Search
WPA2 Key Reinstallation Vulnerabilities (KRACK) Explained
Posted by Hemant Chaskar on Oct 16, 2017
WPA2 Vulnerability.png

Researchers from the University of Leuven (@vanhoefm and team) have discovered flaws in WPA2 implementation in clients and APs. These flaws create vulnerabilities for replay and decryption attacks on packets transferred over WiFi links. They have named them KRACKs (Key Reinstallation AttaCKs). Both 802.1x (EAP) and PSK (password) based networks are affected. These vulnerabilities have been cataloged under 10 CVEs. In the series of videos below, I explain these CVEs in detail with Vivek Ramachandran, Founder and CEO of Pentester Academy.

Posts by Topic

see all
free-on-demand-webinars.png
WPA2 Vulnerability.png
WPA2 Key Reinstallation Vulnerabilities (KRACK) Explained
Posted by Hemant Chaskar on Oct 16, 2017

Researchers from the University of Leuven (@vanhoefm and team) have discovered flaws in WPA2 implementation in clients and APs. These flaws create vulnerabilities for replay and decryption attacks on packets transferred over WiFi links. They have named them KRACKs (Key Reinstallation AttaCKs). Both 802.1x (EAP) and PSK (password) based networks are affected. These vulnerabilities have been cataloged under 10 CVEs. In the series of videos below, I explain these CVEs in detail with Vivek Ramachandran, Founder and CEO of Pentester Academy.

Mojo Security-005909-edited.png
Is your Business Wireless Network Secure?
Posted by Jeff Olson on Oct 10, 2017

We’ve Got Your Back.

Security is top of mind for IT teams, business leaders, and the general public. News of attacks, ransomware, and data breaches has become commonplace; most recently Equifax and Yahoo. Have you stopped to ask yourself: Is my WLAN secure? Have I done all that I can to ensure is it secure? 

Do the Right Thing-184012-edited.png
Fanning the Flames of Rebellion with Honor
Posted by Rick Wilmer on Sep 14, 2017

Witnessing ethical train wreck after train wreck in Silicon Valley, it’s easy to conclude that the quest for success at all costs is a recent phenomenon and one limited to startups.

Auto Packet Capture, Where Have You Been All My Life?
Posted by Robert Ferruolo (Dr. RF) on Aug 8, 2017

You can tell how long someone has been troubleshooting networks by the length of their arms. Orangutans like me have been doing it a long, long time.  I started with a sewing machine sized Network General luggable that I carried around the world. Now I have to stand up very straight  to keep my knuckles from dragging on the ground.

Mojo’s Cognitive WiFi platform - Aware, saves network engineers from having to have shirts specially made because it includes Auto Packet Capture.

IDC_Corporate_Logo-1.jpg
Accelerate the Digital Enterprise with a Cognitively-Enabled WLAN
Posted by Nolan Greene, Sr. Research Analyst, IDC on Jun 12, 2017

What were once revolutionary words when talking about enterprise WLAN – monitoring, visibility, single-pane-of-glass management – now sound conventional to the ears of network managers. Today, for many, the features those words describe have evolved into what is now known as the “cloud console.”

As WiFi networks have moved from merely supporting the business to serving as its backbone, WLAN management must evolve as well. Yesterday's security, scalability, and remediation are inadequate for the digitally transformed enterprise in which WiFi is the conduit to customers, suppliers, and mission-critical business applications.

Toward a Vision of a Smart Classroom
Posted by Dr. Bhaskaran Raman on May 30, 2017

Have you imagined classrooms of the future, how they would look?  Today, despite the smart-device revolution and near-ubiquitous networks, technology is viewed as a distraction in a classroom, and even more so in an exam-room.  Having taught several classes of size 100+ at IIT Bombay, I believe that technology can be a positive enabler in a smart classroom.  Future classrooms should have enhanced interactivity, and enriched communication through the correct use of technology.  Students should be able to collaborate with one another, and teachers should be able to interact better with students, get feedback on their understanding, and also conduct exams easily.  The path to this vision lies in the effective use of the smart-phones already lying in the students’ pockets, to build a smart classroom.

