]> git.ipfire.org Git - thirdparty/hostap.git/commit - wpa_supplicant/wpa_supplicant_i.h
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6982784) | patch
Added an optional mitigation mechanism for certain attacks against TKIP by
authorJouni Malinen <jouni.malinen@atheros.com>
Sat, 8 Nov 2008 02:43:12 +0000 (04:43 +0200)
committerJouni Malinen <j@w1.fi>
Sat, 8 Nov 2008 02:43:12 +0000 (04:43 +0200)
commit46690a3b9bdb226e3a8a66315cc9e9db3ed5cf72
treea17d80265ee9446d3b697dd9954a69b47e3ceb6atree | snapshot
parent6982784e20f57618b71e5b2bed46f171b5fe7ce2commit | diff
Added an optional mitigation mechanism for certain attacks against TKIP by
delaying Michael MIC error reports by a random amount of time between 0 and
60 seconds if multiple Michael MIC failures are detected with the same PTK
(i.e., the Authenticator does not rekey PTK on first failure report). This
is disabled by default and can be enabled with a build option
CONFIG_DELAYED_MIC_ERROR_REPORT=y in .config.

This may help in making a chopchop attack take much longer time by forcing
the attacker to wait 60 seconds before knowing whether a modified frame
resulted in a MIC failure.
wpa_supplicant/ChangeLog diff | blob | blame | history
wpa_supplicant/Makefile diff | blob | blame | history
wpa_supplicant/defconfig diff | blob | blame | history
wpa_supplicant/events.c diff | blob | blame | history
wpa_supplicant/wpa_supplicant_i.h diff | blob | blame | history
wpa_supplicant/wpas_glue.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.