A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP

Hwang Hyunuk; Jung Gyeok; Sohn Kiwook; Park Sangseo

doi:10.1109/ICISS.2008.10

A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP

Hwang Hyunuk, Jung Gyeok, Sohn Kiwook, Park Sangseo

Dept. of Computer Science and Engineering

ETRI

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

48 Scopus citations

Abstract

The security of wireless LAN is being strengthened through a combination of EAP with an 802.1X-based authentication server, with 802.11i as the standard. As such a security technique effectively defends the existing WEP or protocol vulnerabilities, another approach is needed to prove the vulnerability of the wireless LAN. This paper proposes the wireless MITM (Man in the Middle) Framework, which can actively prove the vulnerability of MITM by applying the MITM technique in the wireless LAN environment, whose security is applied using 802.1X and EAP. It also describes the designing of the required functions and modules. This paper proposes that it is possible to collect the wireless LAN authentication information of the unauthorized user using the designed Wireless MITM-Framework under the EAP-MD5 and EAPTTLS environment.

Original language	English
Title of host publication	Proceedings of the International Conference on Information Science and Security, ICISS 2008
Publisher	IEEE Computer Society
Pages	164-170
Number of pages	7
ISBN (Print)	076953080X, 9780769530802
DOIs	https://doi.org/10.1109/ICISS.2008.10
State	Published - 2008
Event	International Conference on Information Science and Security, ICISS 2008 - Seoul, Korea, Republic of Duration: 10 Jan 2008 → 12 Jan 2008

Publication series

Name	Proceedings of the International Conference on Information Science and Security, ICISS 2008

Conference

Conference	International Conference on Information Science and Security, ICISS 2008
Country/Territory	Korea, Republic of
City	Seoul
Period	10/01/08 → 12/01/08

Access to Document

10.1109/ICISS.2008.10

Cite this

Hyunuk, H., Gyeok, J., Kiwook, S., & Sangseo, P. (2008). A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP. In Proceedings of the International Conference on Information Science and Security, ICISS 2008 (pp. 164-170). Article 4438228 (Proceedings of the International Conference on Information Science and Security, ICISS 2008). IEEE Computer Society. https://doi.org/10.1109/ICISS.2008.10

Hyunuk, Hwang ; Gyeok, Jung ; Kiwook, Sohn et al. / A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP. Proceedings of the International Conference on Information Science and Security, ICISS 2008. IEEE Computer Society, 2008. pp. 164-170 (Proceedings of the International Conference on Information Science and Security, ICISS 2008).

@inproceedings{674d5eae7b6d4f1bbbaae6bd9eff20ad,

title = "A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP",

abstract = "The security of wireless LAN is being strengthened through a combination of EAP with an 802.1X-based authentication server, with 802.11i as the standard. As such a security technique effectively defends the existing WEP or protocol vulnerabilities, another approach is needed to prove the vulnerability of the wireless LAN. This paper proposes the wireless MITM (Man in the Middle) Framework, which can actively prove the vulnerability of MITM by applying the MITM technique in the wireless LAN environment, whose security is applied using 802.1X and EAP. It also describes the designing of the required functions and modules. This paper proposes that it is possible to collect the wireless LAN authentication information of the unauthorized user using the designed Wireless MITM-Framework under the EAP-MD5 and EAPTTLS environment.",

author = "Hwang Hyunuk and Jung Gyeok and Sohn Kiwook and Park Sangseo",

year = "2008",

doi = "10.1109/ICISS.2008.10",

language = "English",

isbn = "076953080X",

series = "Proceedings of the International Conference on Information Science and Security, ICISS 2008",

publisher = "IEEE Computer Society",

pages = "164--170",

booktitle = "Proceedings of the International Conference on Information Science and Security, ICISS 2008",

note = "International Conference on Information Science and Security, ICISS 2008 ; Conference date: 10-01-2008 Through 12-01-2008",

}

Hyunuk, H, Gyeok, J, Kiwook, S & Sangseo, P 2008, A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP. in Proceedings of the International Conference on Information Science and Security, ICISS 2008., 4438228, Proceedings of the International Conference on Information Science and Security, ICISS 2008, IEEE Computer Society, pp. 164-170, International Conference on Information Science and Security, ICISS 2008, Seoul, Korea, Republic of, 10/01/08. https://doi.org/10.1109/ICISS.2008.10

A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP. / Hyunuk, Hwang; Gyeok, Jung; Kiwook, Sohn et al.
Proceedings of the International Conference on Information Science and Security, ICISS 2008. IEEE Computer Society, 2008. p. 164-170 4438228 (Proceedings of the International Conference on Information Science and Security, ICISS 2008).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP

AU - Hyunuk, Hwang

AU - Gyeok, Jung

AU - Kiwook, Sohn

AU - Sangseo, Park

PY - 2008

Y1 - 2008

N2 - The security of wireless LAN is being strengthened through a combination of EAP with an 802.1X-based authentication server, with 802.11i as the standard. As such a security technique effectively defends the existing WEP or protocol vulnerabilities, another approach is needed to prove the vulnerability of the wireless LAN. This paper proposes the wireless MITM (Man in the Middle) Framework, which can actively prove the vulnerability of MITM by applying the MITM technique in the wireless LAN environment, whose security is applied using 802.1X and EAP. It also describes the designing of the required functions and modules. This paper proposes that it is possible to collect the wireless LAN authentication information of the unauthorized user using the designed Wireless MITM-Framework under the EAP-MD5 and EAPTTLS environment.

AB - The security of wireless LAN is being strengthened through a combination of EAP with an 802.1X-based authentication server, with 802.11i as the standard. As such a security technique effectively defends the existing WEP or protocol vulnerabilities, another approach is needed to prove the vulnerability of the wireless LAN. This paper proposes the wireless MITM (Man in the Middle) Framework, which can actively prove the vulnerability of MITM by applying the MITM technique in the wireless LAN environment, whose security is applied using 802.1X and EAP. It also describes the designing of the required functions and modules. This paper proposes that it is possible to collect the wireless LAN authentication information of the unauthorized user using the designed Wireless MITM-Framework under the EAP-MD5 and EAPTTLS environment.

UR - http://www.scopus.com/inward/record.url?scp=48349106601&partnerID=8YFLogxK

U2 - 10.1109/ICISS.2008.10

DO - 10.1109/ICISS.2008.10

M3 - Conference contribution

AN - SCOPUS:48349106601

SN - 076953080X

SN - 9780769530802

T3 - Proceedings of the International Conference on Information Science and Security, ICISS 2008

SP - 164

EP - 170

BT - Proceedings of the International Conference on Information Science and Security, ICISS 2008

PB - IEEE Computer Society

T2 - International Conference on Information Science and Security, ICISS 2008

Y2 - 10 January 2008 through 12 January 2008

ER -

Hyunuk H, Gyeok J, Kiwook S, Sangseo P. A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP. In Proceedings of the International Conference on Information Science and Security, ICISS 2008. IEEE Computer Society. 2008. p. 164-170. 4438228. (Proceedings of the International Conference on Information Science and Security, ICISS 2008). doi: 10.1109/ICISS.2008.10

A study on MITM(Man in the Middle) vulnerability in wireless network using 802.1X and EAP

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this