ALERT: WPA-TKIP isn't secure - use WPA2 instead

- J
- John Navas
  
  Contact options for registered users
posted
12 years ago

Sat, May 21, 2011 1:59 PM

SUMMARY:

WPA-PSK is vulnerable to offline attack. WPA-TKIP has been cracked.

TO AVOID THESE PROBLEMS:

USE WPA-AES or WPA2 instead of WPA-TKIP (or WEP)

USE A PASSPHRASE WITH MORE THAN 20 CHARACTERS. Examples: BAD: "vintage wine" GOOD: "floor hiking dirt ocean" (pick your own words, even longer is better) FOR HIGH SECURITY, USE MORE THAN 32 CHARACTERS.

BACKGROUND:

Weakness in Passphrase Choice in WPA Interface

Practical attacks against WEP and WPA

A Practical Message Falsication Attack on WPA

New attack cracks common Wi-Fi encryption in a minute

Passphrase Flaw Exposed in WPA Wireless Security

Cracking Wi-Fi Protected Access (WPA)

Cracking WEP and WPA Wireless Networks

Loading thread data ...

- D
- Dr Who
  
  Contact options for registered users
Vote on answer
posted
12 years ago

Sat, Jun 4, 2011 5:22 AM

Why are you telling people to use dictionary based words rather than a random character string?

A random character string over 25 characters long is basically uncrackable on a home PC.

- S
- Shadow
  
  Contact options for registered users
Vote on answer
posted
12 years ago

Sat, Jun 4, 2011 2:00 PM

character string?

And very forgettable .... I put an punctuation mark every now and then in my passphrase to make it harder to crack. :)

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.