIP FEATURES
 IMPLEMENTS A KEY MIXING FUNCTION THAT
COMBINES THE SECRET ROOT KEY WITH THE
INITIALIZATION VECTOR BEFORE PASSING IT TO
THE RC4 INITIALIZATION.
 IMPLEMENTS A SEQUENCE COUNTER TO
PROTECT AGAINST REPLAY ATTACKS.
 IMPLEMENTS A 64-BIT MESSAGE INTEGRITY
CHECK NAMED MICHAEL
 PROVIDES A REKEYING MECHANISM
 ENSURES THAT EVERY DATA PACKET IS SENT WITH
A UNIQUE ENCRYPTION KEY.
TKIP EXPLOIT
TKIP DATA FRAME

PLAIN ENCRYPTED

MAC
IV/ TSC DATA MIC ICV
HEADER
TKIP ENCRYPTION/ DECRYPTION
E PLAINTEXT TSC+ D
PACKET(P) ENCRYPTED
N E
CALCULATE P+MIC+ICV
C MIC C
R R
P + MIC CHECK DROP
Y TSC
Y
CALCULATE
P ICV ENCRYPTION P
VALID KEY
T P + MIC CALCULATION T
I +ICV I
GET NEXT
O TSC DECRYPT O
DATA
N N
ENCRYPTION CHECK
KEY ICV DROP
P CALCULATION P
R VALID R
O ENCRYPT TSC+ CHECK TRANSMIT O
ENCRYPTED MIC ERROR
C P+MIC +ICV C
P+MIC+ICV VALID
E E
S PROCESS DROP S
S PACKET S
THEORY BEHIND EXPLOIT
 ICV FAILURE GENERATES NO NETWORK
ACTIVITY
 MIC FAILURE CAUSES THE CLIENT TO GENERATE
A NOTICE THE ATTACKER CAN OBSERVE
 IF MIC FAILURE OBSERVED, ICV PASSED!
 TAKE A PACKET, CHOP LAST BYTE, GUESS FIX
AND TX UNTIL MIC FAILURE OBSERVED
 WAIT 60 SECONDS TO NOT TRIGGER
COUNTERMEASURES
 REPEAT FOR NEXT-TO-LAST BYTE
TKIP ICV ATTACK

Attacker waits
3. Client 4. A MIC failure 60 seconds to
2. Attacker message is sent to avoid MIC
1. Attacker receives
removes last AP to coordinate countermeasu
captures frame, most
payload byte, Michael res, then
TKIP have ICV
invalidating Countermeasures. repeats
encrypted failures and
ICV and MIC. Though encrypted, process with
packet are attacker can 66 byte
Attempts to fix
that dropped. observe this frame Packet.
ICV with guess0
looks like One passes to identify valid Continues
and sends to
ARP ICV, but ICV, revealing one until all packet
station.
fails MIC. byte of plaintext. plaintext is
known.
IMPACT OF TKIP EXPLOIT
 FIRST AND FOREMOST, IT IS NOT A KEY
RECOVERY EXPLOIT.
 IT ONLY WORKS IF CLIENT USES QoS FEATURE
OF 802.11e/WMM.
 IT IS SLOW. THERE HAS TO BE LEAD TIME OF
ABOUT 12 MINUTES BEFORE ANY PACKET III.
INJECTION CAN BE DONE. THEREAFTER, 7-15
PACKETS CAN BE INJECTED EVERY 4 MINUTES
 THE INJECTED PACKETS HAVE TO BE VERY
SMALL, SAY, LESS THAN 100 BYTES.
 PACKET INJECTION IN AP IS NOT POSSIBLE.
MICHAEL WEAKNESS
 MICHAEL IS INVERTIBLE; YOU CAN DETERMINE
THE KEY FROM PLAINTEXT + MIC
 ATTACKER DECRYPTS ARP, KNOWS MICHAEL
KEY AND CAN CRAFT ANY PACKET UP TO 68
BYTES
 ATTACKER CAN USE OTHER QOS QUEUES
WHERE ATTACKED
 TSC IS LOWER TO INJECT ARBITRARY PACKETS
INTO NETWORK (CAN TARGET ANY
DESTINATION OR PROTOCOL)
ATTACK TOOL
 tkiptun-ng
 ATTACK TOOL IN Aircrack-ng SOURCE
REPOSITORY
 INCOMPLETE, DOESN’T WORK IN CURRENT
FORM
 LIKELY TO IMPLEMENT ATTACK DESCRIBED,
EXTRACTING PLAINTEXT, INJECTING NEW
PACKETS
PROPOSED COUNTERMEASURES
 USE OF AES – CCMP ENCRYPTION
 TKIP KEY ROTATION.
 BROADCAST KEYS CAN ALSO BE
PERIODICALLY ROTATED.
 FREQUENT KEY ROTATION
 DISABLE QoS IF NOT REQUIRED
PROPOSED FINAL SOLUTION
TO DEVELOP A PATCH WHICH CAN BE USED
TO AUTOMATICALLY DETECT AND PREVENT
TKIP ICV ATTACK AND THEREBY NULLIFYING
THE EFFECT OF THE VULNERABILITY IN TKIP IN
ITS PRESENT FORM AND REDUCE FURTHER
EXPLOITATION OF THE VULNERABILITY FOR
FORMING ATTACKS.

