WPA2 vulnerability?

[Kyle McDonald]

has anyone been paying attention to this? could it be as big as it sounds?

https://twitter.com/kennwhite/status/919522184384729089

i guess we will find out tomorrow!

[Julian Oliver]

All a bit mysterious; eager to know how vendor-specific it is. If it truly is a
flaw in the 4x handshake however, bring on the pain of the bite.

--
Julian Oliver
https://julianoliver.com
https://criticalengineering.org
PGP https://julianoliver.com/key.asc
Beware the auto-complete life

[KATSU KATSU]

Sounds eh-spicy

--
You received this message because you are subscribed to the Google Groups "artsec" group.
To unsubscribe from this group and stop receiving emails from it, send an email to artsec+un...@googlegroups.com.
To post to this group, send email to art...@googlegroups.com.
Visit this group at https://groups.google.com/group/artsec.
To view this discussion on the web visit https://groups.google.com/d/msgid/artsec/CAO9UE64J3B9_oTdDO64JdfgQ%2BcRvPLo01pEMKWEQ9BYrCF5WZA%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.

[Kyle McDonald]

A little more info (it is a handshake flaw):

https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/

The full report to appear here on Monday:

https://www.krackattacks.com/

On Sun, Oct 15, 2017 at 8:14 PM, KATSU KATSU <jabbathe...@gmail.com> wrote:

Sounds eh-spicy

On Sun, Oct 15, 2017 at 3:37 PM Kyle McDonald <ky...@kylemcdonald.net> wrote:

has anyone been paying attention to this? could it be as big as it sounds?

https://twitter.com/kennwhite/status/919522184384729089

i guess we will find out tomorrow!

--

You received this message because you are subscribed to the Google Groups "artsec" group.

To unsubscribe from this group and stop receiving emails from it, send an email to artsec+unsubscribe@googlegroups.com.

To post to this group, send email to art...@googlegroups.com.
Visit this group at https://groups.google.com/group/artsec.

To view this discussion on the web visit https://groups.google.com/d/msgid/artsec/CAO9UE64J3B9_oTdDO64JdfgQ%2BcRvPLo01pEMKWEQ9BYrCF5WZA%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.

--

You received this message because you are subscribed to the Google Groups "artsec" group.

To unsubscribe from this group and stop receiving emails from it, send an email to artsec+unsubscribe@googlegroups.com.

To post to this group, send email to art...@googlegroups.com.
Visit this group at https://groups.google.com/group/artsec.

To view this discussion on the web visit https://groups.google.com/d/msgid/artsec/CAJohTxWpr_RhAZ18C7%2Bauqgyt-h1P53zNz6oQyRG-PijPP13jA%40mail.gmail.com.

[Julian Oliver]

..on Sun, Oct 15, 2017 at 11:04:18PM -0700, Kyle McDonald wrote:
> A little more info (it is a handshake flaw):
>
> https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/
>
> The full report to appear here on Monday:
>
> https://www.krackattacks.com/

Cheers Kyle. Looking (tragically) legit. Can't wait for the details!

>
> On Sun, Oct 15, 2017 at 8:14 PM, KATSU KATSU <jabbathe...@gmail.com>
> wrote:
>
> > Sounds eh-spicy
> >
> > On Sun, Oct 15, 2017 at 3:37 PM Kyle McDonald <ky...@kylemcdonald.net>
> > wrote:
> >
> >> has anyone been paying attention to this? could it be as big as it sounds?
> >>
> >> https://twitter.com/kennwhite/status/919522184384729089
> >>
> >> i guess we will find out tomorrow!
> >>
> >> --
> >> You received this message because you are subscribed to the Google Groups
> >> "artsec" group.
> >> To unsubscribe from this group and stop receiving emails from it, send an

> >> email to artsec+un...@googlegroups.com.

> >> To post to this group, send email to art...@googlegroups.com.
> >> Visit this group at https://groups.google.com/group/artsec.
> >> To view this discussion on the web visit https://groups.google.com/d/ms
> >> gid/artsec/CAO9UE64J3B9_oTdDO64JdfgQ%2BcRvPLo01pEMKWEQ9BYrCF
> >> 5WZA%40mail.gmail.com

> >> <https://groups.google.com/d/msgid/artsec/CAO9UE64J3B9_oTdDO64JdfgQ%2BcRvPLo01pEMKWEQ9BYrCF5WZA%40mail.gmail.com?utm_medium=email&utm_source=footer>
> >> .

> >> For more options, visit https://groups.google.com/d/optout.
> >>
> > --
> > You received this message because you are subscribed to the Google Groups
> > "artsec" group.
> > To unsubscribe from this group and stop receiving emails from it, send an

> > email to artsec+un...@googlegroups.com.

> > To post to this group, send email to art...@googlegroups.com.
> > Visit this group at https://groups.google.com/group/artsec.
> > To view this discussion on the web visit https://groups.google.com/d/ms

> > gid/artsec/CAJohTxWpr_RhAZ18C7%2Bauqgyt-h1P53zNz6oQyRG-
> > PijPP13jA%40mail.gmail.com
> > <https://groups.google.com/d/msgid/artsec/CAJohTxWpr_RhAZ18C7%2Bauqgyt-h1P53zNz6oQyRG-PijPP13jA%40mail.gmail.com?utm_medium=email&utm_source=footer>
> > .

