Breaking 104 Bit WEP in Less Than 60 Seconds

Erik  Tews; Ralf-Philipp Weinmann; Andrei Pyshkin

doi:10.1007/978-3-540-77535-5_14

Breaking 104 Bit WEP in Less Than 60 Seconds

Erik Tews, Ralf-Philipp Weinmann, Andrei Pyshkin

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

97 Citations (Scopus)

43 Downloads (Pure)

Abstract

We demonstrate an active attack on the WEP protocol that is able to recover a 104-bit WEP key using less than 40,000 frames with a success probability of 50%. In order to succeed in 95% of all cases, 85,000 packets are needed. The IV of these packets can be randomly chosen. This is an improvement in the number of required frames by more than an order of magnitude over the best known key-recovery attacks for WEP. On a IEEE 802.11g network, the number of frames required can be obtained by re-injection in less than a minute. The required computational effort is approximately 220 RC4 key setups, which on current desktop and laptop CPUs is negligible.

Original language	English
Title of host publication	Information Security Applications
Subtitle of host publication	8th International Workshop, WISA 2007, Jeju Island, Korea, August 27-29, 2007, Revised Selected Papers
Editors	Sehun Kim, Moti Yung, Hyung-Woo Lee
Place of Publication	Berlin
Publisher	Springer
Pages	188-202
Number of pages	15
ISBN (Electronic)	978-3-540-77535-5
ISBN (Print)	978-3-540-77534-8
DOIs	https://doi.org/10.1007/978-3-540-77535-5_14
Publication status	Published - 2007
Externally published	Yes
Event	8th International Workshop on Information Security Applications, WISA 2007 - Jeju Island, Korea, Republic of Duration: 27 Aug 2007 → 29 Aug 2007 Conference number: 8

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer
Volume	4867
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Workshop

Workshop	8th International Workshop on Information Security Applications, WISA 2007
Abbreviated title	WISA
Country/Territory	Korea, Republic of
City	Jeju Island
Period	27/08/07 → 29/08/07

Keywords

AES
Error-correcting Code
Signatur
Access Control
Algorithms
Anonymity
Authentication
Biometrics
Block ciphers
Cryptanalys
Cryptology
Data Security
Privacy
Security

Access to Document

10.1007/978-3-540-77535-5_14

Tews2007breaking-2Accepted author version, 250 KB

Cite this

Tews, E., Weinmann, R-P., & Pyshkin, A. (2007). Breaking 104 Bit WEP in Less Than 60 Seconds. In S. Kim, M. Yung, & H-W. Lee (Eds.), Information Security Applications: 8th International Workshop, WISA 2007, Jeju Island, Korea, August 27-29, 2007, Revised Selected Papers (pp. 188-202). (Lecture Notes in Computer Science; Vol. 4867). Springer. https://doi.org/10.1007/978-3-540-77535-5_14

@inproceedings{348a7784a5744d73bf5dd6073b0e0667,

title = "Breaking 104 Bit WEP in Less Than 60 Seconds",

abstract = "We demonstrate an active attack on the WEP protocol that is able to recover a 104-bit WEP key using less than 40,000 frames with a success probability of 50%. In order to succeed in 95% of all cases, 85,000 packets are needed. The IV of these packets can be randomly chosen. This is an improvement in the number of required frames by more than an order of magnitude over the best known key-recovery attacks for WEP. On a IEEE 802.11g network, the number of frames required can be obtained by re-injection in less than a minute. The required computational effort is approximately 220 RC4 key setups, which on current desktop and laptop CPUs is negligible.",

keywords = "AES, Error-correcting Code, Signatur, Access Control, Algorithms, Anonymity, Authentication, Biometrics, Block ciphers, Cryptanalys, Cryptology, Data Security, Privacy, Security",

author = "Erik Tews and Ralf-Philipp Weinmann and Andrei Pyshkin",

year = "2007",

doi = "10.1007/978-3-540-77535-5_14",

language = "English",

isbn = "978-3-540-77534-8",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "188--202",

editor = "Sehun Kim and Moti Yung and Hyung-Woo Lee",

booktitle = "Information Security Applications",

note = "8th International Workshop on Information Security Applications, WISA 2007, WISA ; Conference date: 27-08-2007 Through 29-08-2007",

}

Tews, E, Weinmann, R-P & Pyshkin, A 2007, Breaking 104 Bit WEP in Less Than 60 Seconds. in S Kim, M Yung & H-W Lee (eds), Information Security Applications: 8th International Workshop, WISA 2007, Jeju Island, Korea, August 27-29, 2007, Revised Selected Papers. Lecture Notes in Computer Science, vol. 4867, Springer, Berlin, pp. 188-202, 8th International Workshop on Information Security Applications, WISA 2007, Jeju Island, Korea, Republic of, 27/08/07. https://doi.org/10.1007/978-3-540-77535-5_14

Breaking 104 Bit WEP in Less Than 60 Seconds. / Tews, Erik ; Weinmann, Ralf-Philipp; Pyshkin, Andrei.

Information Security Applications: 8th International Workshop, WISA 2007, Jeju Island, Korea, August 27-29, 2007, Revised Selected Papers. ed. / Sehun Kim; Moti Yung; Hyung-Woo Lee. Berlin : Springer, 2007. p. 188-202 (Lecture Notes in Computer Science; Vol. 4867).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Breaking 104 Bit WEP in Less Than 60 Seconds

AU - Tews, Erik

AU - Weinmann, Ralf-Philipp

AU - Pyshkin, Andrei

N1 - Conference code: 8

PY - 2007

Y1 - 2007

N2 - We demonstrate an active attack on the WEP protocol that is able to recover a 104-bit WEP key using less than 40,000 frames with a success probability of 50%. In order to succeed in 95% of all cases, 85,000 packets are needed. The IV of these packets can be randomly chosen. This is an improvement in the number of required frames by more than an order of magnitude over the best known key-recovery attacks for WEP. On a IEEE 802.11g network, the number of frames required can be obtained by re-injection in less than a minute. The required computational effort is approximately 220 RC4 key setups, which on current desktop and laptop CPUs is negligible.

AB - We demonstrate an active attack on the WEP protocol that is able to recover a 104-bit WEP key using less than 40,000 frames with a success probability of 50%. In order to succeed in 95% of all cases, 85,000 packets are needed. The IV of these packets can be randomly chosen. This is an improvement in the number of required frames by more than an order of magnitude over the best known key-recovery attacks for WEP. On a IEEE 802.11g network, the number of frames required can be obtained by re-injection in less than a minute. The required computational effort is approximately 220 RC4 key setups, which on current desktop and laptop CPUs is negligible.

KW - AES

KW - Error-correcting Code

KW - Signatur

KW - Access Control

KW - Algorithms

KW - Anonymity

KW - Authentication

KW - Biometrics

KW - Block ciphers

KW - Cryptanalys

KW - Cryptology

KW - Data Security

KW - Privacy

KW - Security

U2 - 10.1007/978-3-540-77535-5_14

DO - 10.1007/978-3-540-77535-5_14

M3 - Conference contribution

SN - 978-3-540-77534-8

T3 - Lecture Notes in Computer Science

SP - 188

EP - 202

BT - Information Security Applications

A2 - Kim, Sehun

A2 - Yung, Moti

A2 - Lee, Hyung-Woo

PB - Springer

CY - Berlin

T2 - 8th International Workshop on Information Security Applications, WISA 2007

Y2 - 27 August 2007 through 29 August 2007

ER -

Breaking 104 Bit WEP in Less Than 60 Seconds

Abstract

Publication series

Workshop

Keywords

Access to Document

Fingerprint

Cite this