PMKID Attack
100% (1)
PMKID Attack
21 pages
Wireless Security
No ratings yet
Wireless Security
45 pages
WPA Report Excerpt
No ratings yet
WPA Report Excerpt
3 pages
WPA2 Hole196 Vulnerability: Exploits and Remediation Strategies
No ratings yet
WPA2 Hole196 Vulnerability: Exploits and Remediation Strategies
7 pages
Known Wireless Attacks
No ratings yet
Known Wireless Attacks
5 pages
Week 09
No ratings yet
Week 09
39 pages
A Proposed Model For Enhanced Security A
No ratings yet
A Proposed Model For Enhanced Security A
7 pages
20-Security Issues in Wireless Networks-27-Apr-2021Material I 27-Apr-2021 Wireless Networ
No ratings yet
20-Security Issues in Wireless Networks-27-Apr-2021Material I 27-Apr-2021 Wireless Networ
46 pages
Network Security - Kerberos
No ratings yet
Network Security - Kerberos
15 pages
Wpa/Wpa2 Tkip Exploit: Tip of The Iceberg?: A Whitepaper by Airtight Networks, Inc
No ratings yet
Wpa/Wpa2 Tkip Exploit: Tip of The Iceberg?: A Whitepaper by Airtight Networks, Inc
7 pages
5 Network Security - RTD
No ratings yet
5 Network Security - RTD
43 pages
WiFi Security
No ratings yet
WiFi Security
59 pages
"Hole196": MD Sohail Ahmad
No ratings yet
"Hole196": MD Sohail Ahmad
36 pages
IJCER (WWW - Ijceronline.com) International Journal of Computational Engineering Research
No ratings yet
IJCER (WWW - Ijceronline.com) International Journal of Computational Engineering Research
5 pages
Improving The More Security in Data Transmission by Using Dynamic Key and Router Updating Techniques
No ratings yet
Improving The More Security in Data Transmission by Using Dynamic Key and Router Updating Techniques
8 pages
Confidentiality Using Conventional Encryption
100% (1)
Confidentiality Using Conventional Encryption
3 pages
CS687 - Security Threats and Attack Verctors - Winter 2024
No ratings yet
CS687 - Security Threats and Attack Verctors - Winter 2024
199 pages
Eu 19 Schepers Practical Side Channel Attacks Against WPA TKIP WP
No ratings yet
Eu 19 Schepers Practical Side Channel Attacks Against WPA TKIP WP
21 pages
Vanhoef 2013
No ratings yet
Vanhoef 2013
9 pages
Wireless LAN Security II: WEP Attacks, WPA and WPA2
No ratings yet
Wireless LAN Security II: WEP Attacks, WPA and WPA2
36 pages
1.1 Network Hacking - Gaining Access PDF
No ratings yet
1.1 Network Hacking - Gaining Access PDF
30 pages
Cwna Security Notes
No ratings yet
Cwna Security Notes
12 pages
The RSA Algorithm
No ratings yet
The RSA Algorithm
31 pages
Resumen 4 y 5 Ingles
No ratings yet
Resumen 4 y 5 Ingles
10 pages
Lec 12
No ratings yet
Lec 12
34 pages
Unit3 CS8792 CNS Notes PEC
No ratings yet
Unit3 CS8792 CNS Notes PEC
26 pages
Chapter 02
No ratings yet
Chapter 02
36 pages
Substitution Techniques
No ratings yet
Substitution Techniques
19 pages
Wireless Security: Why Swiss-Cheese Security Isn't Enough
No ratings yet
Wireless Security: Why Swiss-Cheese Security Isn't Enough
30 pages
Assessment 3: Online Examination Equivalent (Time Constrained Assessment)
No ratings yet
