{"id":279,"date":"2012-01-03T09:59:41","date_gmt":"2012-01-03T14:59:41","guid":{"rendered":"http:\/\/www.digitalundercurrents.com\/blog\/?p=279"},"modified":"2012-01-03T10:18:21","modified_gmt":"2012-01-03T15:18:21","slug":"wps-flaw","status":"publish","type":"post","link":"http:\/\/www.digitalundercurrents.com\/blog\/?p=279","title":{"rendered":"WPS Flaw"},"content":{"rendered":"<p>WPS, or WiFi Protected Setup, is a vendor-neutral scheme to make it easier for computer neophytes to securely configured a home wireless access point. Unfortunately, the PIN-based scheme it uses for authentication <a href=\"https:\/\/threatpost.com\/en_us\/blogs\/wifi-protected-setup-flaw-can-lead-compromise-router-pins-122711\">is easily bruteforced<\/a>.<\/p>\n<p>From the article:<\/p>\n<blockquote><p>&#8220;When the PIN authentication fails the access point will send an EAP-NACK message back to the client. The EAP-NACK messages are sent in a way that an attacker is able to determine if the first half of the PIN is correct. Also, the last digit of the PIN is known because it is a checksum for the PIN. This design greatly reduces the number of attempts needed to brute force the PIN. The number of attempts goes from 10<sup>8<\/sup> to 10<sup>4<\/sup> + 10<sup>3<\/sup> which is 11,000 attempts in total.&#8221;<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>WPS, or WiFi Protected Setup, is a vendor-neutral scheme to make it easier for computer neophytes to securely configured a home wireless access point. Unfortunately, the PIN-based scheme it uses for authentication is easily bruteforced. From the article: &#8220;When the PIN authentication fails the access point will send an EAP-NACK message back to the client. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[14],"tags":[],"class_list":["post-279","post","type-post","status-publish","format-standard","hentry","category-exploits"],"_links":{"self":[{"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/279","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=279"}],"version-history":[{"count":0,"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/279\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=279"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.digitalundercurrents.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}