Analysing and attacking the 4-way handshake of IEEE 802.11i standard

Author

Alabdulatif, Abdulatif ; Xiaoqi Ma ; Nolle, Lars

Author_Institution

Dept. of Comput., Qassim Univ., Al-Rass, Saudi Arabia

fYear

2013

fDate

9-12 Dec. 2013

Firstpage

382

Lastpage

387

Abstract

The IEEE 802.11i standard has been designed to enhance security in wireless networks. In the 4-way handshake the supplicant and the authenticator use the pairwise master key (PMK) to derive a fresh pairwise transient key (PTK). The PMK is not used directly for security while assuming the supplicant and authenticator have the same PMK before running 4-way handshake. In this paper, the 4-way handshake phase has been analysed using Isabelle tool to identify a new Denial-of-Service (DoS) attack. The attack prevents the authenticator from receiving message 4 after the supplicant sends it out. This attack forces the authenticator to re-send the message 3 until time out and subsequently to de-authenticate supplicant. This paper has proposed improvements to the 4-way handshake to avoid the Denial-of-Service attack.

Keywords

computer network security; message authentication; wireless LAN; 4-way handshake; DoS attack; IEEE 802.11i standard; Isabelle tool; PMK; PTK; authenticator; deauthentication; denial-of-service attack; message resend; pairwise master key; pairwise transient key; supplicant; wireless network security; Authentication; Communication system security; Computer crime; Microwave integrated circuits; Protocols; Wireless communication;

fLanguage

English

Publisher

ieee

Conference_Titel

Internet Technology and Secured Transactions (ICITST), 2013 8th International Conference for

Conference_Location

London

Type

conf

DOI

10.1109/ICITST.2013.6750227

Filename

6750227