Students at an Australian university have discovered a flaw in Wi-Fi (the 802.11b wireless standard) that could let an attacker effectively shut down wireless networks with a Denial of Service (DoS)-like attack. The PhD students, who hail from the Queensland University of Technology's Information Security Research Centre, were studying ways to prevent Wi-Fi-based attacks when they discovered the vulnerability. They say that the Carrier Sense Multiple Access with Collision Avoidance (CSMA/CA) feature of Wi-Fi networks, which adhere to the IEEE's standardized 802.11 protocol, is to blame.
By using a simple Wi-Fi-enabled off-the-shelf handheld device to exploit the way the CSMA/CA feature's Clear Channel Assessment (CCA) function works, an attacker could cause both wireless Access Points (APs) and wireless client devices (e.g., notebook computers, PDAs) to stop transmitting data. When the attack occurs, the wireless network appears to be busy with other tasks and is unresponsive. Such an attack would require a "semi-skilled" attacker, the students said.
"In order to exploit the vulnerability, potential attackers only need a common wireless adaptor which retails for about $35 and instead of using it to enable their computer to access a network, they can change its coding to interfere with transmission," Associate Professor Mark Looi, whose students discovered the flaw, said. "With this adaptor you can basically totally disrupt any wireless network that uses this technology within a kilometer of its operation in anywhere between 5 and 8 seconds."
Wi-Fi Alliance representatives said that they're looking into the matter but seem to be surprised that an attacker can make a simple Wi-Fi-enabled device act this way. However, someone at a computer industry trade show reportedly wandered around and used such a device to silently turn off the wireless networks he passed. And various companies, including AirMagnet, make devices that can sense such devices with a metal-detector-like clicking sound that gets louder as you get closer to the offending device.
That last detail, incidentally, explains why this type of attack probably won't ever cause major disruptions. Because a Wi-Fi attack requires a device with a radio transmitter, such attacks can be easily located and stopped. And an attacker who's facing a potential jail sentence probably isn't going to stick around a wireless hotspot long enough to be more than a nuisance.
End of Article
whats this 1km thing though?
simon May 17, 2004
It's hardly a flaw ... more like, "Carrier Sense" senses Carriers. Well, DUH!
In other words, wireless uses radio signals. Radio signals can be jammed by other radio signals. Heck, anyone with a wireless router and a 2.4 GHz phone knows that!
I'd like to reveal some other vulnerabilities:
You might trip on your Ethernet cable, rip it from the wall, and become disconnected.
You might be talking on your cell phone in a movie and be beaten by the crowd, rendering your communication experience unpleasant.
Puh-Leeze! -- Robb Topolski http://www.funchords.com/ Hillsboro, Oregon USA
Robb Topolski May 18, 2004
Sure it is a flaw, as it involves the security of communications.
Anonymous User December 22, 2004 (Article Rating: )
You must be a registered user or online subscriber to comment on this article. Please log on before posting a comment. Are you a new visitor?
Register now
Picking a favorite product from an impressive crowd of competitive offerings is never an easy task, and such was the case with our Editors' Best and Community Choice awards this year. ...
An often irreverent look at some of the week's other news, including some post-PDC some soul searching, a Google Chrome OS announcement and a Microsoft response, Windows 7 off to a supposedly strong start, the Jonas Brothers and Xbox 360, and so much more ...
Free CDs Offer Fundamental Content for IT Pros Are you up to speed on the latest technologies and solutions? Don't miss out on your chance to get up to speed quickly on fundamental, in-depth information on some of the hottest topics in our library of content.
Let Your Users Reset Their Own Passwords: Free Download Try a 30 day free trial of Desktop Authority Password Self-Service – it provides an easy-to-use, robust system for allowing users to reset their own forgotten passwords or locked accounts.
Get Windows IT Pro & Mark Minasi’s Favorite Power Tools Guide Order Windows IT Pro now and get "More of Mark Minasi's Favorite Power Tools"--a in-depth guide to the most useful Windows commands --FREE with your paid order! Subscribe today, and save 58% off the cover price!
Deep Dive into VMware vSphere, eLearning Series Join John Savill to explore the major functionality capabilities of the vSphere virtualization platform, including identification of the changes from ESX 3.5.
)
Register
simon May 17, 2004