Comments (4)
It should not as KRACK applies to WPA, not SAE. Nevertheless, these kinds of protocol-level wake-up calls should definitely prompt the authsae maintainers to introspect their code designs with a fine-toothed comb to ensure they don't also succumb to a similar failure.
from authsae.
Thanks for your reply. I'm waiting an answer from the maintener.
from authsae.
My understanding is, as presented, no, because there is no 4-way handshake in SAE which is what this attack relies on. However, I haven't studied it enough to know if there's not a related flaw in SAE.
from authsae.
I looked into AMPE and we only install the keys after reaching ESTAB state, once there we won't install any more keys until the peering is broken. When peering is broken, we recreate the AEK and all other keys in the key hierarchy in peer_ampe_init
and the MTK will get a new random nonce, so I do not see a way to perform a key reinstallation attack. This of course is not an official security audit, just my 2 cents. I'll close this as there's nothing actionable at this time.
from authsae.
Related Issues (20)
- VHT Not working properly need assistance. HOT 4
- Is authsae still actively developed?
- Error linking: In `peer_lists.h`: "multiple definition of `peers'" and "multiple definition of `blacklists'". HOT 6
- nlerror 19 & 18 on peer nodes when new node joins network or refresh key HOT 27
- Errors: - confirm did not verify! HOT 30
- meshd-nl80211 memory leak on refresh key HOT 22
- Update FreeBSD code to support 10.2 (or 11-HEAD) HOT 3
- "correct token received" logged as errors, should be a debug level HOT 1
- Unexpected error -22 (expected -17), nlerror, cmd 0, seq 1461249716: Invalid argument HOT 5
- Again, confirm did not verify! HOT 1
- VHT80 HOT 9
- Rekeying failure on a busy link HOT 50
- no rssi_threshold config with authsae HOT 2
- MGTK/IGTK changes do not work HOT 19
- Licence file HOT 1
- encrypted mgmt frames don't seem to work on ath5k HOT 3
- meshd-nl80211 5GHz not working HOT 6
- Little helps in building?? HOT 10
- Seems README is obsolete.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from authsae.