Assessment 3: Online Examination Equivalent (Time Constrained Assessment)
14 pages
A Survey On Wi-Fi Protocols: WPA and WPA2: March 2014
No ratings yet
A Survey On Wi-Fi Protocols: WPA and WPA2: March 2014
17 pages
Hacking Wireless
No ratings yet
Hacking Wireless
7 pages
09 - Wireless
No ratings yet
09 - Wireless
33 pages
WEP Weaknesses: or "What On Earth Does This Protect" Roy Werber
No ratings yet
WEP Weaknesses: or "What On Earth Does This Protect" Roy Werber
21 pages
Brkewn 2006 PDF
No ratings yet
Brkewn 2006 PDF
119 pages
Peterson WirelessSecurity
No ratings yet
Peterson WirelessSecurity
20 pages
Wlan Wpa Crack PDF
No ratings yet
Wlan Wpa Crack PDF
4 pages
Pallavi Priyadarshini Presentation
No ratings yet
Pallavi Priyadarshini Presentation
22 pages
Wlan Security
No ratings yet
Wlan Security
58 pages
Wireless Security WLAN 802.11: Esp. Ing. Fernando Boiero Maestría en Ciber-Seguridad
No ratings yet
Wireless Security WLAN 802.11: Esp. Ing. Fernando Boiero Maestría en Ciber-Seguridad
27 pages
Wireless Assignment 04
No ratings yet
Wireless Assignment 04
12 pages
Chapter 3
No ratings yet
Chapter 3
25 pages
Lec15 Wireless
No ratings yet
Lec15 Wireless
52 pages
Ch06 Wi-Fi Protected Access (WPA) - Sadiq
No ratings yet
Ch06 Wi-Fi Protected Access (WPA) - Sadiq
36 pages
Wep, Wpa Good
No ratings yet
Wep, Wpa Good
29 pages
Wireless v3.0
No ratings yet
Wireless v3.0
18 pages
Lec11 TCP
No ratings yet
Lec11 TCP
45 pages
10-Wireless Network Security
No ratings yet
10-Wireless Network Security
33 pages
Wireless Security
No ratings yet
Wireless Security
30 pages
Wireless Security: Ryan Hayles Jonathan Hawes
No ratings yet
Wireless Security: Ryan Hayles Jonathan Hawes
23 pages
Wpa
No ratings yet
Wpa
39 pages
V18i05 12
No ratings yet
V18i05 12
5 pages
Steganography and Cryptography: Presentation On
100% (1)
Steganography and Cryptography: Presentation On
38 pages
802.11i Overview: Jesse Walker Intel Corporation
No ratings yet
802.11i Overview: Jesse Walker Intel Corporation
75 pages
Implementing Wireless LAN Security
No ratings yet
Implementing Wireless LAN Security
46 pages
Secure Communication: Project I
No ratings yet
Secure Communication: Project I
12 pages
Wi-Fi Security - Bluetooth - Hiperlan
No ratings yet
Wi-Fi Security - Bluetooth - Hiperlan
74 pages
(Hoctap - Suctremmt.com) 14814s15 07
No ratings yet
(Hoctap - Suctremmt.com) 14814s15 07
29 pages
Temporal Key Integrity Protocol (TKIP) : Presented By: Laxmi Nissanka Rao Kim Sang Soo
No ratings yet
Temporal Key Integrity Protocol (TKIP) : Presented By: Laxmi Nissanka Rao Kim Sang Soo
26 pages
Chapter 4
No ratings yet
Chapter 4
45 pages
How To Configure Site-To-Site IKEv2 IPSec VPN Using Pre-Shared Key Authentication
No ratings yet
How To Configure Site-To-Site IKEv2 IPSec VPN Using Pre-Shared Key Authentication
12 pages
CH 4 WEP, WPA, Security
No ratings yet
CH 4 WEP, WPA, Security
39 pages
Asg 10 HPJ
No ratings yet
Asg 10 HPJ
6 pages
Course Outline - Network Security-BESE-3AB-Fall15 - 2 PDF
