Forum

PEAP security question

1 posts by 1 authors in: Forums > CWSP - Enterprise Wi-Fi Security
Last Post: May 19, 2006:

By Aaron May 19, 2006

Reply

Hi all!

I have a question regarding PEAP and machine authentication.

At boot time, the laptop sends its identity to the AP, which is the machine account info. This happens before TKIP or any security is applied.

With a protocol/packet analyzer, if an attacker were sniffing the air waves, am I right in assuming he could see the hostname/domain name of the client trying to establish a connection?

The reason I ask is that I have read the client credentials are not used in the PEAP process until phase 2 after the TLS channel is set up, but in the EAP process, the AP asks for the client's credentials before the TLS channel is created.

Given that the attacker were able to obtain the FQDN in the machine authentication process, what security risks does this pose?

Thanks for the help!

Page 1 of 1

1

Success Stories

I literally just came out of the testing centre having taken the CWDP exam. The certification process opened my mind to different techniques and solutions. This knowledge can only broaden your perspective. Great job, CWNP, you have a great thing going on here.
-Darren

Working through the CWNP coursework and certifications helped not only to deepen my technical knowledge and understanding, but also it boosted my confidence. The hard work it took to earn my CWNE has been rewarding in so many ways.
-Ben

I want to commend you and all at CWNP for having a great organization. You really 'raise the bar' on knowing Wi-Fi well. I have learned a ton of information that is helping my job experience and personal career goals, because of my CWAP/CWDP/CWSP studies. Kudos to all at CWNP.
-Glenn