Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Wireless Security » breaking 256 bit AES encryption
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Forum Guidelines ·Wireless Security FAQ ·Keith's FAQ
« (topic move) Beta versions of NIS 2009 and N360 v3 for Windows 7  
AuthorAll Replies


caedmon

@cox.net

reply to nwrickert
Re: breaking 256 bit AES encryption

quote:
The only known method for breaking AES is trial and error
This is commonly called a "brute force attack". It is virtually impossible when using AES with a random 128 bit key at this time.

Important Note
The PSK key you configure has nothing to do with the keys used with the AES encryption. The PSK is used for authentication and as part of the algorithm used to setup the keys used by AES. The PSK is the only known weak point in WPA-PSK when using CCMP(AES encryption). If someone captures the initial 4 messages when a client first joins a network they can use a brute force attack on the PSK. If they crack the PSK they can decrypt those 4 messages and determine what the AES key is.

Each client negotiates a different AES key each time they join the network but knowing the PSK allows one to obtain the AES key used by that client if they capture the initial 4 messages when that client joins the network.
to forum · permalink · 2009-04-18 22:00:55 · Reply to this

Matt26

join:2007-07-06

 ok, just so i'm clear- there are two separate keys involved in WPA/WPA2- the PSK key (which would be the password/passphrase used to authenticate a user to the network) and an AES key used for the encryption of the data- and these AES keys change each time a client authenticates to the network. is this correct?

as far as a brute force attack is concerned- my understanding is that the more complex the passphrase the harder it will be to crack it, and i use a passphrase made of 63 random ASCII characters- so my guess is that this would be next to impossible for anyone to crack. would this be reasonable to assume?

thanks for all the replies.
to forum · permalink · · 2009-04-20 07:28:20 · Reply to this


nwrickert
sand groper
Premium,MVM
join:2004-09-04
Geneva, IL		 Yes, that's a very reasonable assumption.
to forum · permalink · · 2009-04-20 08:14:03 · Reply to this


caedmon

@cox.net		reply to Matt26
Yes to both questions.
to forum · permalink · 2009-04-20 22:15:57 · Reply to this

KodiacZiller

join:2008-09-04
73368

 Brute forcing AES is simply out of the question and will likely always be out of the question, at least until quantum computing comes around (and even then it seems unlikely).

Someone above said it would take millions of years to brute force 128 bit AES. That is incorrect. It would take trillions of times longer than the age of the universe. And even then, the energy requirements would be so large that the energy of the sun would need to be harnessed.
to forum · permalink · · 2009-04-20 23:11:57 · Reply to this
-
Forums » Up and Running » Security » Wireless Security« (topic move) Beta versions of NIS 2009 and N360 v3 for Windows 7  

Sunday, 29-Nov 01:31:42 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [122] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [80] TiVo Sees Record Customer Losses
· [73] Weekend Open Thread
· [70] Verizon CEO: Hulu Will Be Dead Soon
· [69] In-Flight Internet Headed For Bumpy Landing?
· [62] Thanksgiving Open Thread
· [40] EFF Wages War On Fine Print
Most people now reading
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· [ PVP] 3.2 DK PvP D/W Spec... [World of Warcraft]
· sysguard2010.com [Security]
· ToC 4th boss - Preliminary Strategy for Twin Valkyr [World of Warcraft]
· Gizmo5 has added a Google Voice section in its members area. [VOIP Tech Chat]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· [Newsgroups] Newzleech down? [Filesharing Software]
· netTalk tk6000 [VOIP Tech Chat]
· Using AirMax to provide triple play services? [Wireless Service Providers]
· Why would I want an e reader? [General Questions]