Wireless Privacy Protocols ~ WEP detailed

by Brian Rodrigues.

	Tweet
Share	\|

Homepage | Submit your article | Contact | TOS

More articles on wireless and mobile computing

You are here: Categories » Electronics and communication » Wireless and mobile computing

The Wired Equivalent Privacy protocol is incorporated as part of the IEEE 802.11b protocol. Actually, the standard only calls for 40-bit WEP, but almost all vendors offer up to 128-bit WEP.

To secure data, WEP uses the RC4 algorithm to encrypt the packets of information as they are sent out from the access point or wireless network card. This is the same algorithm used in many other Internet applications that require security, such as Secure Sockets Layer (SSL). SSL is the most common protocol used by online stores to encrypt customer information sent over the Internet. This reduces the risk of a hacker sniffing the customer's credit card information off the wire and adds a layer of protection to the transaction process.

RC4 is a secure algorithm, and should remain so for several years to come. However, in this case it is the specific wireless implementation of the RC4 algorithm with respect to the initialization vector that is at fault.

In general, it is difficult to correctly implement strong cryptography. Even if a vendor implements a cipher that is known to be very strong, many times the implementation can weaken the cipher or make it ineffective. Implementation oversights could be as simple as insecure key storage, poor random number generation, or flaws in key generation routines. All of these functions may comprise a cipher without actually being part of the cipher itself. The cipher is at the mercy of these outside functions, and can thus be circumvented or weakened by flaws in those dependencies.

As you will learn, implementation oversights in WEP include a small IV space (IV collisions), large amounts of known plaintext in IP traffic, IV weaknesses, no key exchange/management mechanisms (which leads to the same shared key for all users), very weak packet integrity protection (CRC32), lack of replay protection, and a flawed authentication system. Items not addressed by the 802.11 WEP definitions, such as IV incrementing, also lead to problems with WEP implementations. Most implementations start IV counters at zero upon card initialization, and IV collisions between nodes is very common when users boot in the morning.

Leave a comment or ask a question

Total comments: 0

Disclaimer

The e-articles directory is not responsible for any and all copyright infringements by writers and authors. If you suspect the information contained by this page for any copyright infringements, please contact us to investigate the issue

RFID Tags: What They are, how they are used and Why You Need a RFID Consultant - RFID Tags provide the solutions to Tracking, Identification, Security and Authentication problems. RFID tags rely on radio frequency identification technology to make i (more...)

HOW WIRELESS CAN CHANGE THE WORLD - The growing consensus is that in the New Economy access to knowledge is critical for economic success. Unfortunately the economic power of the Internet is not equally distributed. Recent Internet (more...)

History of voice Communications - Voice communication became possible when Alexander Graham Bell invented the telephone on March 10, 1876. His experiments with his assistant Thomas Watson finally proved successful when (more...)

PDA and Pocket PC Technologies - Wireless devices are not always cellular phones. In fact, they do not even need voice capabilities. Does you home PC have a telephone receiver hanging on it? Of course not: The computer’s p (more...)

WIRELESS EFFICIENCY - As we mentioned earlier, humans have always sought to communicate efficiently. Who wants to endlessly repeat something or have to deal with not being understood? The most successful persons throu (more...)

Wireless Antennas - Security-wise, antennas and amplifiers give an enormous edge to both the skillful attacker and defender. From the attacker's perspective, antennas give distance (resulting in physical stealth), (more...)

Wireless Internet - Early attempts at wireless data transmission evolved around proprietary technologies. Usually, the cost to deploy such networks limited their use to that of large companies. The services offered (more...)

WiMAX: The Upcoming Wireless Technology - Open up New ways to minimize the distances between wireless networks WiMAX is the abbreviation of Worldwide Interoperability for Microwave Access. This new wireless technol (more...)

Mobile phone users outnumber landline users - I am not a tech enthusiast, still when my friend asked me suggestions to buy a new mobile phone; I went online to search for new mobile phone models. To my surprise, my search just went on and on (more...)

Proprietary Networks - ARDIS (DATATAC) Advanced Radio Data Information Services (Ardis) sometimes referred to as the DataTAC network, is a two-way radio service that is based on Motorola’s RD-LAP (more...)

free content

Copyright © 2006 - 2012 e-articles.info.
The texts, articles and tutorials in the directory are property of their respective owners and authors.