Explore chapters and articles related to this topic
Smart home network and devices
Published in Abbas Moallem, Human-Computer Interaction and Cybersecurity Handbook, 2018
Here is how Wikipedia defines WPA and WPA2: Wi-Fi Protected Access (WPA) and Wi-Fi Protected Access II (WPA2) are two security protocols and security certification programs developed by the Wi-Fi Alliance to secure wireless computer networks. The Alliance defined these in response to serious weaknesses researchers had found in the previous system, Wired Equivalent Privacy (WEP).
Policy-based security for distributed manufacturing execution systems
Published in International Journal of Computer Integrated Manufacturing, 2018
Octavian Morariu, Cristina Morariu, Theodor Borangiu
Wired Equivalent Privacy (WEP) encryption was designed to protect against casual snooping but it is not considered secure as explained in Boland and Mousavi (2004) and Reddy et al. (2010). Tools such as AirSnort or Aircrack-ng can quickly determine WEP encryption keys. As a response to security concerns of WEP, Wi-Fi Protected Access (WPA) was introduced. Even if WEP is more secured then WPA, it still has known vulnerabilities. WPA2 is using Advanced Encryption Standard and eliminates some of the vulnerabilities of WEP. However, Wi-Fi Protected Setup which allows initial configuration of the Wi-Fi connection cannot prevent WPA and WPA2 security to be broken in several scenarios. Once the network layer is breached, an attacker will have direct access to the higher layer protocols allowing unauthorised access to information, theft of proprietary information, DoS at the protocol layer and impersonation. Berghel and Uecker (2005) and Aime, Calandriello, and Lioy (2007) point out these security concerns. The higher layer protocols can be secured using secure sockets layer (SSL) that provides encryption, authentication and authorisation of the actors involved using a PKI for certificate management. IEEE 802.11i is a more recent Wi-Fi standard that offers improved security mechanisms like Key Derivation Mechanism, AES, CBC-MAC or AES in CTB. A more recent standard proposition IEEE 802.11ai promises a fast initial link set-up function. This would allow a wireless LAN client to achieve a secure link within 100 ms. At this point, there are no commercial implementation available.