Escolar Documentos
Profissional Documentos
Cultura Documentos
ULB
Hctor Julio
WHAT IS WPA?
Security protocol
Authentication
Encryption
ENCRYPTION
KEY ROTATION
KEY DISTRIBUTION
AUTHENTICATION
WEP
WPA
WPA2
RC4
RC4 (TKIP)
AES
NONE
WEP Key
802.1X
802.1X
RC4
RC4
TKIP
IS WPA VULNERABLE?
2 kinds of vulnerabilities:
IS WPA VULNERABLE?
Decrypting packages
IS WPA VULNERABLE?
Getting the PSK
4 WAY HANDSHAKE
Lower-case
676
456.976
308.915.776
2.704
7.311.616
19.770.609.664
Lower-case, Upper-case,
and Numbers
3.844
14.776.336
56.800.235.584
8.836
78.074.896
689.869.781.056
Combinations
(Use always symbols!)
11
SEARCH TIME
Numbers
Instant
4 minutes
6.5 hours
7.5 years
Lower-case
2 minutes
18 hours
1.5 years
662263 years
Alphanumeric
(including Uppercase)
52 minutes
140 days
1481 years
Age of the
universe*
All (Printable)
ASCII characters
5 hours
5 years
48644 years
Age of the
universe*
* 13 billion years
GPU ATTACKS
Why GPUs?
14
SEARCH TIME
35 days (Pyrit w/
CoWPAtty)
NIMBIX
Peer1 Hosting
Penguin Computing
RapidSwitch
SoftLayer
16
Total time
1Million WPA
Passwords/Second
Passwords Between 1
and 4 Characters
Passwords Between 1
and 6 Characters
Passwords Between 1
and 8 Characters
Passwords Between 1
and 12 Characters
Numbers
Instant
Estimated Cost:
$0.74
Instant
Estimated Cost:
$0.74
2 minutes
Estimated Cost:
$0.74
12.75 days
Estimated Cost:
$226
Lower-case
Instant
Estimated Cost:
$0.74
5 minutes
Estimated Cost:
$0.74
2.5 days
Estimated Cost:
$44.40
3147 years
Alphanumeric
(including Upper-case)
Instant
Estimated Cost:
$0.74
16 hours
Estimated Cost:
$11.84
7 years
2 minutes
Estimated Cost:
$0.74
9 days
Estimated Cost:
$159.84
231 years
Age of the
universe
CONCLUSIONS
SOURCES
Wi-Fi Security: Cracking WPA With CPUs, GPUs, And The Cloud http://
www.tomshardware.com/reviews/wireless-security-hack,2981-7.html
TKIP https://msdn.microsoft.com/en-us/library/windows/hardware/ff570952%28v=vs.
85%29.aspx
19
WPA / WPA2
& GPU attack
ULB
Hctor Julio