A Geek With Guns

Chronicling the depravities of the State.

Vulnerability Found in Wi-Fi Protected Setup

without comments

I apologize for being a little late with this news but I’m on vacation, what can you really ask from me? Anyways a brute force vulnerability was discovered in Wi-Fi Protect Setup (WPA):

A few weeks ago I decided to take a look at the Wi-Fi Protected Setup (WPS) technology. I noticed a few really bad design decisions which enable an efficient brute force attack, thus effectively breaking the security of pretty much all WPS-enabled Wi-Fi routers. As all of the more recent router models come with WPS enabled by default, this affects millions of devices worldwide.

Ouch, glad I never used WPS to setup the security on my wireless network. Technical details about the vulnerability can be found in this writeup [PDF].

Written by Christopher Burg

December 30th, 2011 at 10:30 am