Title :
ActiveSync, TCP/IP and 802.11b wireless vulnerabilities of WinCE-based PDAs
Author :
Meunier, Pascal ; Nystrom, Sofie ; Kamara, Seny ; Yost, Scott ; Alexander, Kyle ; Noland, Dan ; Crane, Jared
Author_Institution :
Center for Educ. & Res. in Inf. Assurance Security, Purdue Univ., West Lafayette, IN, USA
Abstract :
Researching the vulnerabilities and security concerns of WinCE-based personal digital assistants (PDAs) in an 802.11 wireless environment resulted in identifying CAN-2001-{0158 to 0163}. The full understanding and demonstration of vulnerabilities would have required reverse engineering ActiveSync, which was beyond the scope of this research. Moreover, the WinCE IP stack demonstrated instabilities under a number of attacks, one of which produced symptoms in hardware. The inaccessibility of the 802.11b standard documentation was a source of delays in the research; however, we created three proof-of-concept applications to defeat 802.11b security. One collects valid MAC addresses on the network, which defeats MAC-address-based restrictions. Another builds a code book using known-plaintext attacks, and the third decrypts 802.11b traffic on-the-fly using the code book.
Keywords :
cryptography; notebook computers; telecommunication security; transport protocols; 802.11b traffic decryption; 802.11b wireless vulnerabilities; ActiveSync; CAN-2001-{0158 to 0163}; IP stock; MAC address based restrictions; TCP/IP; WinCE-based PDAs; code book; known-plaintext attacks; security; valid MAC addresses; Books; Communication system security; Cryptography; Hardware; Information security; Java; Media Access Protocol; Personal digital assistants; Portable computers; TCPIP;
Conference_Titel :
Enabling Technologies: Infrastructure for Collaborative Enterprises, 2002. WET ICE 2002. Proceedings. Eleventh IEEE International Workshops on
Print_ISBN :
0-7695-1748-X
DOI :
10.1109/ENABL.2002.1030001
