Recently, an overlay WIDS vendor announced technology that is supposed
to defeat attacks that take advantage of weaknesses in the WEP protocol.
While I haven't seen this technology in action yet, I have a pretty
good idea how it works, and I think it's a mistake to trust said
technology or common variants for the protection of sensitive networks.
My employer recently launched a forum site, so I put together an
article/blag post articulating what I think are the deficiencies of such
a system:
http://edge.arubanetworks.com/blog/joswr1ght
The forums are read-only open to the public, but the ability to post on
the site is by invitation-only. If you want an invitation, please drop
me a note.
Hash: SHA1
Recently, an overlay WIDS vendor announced technology that is supposed
to defeat attacks that take advantage of weaknesses in the WEP protocol.
While I haven't seen this technology in action yet, I have a pretty
good idea how it works, and I think it's a mistake to trust said
technology or common variants for the protection of sensitive networks.
My employer recently launched a forum site, so I put together an
article/blag post articulating what I think are the deficiencies of such
a system:
http://edge.arubanetworks.com/blog/joswr1ght
The forums are read-only open to the public, but the ability to post on
the site is by invitation-only. If you want an invitation, please drop
me a note.
Comments welcome, thanks.
- -Josh
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iQIVAwUBRj87SjWX3FIa1TkuAQIG7A/5Ac67jEE22OvN0RlaHRScgYy1QOu7ZR65
9wLu+XZzc4QcPiIo9dX3z6FQNwpz9+GWnt/+JqWcfh4OPXDEJJFEhV8gpes6mm6t
E3Y8wl3kMGeHSrKdVzdrxpBQR8JvF4qA5bXOYjQWs/NyLD/KEZlb+dvgo2MBRfyi
QtIEEUW81ShxccrosTx13X9jW792bDB0hiGeXsh06vfjqqcOm4VvmUcRRPnkX3tW
F5H4FDG8SusozLnj7SnGbbGbGXB4MTKdMbKNc1EHGquVBrYAi31/pcC4z6Vf3Z8k
iZ+tqEePgRbpW8tMeeB3a8OQ5VGSjFky5Bd1H6mhTIyxvMEjDNFQKXi8R30GannK
U1yCxh4h8Nviw5ci5F1milnn35YqcOcb/kl2chDd9JpX37WEQQdM7iZtdibb9LO/
Bb2CYbdei4UnflEFIdWBmAFE/N49ZkHKQYQftHGsvb0imEXDJCUDWdoPybzDMGFq
TcLBtVRlff0D8XPC/kbwygioKebYTPt7mXznsBQSReRReuZL9edkQVB/S9+3SQhN
H8bBiB77csyADS2hIBqnBb5dwgRM1E6aOJTducizQ8MNr+5xywOwNDzzMfnroqUu
TYw5EYk1jUC+050n2eOZojtyz4FWhUFFxCSr6uyF8Ywy4Doa7oNNKvub7bsFxwJh
E5WrqgiO7T0=
=ia3v
-----END PGP SIGNATURE-----
[ reply ]