Wi-Fi has a lot of security vulnerabilities. Unfortunately for Wi-Fi the vulnerabilities and the severity of them became widely known too late. At the time of the famous paper on how to crack a WEP key, early 2001, there were already millions of 802.11 products sold world-wide. At that point, issuing a fix or recalling all products was not feasible. So there are two ways to break the Wi-Fi security.
1. Wired Equivalent Privacy(WEP)
2. Wi-Fi Protected Access(WPA)
WEP has the greatest number of vulnerabilities, WEP is where the main focus is directed. WPA is interesting since it replaces WEP in many circumstances, but is still insecure to a limited extend.
2. Wi-Fi Protected Privacy(WPA):- WPA is a security protocols and certifications program developed by the Wi-Fi alliance to secure wireless computer networks. The few vulnerabilities inherent in WPA are demonstrated.
WPA provides additional security by:-
- Requiring authentication using 802.1X
- Requiring re-keying using TKIP
- Augmenting the ICV (Integrity Check Value) with a MIC (Message Integrity Check), to protect the header as well as the payload
- Implementing a frame counter to discourage replay attacks