08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011

8/12/2019 08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011

1/71

SIM301-R


2/71


3/71


4/71


5/71


6/71


7/71

Name Description Note

IEEE 802.1 Bridging (networking)and Network Management

IEEE 802.2 LLC inactive

IEEE 802.3 Ethernet

IEEE 802.4 Token bus disbanded

IEEE 802.5 Defines the MAC layer for a Token Ring inactiveIEEE 802.6 MANs disbanded

IEEE 802.7 Broadband LAN using Coaxial Cable disbanded

IEEE 802.8 Fiber Optic TAG disbanded

IEEE 802.9 Integrated Services LAN disbanded

IEEE 802.10 Interoperable LAN Security disbanded

IEEE 802.11 a/b/g/n Wireless LAN(WLAN) & Mesh (Wi-Ficertification)

IEEE 802.12 100BaseVG disbanded

IEEE 802.13 unused

IEEE 802.14 Cable modems disbanded

IEEE 802.15 Wireless PAN

IEEE 802.15.1 Bluetoothcertification

IEEE 802.15.2 IEEE 802.15and IEEE 802.11coexistenceIEEE 802.15.3 High-Rate wireless PAN Wireless Personal Area Network

IEEE 802.15.4 Low-Rate wireless PAN(e.g. ZigBee)

IEEE 802.15.5 Mesh networking for WPAN

IEEE 802.16 Broadband Wireless Access(WiMAXcertification)

IEEE 802.16.1 Local Multipoint Distribution Service

IEEE 802.17 Resilient packet ring

IEEE 802.18 Radio Regulatory TAG

IEEE 802.19 Coexistence TAG

IEEE 802.20 Mobile Broadband Wireless Access

IEEE 802.21 Media Independent Handoff

IEEE 802.22 Wireless Regional Area Network

IEEE 802.23 Emergency Services Working Group New (March, 2010)
http://en.wikipedia.org/wiki/IEEE_802.1http://en.wikipedia.org/wiki/Network_bridgehttp://en.wikipedia.org/wiki/IEEE_802.2http://en.wikipedia.org/wiki/Logical_Link_Controlhttp://en.wikipedia.org/wiki/IEEE_802.3http://en.wikipedia.org/wiki/Ethernethttp://en.wikipedia.org/wiki/IEEE_802.4http://en.wikipedia.org/wiki/Token_bushttp://en.wikipedia.org/wiki/IEEE_802.5http://en.wikipedia.org/wiki/Token_Ringhttp://en.wikipedia.org/wiki/IEEE_802.6http://en.wikipedia.org/wiki/Metropolitan_area_networkhttp://en.wikipedia.org/wiki/IEEE_802.7http://en.wikipedia.org/wiki/IEEE_802.8http://en.wikipedia.org/wiki/IEEE_802.9http://en.wikipedia.org/wiki/IEEE_802.10http://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/Wireless_LANhttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/100BaseVGhttp://en.wikipedia.org/wiki/Cable_modemhttp://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.1http://en.wikipedia.org/wiki/Bluetoothhttp://en.wikipedia.org/wiki/IEEE_802.15.2http://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/IEEE_802.15.3http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.4http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/ZigBeehttp://en.wikipedia.org/wiki/IEEE_802.15.5http://en.wikipedia.org/wiki/IEEE_802.16http://en.wikipedia.org/wiki/Broadband_Wireless_Accesshttp://en.wikipedia.org/wiki/WiMAXhttp://en.wikipedia.org/wiki/Local_Multipoint_Distribution_Servicehttp://en.wikipedia.org/wiki/IEEE_802.17http://en.wikipedia.org/wiki/IEEE_802.18http://en.wikipedia.org/wiki/IEEE_802.19http://en.wikipedia.org/wiki/IEEE_802.20http://en.wikipedia.org/wiki/IEEE_802.21http://en.wikipedia.org/wiki/IEEE_802.22http://en.wikipedia.org/w/index.php?title=IEEE_802.23&action=edit&redlink=1http://en.wikipedia.org/w/index.php?title=IEEE_802.23&action=edit&redlink=1http://en.wikipedia.org/wiki/IEEE_802.22http://en.wikipedia.org/wiki/IEEE_802.21http://en.wikipedia.org/wiki/IEEE_802.20http://en.wikipedia.org/wiki/IEEE_802.19http://en.wikipedia.org/wiki/IEEE_802.18http://en.wikipedia.org/wiki/IEEE_802.17http://en.wikipedia.org/wiki/Local_Multipoint_Distribution_Servicehttp://en.wikipedia.org/wiki/WiMAXhttp://en.wikipedia.org/wiki/Broadband_Wireless_Accesshttp://en.wikipedia.org/wiki/IEEE_802.16http://en.wikipedia.org/wiki/IEEE_802.15.5http://en.wikipedia.org/wiki/ZigBeehttp://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.4http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15.3http://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/IEEE_802.15.2http://en.wikipedia.org/wiki/Bluetoothhttp://en.wikipedia.org/wiki/IEEE_802.15.1http://en.wikipedia.org/wiki/Wireless_PANhttp://en.wikipedia.org/wiki/IEEE_802.15http://en.wikipedia.org/wiki/Cable_modemhttp://en.wikipedia.org/wiki/100BaseVGhttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/Wi-Fihttp://en.wikipedia.org/wiki/Wireless_LANhttp://en.wikipedia.org/wiki/IEEE_802.11http://en.wikipedia.org/wiki/IEEE_802.10http://en.wikipedia.org/wiki/IEEE_802.9http://en.wikipedia.org/wiki/IEEE_802.8http://en.wikipedia.org/wiki/IEEE_802.7http://en.wikipedia.org/wiki/Metropolitan_area_networkhttp://en.wikipedia.org/wiki/IEEE_802.6http://en.wikipedia.org/wiki/Token_Ringhttp://en.wikipedia.org/wiki/IEEE_802.5http://en.wikipedia.org/wiki/Token_bushttp://en.wikipedia.org/wiki/IEEE_802.4http://en.wikipedia.org/wiki/Ethernethttp://en.wikipedia.org/wiki/IEEE_802.3http://en.wikipedia.org/wiki/Logical_Link_Controlhttp://en.wikipedia.org/wiki/IEEE_802.2http://en.wikipedia.org/wiki/Network_bridgehttp://en.wikipedia.org/wiki/IEEE_802.1


