Portal de Periódicos da CAPES

Fast WEP-Key Recovery Attack Using Only Encrypted IP Packets

2010; Institute of Electronics, Information and Communication Engineers; Volume: E93-A; Issue: 1 Linguagem: Inglês

10.1587/transfun.e93.a.164

1745-1337

Teramura Ryoichi, Yasuo Asakura, Toshihiro Ohigashi, Hidenori Kuwakado, Masakatu Morii,

Network Security and Intrusion Detection

Conventional efficient key recovery attacks against Wired Equivalent Privacy (WEP) require specific initialization vectors or specific packets. Since it takes much time to collect the packets sufficiently, any active attack should be performed. An Intrusion Detection System (IDS), however, will be able to prevent the attack. Since the attack logs are stored at the servers, it is possible to prevent such an attack. This paper proposes an algorithm for recovering a 104-bit WEP key from any IP packets in a realistic environment. This attack needs about 36, 500 packets with a success probability 0.5, and the complexity of our attack is equivalent to about 220 computations of the RC4 key setups. Since our attack is passive, it is difficult for both WEP users and administrators to detect our attack.