Content

  • Page 1 — cracking sounds worse than it is
  • Page 2 — cracking is particularly relevant for some companies
  • Read on a page

    WPA2, DasSicherheitsprotokoll virtually all modern WLAN connections, not secure. It is even basically broken, as researchers have shown KULeuven on Monday. Cracking name your hack, for key reinstall attacks. He has everything EineSicherheitslückeheutzutagebraucht: a name, a logo, eineWebsite and a social media campaign that runs since Sunday evening.

    if ( typeof AdController !== ‘undefined’ !window.Zeit.isMobileView()) { if ( !document.getElementById( ‘iqadtile8’ ) ) { var elem = document.createElement( ‘div’ ); elem.id = ‘iqadtile8’; elem.className = “ad ad-desktop ad-desktop–8 ad-desktop–8-on-article”; elem.setAttribute(‘data-banner-type’, ‘desktop’); elem.setAttribute(‘data-banner-label’, ‘Anzeige’); document.getElementById(‘ad-desktop-8’).parentNode.appendChild(elem); AdController.render(‘iqadtile8’); if ( window.console typeof window.console.info === ‘function’ ) { window.console.info(‘AdController ‘ AdController.VERSION ‘ tile 8 desktop’) } } } if ( typeof AdController !== ‘undefined’ window.Zeit.isMobileView()) { if ( !document.getElementById( ‘iqadtile3’ ) ) { var elem = document.createElement( ‘div’ ); elem.id = ‘iqadtile3’; elem.className = “ad ad-mobile ad-mobile–3 ad-mobile–3-on-article”; elem.setAttribute(‘data-banner-type’, ‘mobile’); document.getElementById(‘ad-mobile-3’).parentNode.appendChild(elem); AdController.render(‘iqadtile3’); if ( window.console typeof window.console.info === ‘function’ ) { window.console.info(‘AdController ‘ AdController.VERSION ‘ tile 3 mobile’) } } }

    But DramatischeInszenierung is deceiving that cracking, despite derfundamentalen vulnerability in encryption protocol, is WPA2 EineAttacke, which only under very special conditions funktioniertund many Internet users will not affect, even if are susceptible to this.

    How attack works

    WPA2 is used to encrypt connections in wireless networks. Virtually all modern routers access log back: Werzu home via a WLAN with smartphone or laptop goes into network, almost always uses WPA2. The encryption is intended to ensure that dassMenschen, which are in wireless range of WLAN, cannot read data of or users. WPA2 was previously alsweitgehend safe, at least as long as you used a correspondingly long undschwer to guessed passwords.

    The technischenDetails of cracking attack are based on fact that in Verschlüsselungein certain numerical value, a so-called Nonce, is used multiple times with same key. A Nonceaber can only be used once. Can of procedure is no longer guaranteed by this error.

    if ( typeof AdController !== ‘undefined’ !window.Zeit.isMobileView()) { if ( !document.getElementById( ‘iqadtile4’ ) ) { var elem = document.createElement( ‘div’ ); elem.id = ‘iqadtile4’; elem.className = “ad ad-desktop ad-desktop–4 ad-desktop–4-on-article”; elem.setAttribute(‘data-banner-type’, ‘desktop’); elem.setAttribute(‘data-banner-label’, ‘Anzeige’); document.getElementById(‘ad-desktop-4’).parentNode.appendChild(elem); AdController.render(‘iqadtile4’); if ( window.console typeof window.console.info === ‘function’ ) { window.console.info(‘AdController ‘ AdController.VERSION ‘ tile 4 desktop’) } } } if ( typeof AdController !== ‘undefined’ window.Zeit.isMobileView()) { if ( !document.getElementById( ‘iqadtile4’ ) ) { var elem = document.createElement( ‘div’ ); elem.id = ‘iqadtile4’; elem.className = “ad ad-mobile ad-mobile–4 ad-mobile–4-on-article”; elem.setAttribute(‘data-banner-type’, ‘mobile’); document.getElementById(‘ad-mobile-4’).parentNode.appendChild(elem); AdController.render(‘iqadtile4’); if ( window.console typeof window.console.info === ‘function’ ) { window.console.info(‘AdController ‘ AdController.VERSION ‘ tile 4 mobile’) } } } Description of cracking © krackattacks.com/screenshot Time online

    Quite praktischbedeutet that an attacker can read data sent over WLAN. In some cases, an attacker can auchmanipulieren data, but that depends on exact settings of network.

    However, in any case, attackers must be in range of WLAN. Because of cracking, operators and users are not suddenly vulnerable to demInternet from everywhere.

    WLAN encryption – wasn’t even something?

    Encryption in WLAN was a problem before. The first corresponding Standardmit named WEPstellte is extremely uncertain. In year 2001 Entstandeine did a whole series of attacks against it. Therefore, it was developed as NachfolgerWPA and later its successor WPA2.

    Unlike WEPkann, current weakness can be remedied without creating a complete neuesProtokoll. With some small changes that will dieKompatibilität to existing devices, you can use WPA2absichern.

    What consequences an attack can have

    Since Krackum is a weakness in WPA2 standard itself, Praktischalle WLAN-enabled devices are affected, from router to Smartphonesund desktop computers to networked devices on internet of things. Therefore, for many systems, next Days software or firmware updates provided by manufacturer, as Wi-Fi Alliance.

    The US-CERT (DasComputer Emergency Readiness Team of USA) has warned companies lautArsTechnicavorab of several possible attacks based on DerSicherheitslücke. Data and connections could be Demnachmitgelesen, manipulated and redirected. The researchers mselves claim that with cracking, credit card data, passwords, chat messages and e-mails could be intercepted.

    But that is not true in many cases. The providers of corresponding Internetdienstegehen generally assume that ir offers are also used in non-unencrypted networks, such as in ÖffentlichenWLANs, which are not encrypted or require a password, but which is identical for all users. Therefore, y have long since tried to insure connections at a different level. At Sichtbarstenist This is case with websites – use of Denverschlüsselten standard HTTPS is now becoming more common. The KlassischeHTTP protocol is secured with TLS encryption protocol. There is a connection at address https://… and AmSchloss-icon in browser’s address bar.