No ratings yet
Course Outline - Network Security-BESE-3AB-Fall15 - 2 PDF
5 pages
Wireless Assignment 03
No ratings yet
Wireless Assignment 03
10 pages
WINSEM2024-25 CSE3012 ETH AP2024254000278 2025-04-10 Reference-Material-III
No ratings yet
WINSEM2024-25 CSE3012 ETH AP2024254000278 2025-04-10 Reference-Material-III
50 pages
Project
No ratings yet
Project
43 pages
Creating RSA Keys Using OpenSSL
No ratings yet
Creating RSA Keys Using OpenSSL
10 pages
Secret Key Cryptography
No ratings yet
Secret Key Cryptography
32 pages
Final 11
No ratings yet
Final 11
3 pages
Cryptography Network Security
No ratings yet
Cryptography Network Security
32 pages
CH 12
No ratings yet
CH 12
31 pages
PSMPA: Patient Self-Controllable and Multi-Level Privacy-Preserving Cooperative Authentication in Distributed M-Healthcare Cloud Computing System
No ratings yet
PSMPA: Patient Self-Controllable and Multi-Level Privacy-Preserving Cooperative Authentication in Distributed M-Healthcare Cloud Computing System
8 pages
Network Security: Public Key Cryptography
No ratings yet
Network Security: Public Key Cryptography
61 pages
Lab02 - Public-Key Cryptography
No ratings yet
Lab02 - Public-Key Cryptography
9 pages
Wa0001.
No ratings yet
Wa0001.
172 pages
An Application To Cryptography Using Fermat's Theorem
No ratings yet
An Application To Cryptography Using Fermat's Theorem
3 pages
CS Chapter 3-1 2016
No ratings yet
CS Chapter 3-1 2016
58 pages
Encryption and Decryption - 1
No ratings yet
Encryption and Decryption - 1
14 pages
Server Security Audit Report FOR: Baramati Agro
No ratings yet
Server Security Audit Report FOR: Baramati Agro
9 pages
Mod 2 Notes Crypto
No ratings yet
Mod 2 Notes Crypto
66 pages
Wa0000.
No ratings yet
Wa0000.
9 pages
Cryptography1 Intro PA5
No ratings yet
Cryptography1 Intro PA5
50 pages
cns4 1
No ratings yet
cns4 1
12 pages
Https Duckduckgo Com Q "Cryptool"+aes+histogram+256&norw 1&t Ffab&ia Web
No ratings yet
Https Duckduckgo Com Q "Cryptool"+aes+histogram+256&norw 1&t Ffab&ia Web
6 pages
Optimizing NTRU Using AVX2: Master Thesis Computing Science Cyber Security Specialisation
No ratings yet
Optimizing NTRU Using AVX2: Master Thesis Computing Science Cyber Security Specialisation
58 pages
11 Cryptographic Methods That Marked History - From The Caesar Cipher To Enigma Code and Beyond PDF
No ratings yet
11 Cryptographic Methods That Marked History - From The Caesar Cipher To Enigma Code and Beyond PDF
15 pages
Wolfcrypt FIPS 140-3
No ratings yet
Wolfcrypt FIPS 140-3
1 page
Cryptography Apocalypse: Preparing for the Day When Quantum Computing Breaks Today's Crypto
From Everand
Cryptography Apocalypse: Preparing for the Day When Quantum Computing Breaks Today's Crypto
Roger A. Grimes
No ratings yet
CCNA Exam Focus: Study Guide with Practice Tests
From Everand
CCNA Exam Focus: Study Guide with Practice Tests
SUJAN
No ratings yet

Tkip Attack

Uploaded by

Tkip Attack

Uploaded by

TKIP WPA

You might also like