Welcome to WebmasterWorld Guest from 188.8.131.52
Forum Moderators: bakedjake
The proof-of-concept exploit is called KRACK, short for Key Reinstallation Attacks. The research has been a closely guarded secret for weeks ahead of a coordinated disclosure that's scheduled for 8 a.m. Monday, east coast time.High Severity WPA2 WiFi Vulnerabilities, Dubbed KRACK, Key Reinstalltion Attacks [arstechnica.com]
Instead, I want to talk about why this vulnerability continues to exist so many years after WPA was standardized. And separately, to answer a question: how did this attack slip through, despite the fact that the 802.11i handshake was formally proven secure?
Falling through the KRACKs [blog.cryptographyengineering.com] by Matthew Green, 16-October-2017.