Search
WPA3 Security Enhancements
Posted by Hemant Chaskar on Apr 12, 2018
WPA3 Security Image

The current standard for security over WiFi links is WPA2. WiFi Alliance recently announced plans to introduce WPA3 for improvements to WiFi security. While no technical details on WPA3 have been announced, there are clues in the announcement and in the technical literature, to what WPA3 may contain. This blog reviews security protocols, namely OWE and Dragonfly, that are believed to be introduced in WPA3.

Recent Posts

Posts by Topic

see all
free-on-demand-webinars.png
Cognitive WiFi Cube
Mojo 8.5.1 adds Application Dashboard to Cognitive WiFi
Posted by Robin Jellum on Feb 8, 2018

Mojo continues to launch new features and enhancements at a furious pace. The 8.5.1 Mojo Wireless Manager release contains many customer requested features and network operating system optimizations that improve the WLAN experience and performance. The headline of this release is the addition of the Application Dashboard to the Cognitive WiFi toolbox. Leveraging the power of the cloud, machine learning, and AP intelligence, voice and video conferencing applications are analyzed in real time to evaluate the quality of users’ experiences.

DT_walnutbridge_21_677x380_FitToBoxSmallDimension_Center.jpg
I fell in love with Chattanooga 
Posted by Lisa Garvey on Jan 22, 2018

Was it the seriously good chicken-fried steak at the all-night CityCafe after 12 hours of delayed ice-storm travel? (Just me and the nice cops at 4am.)  Was it being featured on the local ABC news broadcast because I was there to judge the Alexathon? Was it the abundance of great locally-brewed IPAs, or the number of friendly people who smiled and said “hi,” just walking down the street? Or maybe the fact that almost every restaurant serves fried pickles?

Happy New Year!  No Resolutions Required
Posted by Lisa Garvey on Jan 3, 2018

For the past several days, I’ve been inundated with promotional emails telling me how to get the new year off to a good start: lose weight, exercise, get better sleep, clear out my closet, increase my credit rating. (And, since I live in California, I can’t even drive to the grocery store without passing a billboard promising that recreational weed will help me achieve all of the above. Frankly, I don’t think it can help with my credit score.) 

OHM-Advisors_Case-Study_Marysville-STEM_Carousel_Technology-Lab-517318-edited.jpg
The Not-So-Fast Times at Ridgemont High
Posted by Louise Peter on Dec 19, 2017

Many of us recall the scene from Fast Times at Ridgemont High when Jeff Spicoli, played by Sean Penn, gets the munchies and orders pizza to be delivered to Mr. Hand’s classroom. If this happened today, Spicoli would have ordered pizza from his iPhone without leaving his seat. And Spicoli’s phone? It would be connected to the school’s WiFi network. And with the growing number of student and school issued devices accessing the WiFi network, WiFi performance would be… well, less than Greased Lighting (but that’s for another blog).

Securing K-12 WiFi - A Scary Movie Blog
Posted by Louise Peter on Oct 31, 2017

It is a classic urban legend horror scene - a young woman is home alone (she is usually a babysitter). She receives creepy phone calls asking "Have you checked the kids?" The babysitter calls the police and the police set up watch outside the house to keep the babysitter safe. The police trace the phone calls and to their horror, they discover that the calls are not coming from another location, but they are coming from inside the house.

About One CVE at the Tail End of KRACK: 13088
Posted by Hemant Chaskar on Oct 27, 2017

In my last video blog on KRACK attack, I explained the technical details of workings and countermeasures for 9 out of 10 CVEs. The one I did not discuss in detail was CVE-2017-13088. At the time there wasn't enough information available on it and though it looked like the twin of CVE-2017-13087, due to differences between how group keys are distributed in MFP mode versus non-MFP mode, it required separate consideration.  After receiving more details from the researcher (@vanhoefm), I am prepared to share  information about CVE-2017-13088 and the appropriate countermeasures.

Happy teacher using laptop with student at the elementary school.jpeg
A+ WiFi on the Big Days and Every Day
Posted by Jeff Olson on Oct 24, 2017

Johnny is excited - well, not really - because tomorrow is state-wide, academic-testing day at his school. For weeks now, his teachers have told him just how important this day is for him and his school. Even his parents were instructed on how they can help prepare Johnny for the big day: ensure he gets enough sleep, has a quality breakfast, and arrives to school on-time. Johnny isn’t thrilled by this extra attention.

WPA2 Vulnerability.png
WPA2 Key Reinstallation Vulnerabilities (KRACK) Explained
Posted by Hemant Chaskar on Oct 16, 2017

Researchers from the University of Leuven (@vanhoefm and team) have discovered flaws in WPA2 implementation in clients and APs. These flaws create vulnerabilities for replay and decryption attacks on packets transferred over WiFi links. They have named them KRACKs (Key Reinstallation AttaCKs). Both 802.1x (EAP) and PSK (password) based networks are affected. These vulnerabilities have been cataloged under 10 CVEs. In the series of videos below, I explain these CVEs in detail with Vivek Ramachandran, Founder and CEO of Pentester Academy.

Mojo Security-005909-edited.png
Is your Business Wireless Network Secure?
Posted by Jeff Olson on Oct 10, 2017

We’ve Got Your Back.

Security is top of mind for IT teams, business leaders, and the general public. News of attacks, ransomware, and data breaches has become commonplace; most recently Equifax and Yahoo. Have you stopped to ask yourself: Is my WLAN secure? Have I done all that I can to ensure is it secure?