Why we changed this site: Click here to find out why the website changed.

Close
Created by e-skills uk

blog WiFi encryption cracked in 15 minutes. What does it mean for me?

November 24th 2008
Posted by: Steve_Gold
Keywords: Security & data, WiFi

Two researchers were scheduled to reveal that the WPA WiFi encryption system could be cracked in just 15 minutes at the PacSec event taking place in Japan in mid-November.

WPA has always been held up as an extremely strong encryption system that is vastly superior for the older WEP standard, which has been 'crackable' for some time. Plans call for the research team - Erik Tews and Martin Beck - to demonstrate their findings in Tokyo in a live demonstration, which Tews plans on following up with full publication of his modus operandi in an IT research journal in the next few months.

So what does this mean for WiFi home/small office router users?

Basically it means that the older WEP and WPA encryption systems cannot be regarded as secure against hackers. Cracking the encryption system takes time - perhaps 15 minutes on the WEP system and longer on the WPA system.

The WPA-2 encryption system, seen on most routers has not, however, been compromised, so it's a good idea to move on up to that system wherever possible.

The good news is that it will take a dedicated hacker to crack your WPA-encrypted WiFi sessions so, if you're using your WiFi router for routine email and Web surfing, it's not critical to update to WPA-2 technology.

It is important to realise however, that a `Secure' Web session - where a `padlocked' green bar appears in the Web address, or a padlock appears in the browser - may not be secure against WEP and WPA hackers as, depending on the way office system is set up, anything you see on your browser screen could be readable by hackers.

This means that, unless your WiFi system is specifically protected with WPA-2 encryption, you should not be accessing online banking and other potentially hackable online systems using a wireless connection.

This also applies to using public access WiFi connections such as BT Openzone and The Cloud, as you cannot be sure of the integrity of public connections.

Curiously, however, these precautions do not apply to mobile broadband sessions via a 3G dongle, as these networks are, so far, impervious to hacker attacks.

Relevant guides:

Data Security Training
   
Securing Computer Data

By Steve Gold, News Editor

Rate This:
i
Bookmark this page:
DiggDigg
del.icio.usdel.icio.us
redditreddit
FacebookFacebook

Latest News

View All »

Latest Blog Posts

View All »

Archive

Credits

Close

You have:

1

Credits

For FREE UNLIMITED access:

Login to your account

Email:
Password:

Forgot your password?

Login
Not a member already?
Register Here
You don't want to login? Cancel
Quick Registration

Quick Registration

Get unlimited* access to guides, tips and facts, by becoming a FREE member.

Email:
Password:
Re-type Password:
First name:
Company name:
County:
Region:
Sign up for free site updates
REGISTER FREE
Already a member? Login Here
Don't want FREE access? No Thanks

Registration Benefits

Post Code

Hello User,

In order for us to provide you with the most relevant information, please supply us with your postcode so we can determine your region.

Thank you

Your Post Code:
submit
No Thanks