all InfoSec news
From Dragondoom to Dragonstar: Side-channel Attacks and Formally Verified Implementation of WPA3 Dragonfly Handshake. (arXiv:2307.09243v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
It is universally acknowledged that Wi-Fi communications are important to
secure. Thus, the Wi-Fi Alliance published WPA3 in 2018 with a distinctive
security feature: it leverages a Password-Authenticated Key Exchange (PAKE)
protocol to protect users' passwords from offline dictionary attacks.
Unfortunately, soon after its release, several attacks were reported against
its implementations, in response to which the protocol was updated in a
best-effort manner.
In this paper, we show that the proposed mitigations are not enough,
especially for a complex …
alliance attacks channel communications dictionary attacks dragonfly exchange feature handshake implementation important key password passwords protect protocol security side-channel side-channel attacks verified wi-fi wpa3