> >
> > For more options, visit https://groups.google.com/d/optout.
> >
>
> --
> You received this message because you are subscribed to the Google Groups "artsec" group.

> To unsubscribe from this group and stop receiving emails from it, send an email to artsec+un...@googlegroups.com.

> To post to this group, send email to art...@googlegroups.com.
> Visit this group at https://groups.google.com/group/artsec.

> To view this discussion on the web visit https://groups.google.com/d/msgid/artsec/CAO9UE66hoTa6SiLcWZBvs8LvyP3w%3DOvrXgoVHdaJfORg2O0psQ%40mail.gmail.com.

> For more options, visit https://groups.google.com/d/optout.

--

[analog to digital converter]

Ha spicy. .Yes Sounds super spicy to me! 

And the paper is out here now, discussing it with a friend

https://papers.mathyvanhoef.com/ccs2017.pdf

At BH they also presented downgrade problems (easy/quick to exploit):

https://www.blackhat.com/docs/webcast/08242017-securely-implementing-network2.pdf

And they had a 2016 one as well

https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_vanhoef.pdf.

Anyone know if group keys let you spoof arbitrary IP addresses on a network? or would it be like only local subnet spoofing?

I think probably iOS and Windows are not particularly vulnerable to these newly announced attacks. 

On Mon, Oct 16, 2017 at 9:29 AM, Julian Oliver <jul...@julianoliver.com> wrote:

..on Sun, Oct 15, 2017 at 11:04:18PM -0700, Kyle McDonald wrote:
> A little more info (it is a handshake flaw):
>
> https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/
>
> The full report to appear here on Monday:
>
> https://www.krackattacks.com/

Cheers Kyle. Looking (tragically) legit. Can't wait for the details!

>
> On Sun, Oct 15, 2017 at 8:14 PM, KATSU KATSU <jabbathe...@gmail.com>
> wrote:
>
> > Sounds eh-spicy
> >
> > On Sun, Oct 15, 2017 at 3:37 PM Kyle McDonald <ky...@kylemcdonald.net>
> > wrote:
> >
> >> has anyone been paying attention to this? could it be as big as it sounds?
> >>
> >> https://twitter.com/kennwhite/status/919522184384729089
> >>
> >> i guess we will find out tomorrow!
> >>
> >> --
> >> You received this message because you are subscribed to the Google Groups
> >> "artsec" group.
> >> To unsubscribe from this group and stop receiving emails from it, send an

> >> email to artsec+unsubscribe@googlegroups.com.

> >> To post to this group, send email to art...@googlegroups.com.
> >> Visit this group at https://groups.google.com/group/artsec.
> >> To view this discussion on the web visit https://groups.google.com/d/ms
> >> gid/artsec/CAO9UE64J3B9_oTdDO64JdfgQ%2BcRvPLo01pEMKWEQ9BYrCF
> >> 5WZA%40mail.gmail.com

> >> <https://groups.google.com/d/msgid/artsec/CAO9UE64J3B9_oTdDO64JdfgQ%2BcRvPLo01pEMKWEQ9BYrCF5WZA%40mail.gmail.com?utm_medium=email&utm_source=footer>

> >> .
> >> For more options, visit https://groups.google.com/d/optout.
> >>
> > --
> > You received this message because you are subscribed to the Google Groups
> > "artsec" group.
> > To unsubscribe from this group and stop receiving emails from it, send an

> > email to artsec+unsubscribe@googlegroups.com.

> > To post to this group, send email to art...@googlegroups.com.
> > Visit this group at https://groups.google.com/group/artsec.
> > To view this discussion on the web visit https://groups.google.com/d/ms
> > gid/artsec/CAJohTxWpr_RhAZ18C7%2Bauqgyt-h1P53zNz6oQyRG-
> > PijPP13jA%40mail.gmail.com

> > <https://groups.google.com/d/msgid/artsec/CAJohTxWpr_RhAZ18C7%2Bauqgyt-h1P53zNz6oQyRG-PijPP13jA%40mail.gmail.com?utm_medium=email&utm_source=footer>

> > .
> >
> > For more options, visit https://groups.google.com/d/optout.
> >
>
> --
> You received this message because you are subscribed to the Google Groups "artsec" group.

> To unsubscribe from this group and stop receiving emails from it, send an email to artsec+unsubscribe@googlegroups.com.

> To post to this group, send email to art...@googlegroups.com.
> Visit this group at https://groups.google.com/group/artsec.
> To view this discussion on the web visit https://groups.google.com/d/msgid/artsec/CAO9UE66hoTa6SiLcWZBvs8LvyP3w%3DOvrXgoVHdaJfORg2O0psQ%40mail.gmail.com.
> For more options, visit https://groups.google.com/d/optout.

--
Julian Oliver
https://julianoliver.com
https://criticalengineering.org
PGP https://julianoliver.com/key.asc
Beware the auto-complete life

--
You received this message because you are subscribed to the Google Groups "artsec" group.

To unsubscribe from this group and stop receiving emails from it, send an email to artsec+unsubscribe@googlegroups.com.

To post to this group, send email to art...@googlegroups.com.
Visit this group at https://groups.google.com/group/artsec.

To view this discussion on the web visit https://groups.google.com/d/msgid/artsec/20171016072936.GA7882%40rimu2.