Extending Automated Protocol State Learning for the 802.11 4-Way Handshake

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Authors

Colleges, School and Institutes

Abstract

We show how state machine learning can be extended to handle time out behaviour and unreliable communication mediums. This enables us to carry out the first fully automated analysis of 802.11 4-Way Handshake implementations. We develop a tool that uses our learning method and apply this to 7 widely used Wi-Fi routers, finding 3 new security critical vulnerabilities: two distinct downgrade attacks and one router that can be made to leak some encrypted data to an attacker before authentication.

Details

Original languageEnglish
Title of host publicationComputer Security
Subtitle of host publication23rd European Symposium on Research in Computer Security, ESORICS 2018, Barcelona, Spain, September 3-7, 2018, Proceedings, Part I
EditorsJavier Lopez, Jianying Zhou, Miguel Soriano
Publication statusPublished - 8 Aug 2018
Event23rd European Symposium on Research in Computer Security, ESORICS 2018 - Barcelona, Spain
Duration: 3 Sep 20187 Sep 2018

Publication series

NameLecture Notes in Computer Science
Volume11098
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference23rd European Symposium on Research in Computer Security, ESORICS 2018
Abbreviated titleESORICS 2018
CountrySpain
CityBarcelona
Period3/09/187/09/18