8/71


9/71


10/71


11/71


12/71

SSID

Broadcast inClear Text

SSID

ConnectionRequires Key

AuthenticationProcess

Authorization

ProcessGranted /Denied

ReAc

Security Encryption Wrapper


13/71


14/71


15/71


16/71


17/71


18/71


19/71


20/71
http://upload.wikimedia.org/wikipedia/commons/8/80/FasTrak_transponder.jpg


21/71


22/71


23/71


24/71

NFC Bluetooth Bluetooth Low Energy

RFID compatible ISO 18000-3 active active

Standardisationbody

ISO/IEC Bluetooth SIG Bluetooth SIG

Network Standard ISO 13157 etc. IEEE 802.15.1 IEEE 802.15.1

Network Type Point-to-point WPAN WPAN

Cryptography not with RFID available available

Range < 0.2 m ~10 m (class 2) ~1 m (class 3)

Frequency 13.56 MHz 2.4-2.5 GHz 2.4-2.5 GHz

Bit rate 424 kbit/s 2.1 Mbit/s ~1.0 Mbit/s

Set-up time < 0.1 s < 6 s < 1 s

Power consumption < 15mA (read) varies with class < 15 mA (xmit)


25/71


26/71


27/71


28/71


29/71


30/71

Link

Network

(IP)

Network

(IP)

Transport

(TCP)

Application

(HTTP)

Link

Netwo

(IP)

Transp

(TCP)

Applica

(HTTP)

Link

Network

(IP)

Link

SSL/TLS

IPSec

WEP/WPA/WPA2

IEEE 802.11x security solutions are deployed at the link levelefficiency is very important all traffic will be encrypted


31/71


32/71


33/71

Image Source Page: http://krebsonsecurity.com/2010/06/wi-fi-street-sm
http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/http://krebsonsecurity.com/2010/06/wi-fi-street-smarts-iphone-edition/


34/71

Image Source Page: http://blog.emixt.com/new-wi-fi-standard-promises-blazing-fast-data-spee


35/71


36/71

Sourcehttp://www.wpacracker.com/


37/71


38/71


39/71


40/71


41/71


42/71

WEP WPA WPA

Encryption RC4 RC4 AES

Key rotation None Dynamic sessionkeys

Dynamikeys

Key distribution Manuallytyped intoeach device

Automaticdistributionavailable

Automadistribuavailabl

Authentication Uses WEP keyas AuthC

Can use 802.1x &EAP

Can useEAP


43/71


44/71


45/71


46/71


47/71

Regedit

HKLM\System\CurrentControlSet\Control\Cl{4D36E972-E325-11CE-BFC1-08002BE10318}Lookup for your wireless adapterCreate REG_SZ StringName: NetworkAddress

Value: MAC addressRestart PC


48/71


49/71


50/71


51/71


52/71
http://images.google.be/imgres?imgurl=http://upload.wikimedia.org/wikipedia/commons/a/a0/Magnetron1.jpg&imgrefurl=http://www.xtremesystems.org/FORUMS/showthread.php?t=170528&usg=__XldoBwk4R-4jAFkhkbW2V9ufW9Y=&h=549&w=443&sz=28&hl=nl&start=78&um=1&tbnid=J2Ub1uuOECXGGM:&tbnh=133&tbnw=107&prev=/images?q=magnetron&start=63&ndsp=21&um=1&hl=nl&sa=N


53/71

Source http://www.pcworld.com/article/222589/dutch_court_rules_wifi_hacking_is_now_legal.html


54/71


55/71


56/71

Source Fern )Open Source)Source http://www.pentestit.com/2010/06/04/grimwepa-wep-wpa-passwo


57/71


58/71


59/71


60/71


61/71


62/71


63/71


64/71

Lessons from Hackwarts Vol 1: Defense against the Da

Rethinking Cyber Threats: Experts Panel


65/71

http://www.microsoft.com/security

http://www.microsoft.com/sdl

http://www.microsoft.com/sir

http://www.microsoft.com/endtoendtrust
http://www.microsoft.com/securityhttp://www.microsoft.com/sdlhttp://www.microsoft.com/sirhttp://www.microsoft.com/endtoendtrusthttp://www.microsoft.com/endtoendtrusthttp://www.microsoft.com/sirhttp://www.microsoft.com/sdlhttp://www.microsoft.com/securityhttp://www.microsoft.com/security


66/71

www.microsoft.com/teched www.microsoft.com/le

http://microsoft.com/technethttp://microsoft.com/

http://northamerica.msteched.com
http://www.microsoft.com/techedhttp://www.microsoft.com/learninghttp://microsoft.com/technethttp://microsoft.com/msdnhttp://northamerica.msteched.com/http://northamerica.msteched.com/http://microsoft.com/msdnhttp://microsoft.com/technethttp://www.microsoft.com/learninghttp://www.microsoft.com/teched


67/71


68/71


69/71

[email protected]
mailto:[email protected]:[email protected]:[email protected]:[email protected]


70/71


71/71

Documents

08_SIM301-R Monty WiFion and the Quest for the Holy Grail of Network_2011