Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: LEAP Security Vulnerabilities??

  • From: Richard A Steenbergen
  • Date: Thu Jun 13 17:24:24 2002

On Thu, Jun 13, 2002 at 02:34:29PM -0500, Stephen Sprunk wrote:
> 
> WEP's only real failure was the failure to specify keying; vendors (and
> users) with less security experience interpreted this to mean static
> keys were sufficient.
>
> The choice of RC4 was unfortunate given the above problem, but the
> coming switch to AES should fix that.

Most existing wireless APs cannot keep up with 802.11b doing RC4 (which is
EXTREMELY light on the cpu) at line rate. I'm afraid to see what they
consider acceptable for AES, anything done as a firmware upgrade is going
to be quite limiting. At least for 802.11a I believe they're doing better.

-- 
Richard A Steenbergen <ras@e-gerbil.net>       http://www.e-gerbil.net/ras
PGP Key ID: 0x138EA177  (67 29 D7 BC E8 18 3E DA  B2 46 B3 D8 14 36 FE B6)




Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.