Upload
chitichitichiti
View
217
Download
0
Embed Size (px)
Citation preview
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
1/71
SIM301-R
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
2/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
3/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
4/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
5/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
6/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
7/71
Name Description Note
IEEE 802.1 Bridging (networking)and Network Management
IEEE 802.2 LLC inactive
IEEE 802.3 Ethernet
IEEE 802.4 Token bus disbanded
IEEE 802.5 Defines the MAC layer for a Token Ring inactiveIEEE 802.6 MANs disbanded
IEEE 802.7 Broadband LAN using Coaxial Cable disbanded
IEEE 802.8 Fiber Optic TAG disbanded
IEEE 802.9 Integrated Services LAN disbanded
IEEE 802.10 Interoperable LAN Security disbanded
IEEE 802.11 a/b/g/n Wireless LAN(WLAN) & Mesh (Wi-Ficertification)
IEEE 802.12 100BaseVG disbanded
IEEE 802.13 unused
IEEE 802.14 Cable modems disbanded
IEEE 802.15 Wireless PAN
IEEE 802.15.1 Bluetoothcertification
IEEE 802.15.2 IEEE 802.15and IEEE 802.11coexistenceIEEE 802.15.3 High-Rate wireless PAN Wireless Personal Area Network
IEEE 802.15.4 Low-Rate wireless PAN(e.g. ZigBee)
IEEE 802.15.5 Mesh networking for WPAN
IEEE 802.16 Broadband Wireless Access(WiMAXcertification)
IEEE 802.16.1 Local Multipoint Distribution Service
IEEE 802.17 Resilient packet ring
IEEE 802.18 Radio Regulatory TAG
IEEE 802.19 Coexistence TAG
IEEE 802.20 Mobile Broadband Wireless Access
IEEE 802.21 Media Independent Handoff
IEEE 802.22 Wireless Regional Area Network
IEEE 802.23 Emergency Services Working Group New (March, 2010)
http://en.wikipedia.org/wiki/IEEE_802.1http://en.wikipedia.org/wiki/Network_bridgehttp://en.wikipedia.org/wiki/IEEE_802.2http://en.wikipedia.org/wiki/Logical_Link_Controlhttp://en.wikipedia.org/wiki/IEEE_802.3http://en.wikipedia.org/wiki/Ethernethttp://en.wikipedia.org/wiki/IEEE_802.4http://en.wikipedia.org/wiki/Token_bushttp://en.wikipedia.org/wiki/IEEE_802.5http://en.wikipedia.org/wiki/Token_Ringhttp://en.wikipedia.org/wiki/IEEE_802.6http://en.wikipedia.org/wiki/Metropolitan_area_networkhttp://en.wikipedia.org/wiki/IEEE_802.7http://en.wikipedia.org/wiki/IEEE_802.8http://en.wikipedia.org/wiki/IEEE_802.9http://en.wikipedia.org/wiki/IEEE_802.10http://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/Wireless_LANhttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/100BaseVGhttp://en.wikipedia.org/wiki/Cable_modemhttp://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.1http://en.wikipedia.org/wiki/Bluetoothhttp://en.wikipedia.org/wiki/IEEE_802.15.2http://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/IEEE_802.15.3http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.4http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/ZigBeehttp://en.wikipedia.org/wiki/IEEE_802.15.5http://en.wikipedia.org/wiki/IEEE_802.16http://en.wikipedia.org/wiki/Broadband_Wireless_Accesshttp://en.wikipedia.org/wiki/WiMAXhttp://en.wikipedia.org/wiki/Local_Multipoint_Distribution_Servicehttp://en.wikipedia.org/wiki/IEEE_802.17http://en.wikipedia.org/wiki/IEEE_802.18http://en.wikipedia.org/wiki/IEEE_802.19http://en.wikipedia.org/wiki/IEEE_802.20http://en.wikipedia.org/wiki/IEEE_802.21http://en.wikipedia.org/wiki/IEEE_802.22http://en.wikipedia.org/w/index.php?title=IEEE_802.23&action=edit&redlink=1http://en.wikipedia.org/w/index.php?title=IEEE_802.23&action=edit&redlink=1http://en.wikipedia.org/wiki/IEEE_802.22http://en.wikipedia.org/wiki/IEEE_802.21http://en.wikipedia.org/wiki/IEEE_802.20http://en.wikipedia.org/wiki/IEEE_802.19http://en.wikipedia.org/wiki/IEEE_802.18http://en.wikipedia.org/wiki/IEEE_802.17http://en.wikipedia.org/wiki/Local_Multipoint_Distribution_Servicehttp://en.wikipedia.org/wiki/WiMAXhttp://en.wikipedia.org/wiki/Broadband_Wireless_Accesshttp://en.wikipedia.org/wiki/IEEE_802.16http://en.wikipedia.org/wiki/IEEE_802.15.5http://en.wikipedia.org/wiki/ZigBeehttp://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.4http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.3http://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/IEEE_802.15.2http://en.wikipedia.org/wiki/Bluetoothhttp://en.wikipedia.org/wiki/IEEE_802.15.1http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/Cable_modemhttp://en.wikipedia.org/wiki/100BaseVGhttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/Wireless_LANhttp://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/IEEE_802.10http://en.wikipedia.org/wiki/IEEE_802.9http://en.wikipedia.org/wiki/IEEE_802.8http://en.wikipedia.org/wiki/IEEE_802.7http://en.wikipedia.org/wiki/Metropolitan_area_networkhttp://en.wikipedia.org/wiki/IEEE_802.6http://en.wikipedia.org/wiki/Token_Ringhttp://en.wikipedia.org/wiki/IEEE_802.5http://en.wikipedia.org/wiki/Token_bushttp://en.wikipedia.org/wiki/IEEE_802.4http://en.wikipedia.org/wiki/Ethernethttp://en.wikipedia.org/wiki/IEEE_802.3http://en.wikipedia.org/wiki/Logical_Link_Controlhttp://en.wikipedia.org/wiki/IEEE_802.2http://en.wikipedia.org/wiki/Network_bridgehttp://en.wikipedia.org/wiki/IEEE_802.18/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
8/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
9/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
10/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
11/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
12/71
SSID
Broadcast inClear Text
SSID
ConnectionRequires Key
AuthenticationProcess
Authorization
ProcessGranted /Denied
ReAc
Security Encryption Wrapper
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
13/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
14/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
15/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
16/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
17/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
18/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
19/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