We have conceptualized several applications in this direction.  The applications below are in different stages of development: some in early prototypes, some well tested and used.

WiFi - A Key Enabler of Digital India
Posted by Kiran Deshpande on May 1, 2017

Recently, I received a ‘Thank You’ letter from IEEE President & CEO for making a contribution to an IEEE fund that helps advance technology for humanity and realize full potential of IEEE. The IEEE President listed three areas of global concern – access to high speed Internet, adequate sanitation and electric power. Today Internet access is indeed as fundamental as having electric power and sanitation. This is reflected in policies across nations worldwide.

For instance, in India, Prime Minister Modi has outlined his vision for every Indian to have high speed access to Internet. Its akin to a Prime Minister laying out the vision for expressways for speedy and hassle free movement of vehicles across the country. A network of good roads and good communication infrastructure are critical to growth and prosperity. Hon. Indian Prime Minister is on the mark putting digitization along with ‘Swaccha Bharat’ as a top national priority.

In an emerging economy like India where wired network infrastructure is limited largely to urban areas, wireless Internet access is an attractive proposition. People love the convenience of wireless access even if the quality of connection is poor. You don't have to be glued to one place as it happens when using a landline phone or a computer connected to an Ethernet cable. Wireless access is ubiquitous as the entire space becomes the medium of communication. Governments around the world have recognized this as a national asset and have sold radio spectrum at a charge. While this creates revenue for governments, it can work against building affordable communication infrastructure. WiFi on the other hand operates in 2.4GHz and 5.0GHz radio spectrums that are unlicensed; one can operate in these frequency ranges without having to pay a license fee. This is very important as telecom operators, Internet service providers can build networking infrastructure using WiFi without having to pay for the spectrum. Coming to my road analogy, one needs a combination of toll roads and non toll roads. Both have their place in creating the infrastructure. In a country like India where sensitivity to pricing is high, WiFi will not only de-congest expensive licensed radio spectrum like 4G LTE but will reduce the cost significantly.

Smart cities and public hotspots are among the best known use cases of WiFi. However, many other innovative ways exist. For instance, top national colleges like IITs, NITs, IIITs and IIMs want WiFi across their campuses and spend considerable time and effort putting together vendors to look for this technology. There is a very good chance that requirements are largely the same for all of them and hence these need not be handled individually. A massively scalable WiFi Management Console that can manage WiFi at say top 100 national universities with a sharable architecture while giving flexibility to each university is feasible. The same approach can be used for smart cities, government departments and even Gram Panchayats. A unified approach for critical national digital infrastructure is efficient and possible with the current state of the art in WiFi technology.

Under the Hood of Vendor Unlocked Whitebox APs
Posted by Sudhan Kayarkar on Apr 17, 2017

The data center industry has embraced hardware/software disaggregation promoted by Open Compute Project (OCP) in servers and switches. It brings benefits of cost, flexibility and innovation. OCP has now started a working group called Campus, Branch and Wireless (CBW) to extend disaggregation concept to enterprise networking. For additional details on OCP/CBW whitebox WLAN AP, see this #wlpc 2017 video presentation by @CHemantC. Mojo Networks has been an active contributor to the CBW group. At the recently concluded Open Compute Summit in Santa Clara, we demonstrated open install of Mojo WLAN software on the latest Qualcomm 802.11ac Wave 2 AP platforms manufactured by 3 different hardware vendors (ODMs). 

Getting on the WiFi Freedom Trail with Open AP Standards
Posted by Hemant Chaskar on Feb 10, 2017

In the past, the “open revolution” became ingrained in our lives in the form of open source software. Now it is coming to infrastructure components in the form of hardware-software disaggregation.

What is Hardware-Software Disaggregation?

Disaggregation breaks vendor lock-in between infrastructure hardware and function-enabling software. The approach is to standardize interfaces between the two. Standardization of disaggregation started with OCP (Open Compute Project) founded by Facebook. Now, OCP has vendors across the industry as active participants. OCP’s first focus areas was scale computing. Disaggregation for data center compute and storage turned out to be a big success as many vendors today provide OCP based server technologies.