[196309] in North American Network Operators' Group
Gonna be a long day for anybody with CPE that does WPA2..
daemon@ATHENA.MIT.EDU (valdis.kletnieks@vt.edu)
Tue Oct 17 05:28:03 2017
X-Original-To: nanog@nanog.org
From: valdis.kletnieks@vt.edu
To: nanog@nanog.org
Date: Mon, 16 Oct 2017 03:38:19 -0400
Errors-To: nanog-bounces@nanog.org
--==_Exmh_1508139499_176607P
Content-Type: text/plain; charset=us-ascii
Looks like WPA2 may have just become the new WEP.
And it looks like we're all going to be reflashing a lot of devices.
"The proof-of-concept exploit is called KRACK, short for Key Reinstallation
Attacks. The research has been a closely guarded secret for weeks ahead of a
coordinated disclosure that's scheduled for 8 a.m. Monday, east coast time. An
advisory the US CERT recently distributed to about 100 organizations described
the research this way:
"US-CERT has become aware of several key management vulnerabilities in the
4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The
impact of exploiting these vulnerabilities includes decryption, packet replay,
TCP connection hijacking, HTTP content injection, and others. Note that as
protocol-level issues, most or all correct implementations of the standard will
be affected. The CERT/CC and the reporting researcher KU Leuven, will be
publicly disclosing these vulnerabilities on 16 October 2017."
https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/
--==_Exmh_1508139499_176607P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Comment: Exmh version 2.8.0 04/21/2017
iQEVAwUBWeRh640DS38y7CIcAQJj4Qf7BBcm9uNnqKDjKo6sOJGiWoQr46kyhURV
IB+CIHKjIuogK8afZVbNiTW92yv+ILje3knInrQKTmCHBqaGsXdnMhpsoBzY1w0o
s95z4k/PUSNqC8GQ0zNLfYCyy43vdd4sGJqQeADprellGrHEDJd2VvLszsH/uebt
xImeJFeP8vSl9VZvMlOyK1F6tRI+jE6XSgQ4YucUDU3f6kQGTdecjVPlp3eIcaKp
23VI4VH250eI2AnD0cirUrhN/WvW6Fpdhm81I6lYgc+s5r8AjWVaDTAOdKC4Nr0T
53vjk1O/dW6OHQ2lPMyKoaCFZoOJC4kBhSKY8aPDI3YnAMr5mlP/Yw==
=PXhx
-----END PGP SIGNATURE-----
--==_Exmh_1508139499_176607P--
