[Dshield] Wireless networks and corporate Lans

John Holmblad jholmblad at aol.com
Sun Feb 29 20:38:05 GMT 2004


Chris,

you may want to read recommended by, among others SNorthcutt  :
1.  
</exec/obidos/ASIN/0321136209/qid=1078085946/sr=2-1/ref=sr_2_1/104-8008907-0904762> 
    Real 802.11 Security: Wi-Fi Protected Access and 802.11i 
</exec/obidos/ASIN/0321136209/qid=1078085946/sr=2-1/ref=sr_2_1/104-8008907-0904762> 
-- by Jon Edney (Author), William A. Arbaugh (Author); Paperback
Buy new 
</exec/obidos/ASIN/0321136209/qid=1078085946/sr=2-1/ref=sr_2_1/104-8008907-0904762>: 
$31.49 -- from 
<http://www.amazon.com/exec/obidos/offering-page/ref=sdp__nb/104-8008907-0904762?index=fixed-price&field-offering-type=new&field-asin=0321136209&field-status=open&size=25&rank=+price&/>: 
$29.06  


The problem is not with the RC4 algorithm which is widely used in many 
crypto systems very successfully. It is the way RC4 is applied in the 
original WEP standard that caused the problems associated with 
Initialization Vector wraparound and weak keys. WPA corrects those 
defects in the implementation while keeping the RC4 ahgorithim intact  
which is why many if not most AP's and NIC cards can be upgraded via 
software firmware to use WPA with TKIP. In other words TKIP is also 
based on RC4.  RC4 is good because it is a) simple to implement in 
combinitorial logic and b) therefore very fast. You may also be aware 
that the soon to be ratified 802.11i standard will support, in addition 
to TKIP, the Advanced Encryption Standard which is even more 
cryptogrpahically robust than TKIP.

-- 

Best Regards,

 

John Holmblad

 

Televerage International

 

(H) 703 620 0672

(M) 703 407 2278

(F) 703 620 5388

 

www page:                      www.vtext.com/users/jholmblad

primary email address: jholmblad at aol.com

backup email address:  jholmblad at verizon.net

 

text email address:         jholmblad at vtext.com




More information about the list mailing list