20/71
http://upload.wikimedia.org/wikipedia/commons/8/80/FasTrak_transponder.jpg8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
21/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
22/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
23/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
24/71
NFC Bluetooth Bluetooth Low Energy
RFID compatible ISO 18000-3 active active
Standardisationbody
ISO/IEC Bluetooth SIG Bluetooth SIG
Network Standard ISO 13157 etc. IEEE 802.15.1 IEEE 802.15.1
Network Type Point-to-point WPAN WPAN
Cryptography not with RFID available available
Range < 0.2 m ~10 m (class 2) ~1 m (class 3)
Frequency 13.56 MHz 2.4-2.5 GHz 2.4-2.5 GHz
Bit rate 424 kbit/s 2.1 Mbit/s ~1.0 Mbit/s
Set-up time < 0.1 s < 6 s < 1 s
Power consumption < 15mA (read) varies with class < 15 mA (xmit)
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
25/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
26/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
27/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
28/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
29/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
30/71
Link
Network
(IP)
Network
(IP)
Transport
(TCP)
Application
(HTTP)
Link
Netwo
(IP)
Transp
(TCP)
Applica
(HTTP)
Link
Network
(IP)
Link
SSL/TLS
IPSec
WEP/WPA/WPA2
IEEE 802.11x security solutions are deployed at the link levelefficiency is very important all traffic will be encrypted
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
31/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
32/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
33/71
Image Source Page: http://krebsonsecurity.com/2010/06/wi-fi-street-sm
http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
34/71
Image Source Page: http://blog.emixt.com/new-wi-fi-standard-promises-blazing-fast-data-spee
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
35/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
36/71
Sourcehttp://www.wpacracker.com/
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
37/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
38/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
39/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
40/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
41/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
42/71
WEP WPA WPA
Encryption RC4 RC4 AES
Key rotation None Dynamic sessionkeys
Dynamikeys
Key distribution Manuallytyped intoeach device
Automaticdistributionavailable
Automadistribuavailabl
Authentication Uses WEP keyas AuthC
Can use 802.1x &EAP
Can useEAP
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
43/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
44/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
45/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
46/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
47/71
Regedit
HKLM\System\CurrentControlSet\Control\Cl{4D36E972-E325-11CE-BFC1-08002BE10318}Lookup for your wireless adapterCreate REG_SZ StringName: NetworkAddress
Value: MAC addressRestart PC
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
48/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
49/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
50/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
51/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
52/71
http://images.google.be/imgres?imgurl=http://upload.wikimedia.org/wikipedia/commons/a/a0/Magnetron1.jpg&imgrefurl=http://www.xtremesystems.org/FORUMS/showthread.php?t=170528&usg=__XldoBwk4R-4jAFkhkbW2V9ufW9Y=&h=549&w=443&sz=28&hl=nl&start=78&um=1&tbnid=J2Ub1uuOECXGGM:&tbnh=133&tbnw=107&prev=/images?q=magnetron&start=63&ndsp=21&um=1&hl=nl&sa=N8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
53/71
Source http://www.pcworld.com/article/222589/dutch_court_rules_wifi_hacking_is_now_legal.html
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
54/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
55/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
56/71
Source Fern )Open Source)Source http://www.pentestit.com/2010/06/04/grimwepa-wep-wpa-passwo
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
57/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
58/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
59/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
60/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
61/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
62/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
63/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
64/71
Lessons from Hackwarts Vol 1: Defense against the Da
Rethinking Cyber Threats: Experts Panel
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
65/71
http://www.microsoft.com/security
http://www.microsoft.com/sdl
http://www.microsoft.com/sir
http://www.microsoft.com/endtoendtrust
http://www.microsoft.com/securityhttp://www.microsoft.com/sdlhttp://www.microsoft.com/sirhttp://www.microsoft.com/endtoendtrusthttp://www.microsoft.com/endtoendtrusthttp://www.microsoft.com/sirhttp://www.microsoft.com/sdlhttp://www.microsoft.com/securityhttp://www.microsoft.com/security8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
66/71
www.microsoft.com/teched www.microsoft.com/le
http://microsoft.com/technethttp://microsoft.com/
http://northamerica.msteched.com
http://www.microsoft.com/techedhttp://www.microsoft.com/learninghttp://microsoft.com/technethttp://microsoft.com/msdnhttp://northamerica.msteched.com/http://northamerica.msteched.com/http://microsoft.com/msdnhttp://microsoft.com/technethttp://www.microsoft.com/learninghttp://www.microsoft.com/teched8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
67/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
68/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
69/71
mailto:[email protected]:[email protected]:[email protected]:[email protected]8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
70/71
8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011
71/71