Start with Wifi Basics - Part 2: Types of Network and Association

-
Using the method of Scanning we have found the available network, now its time to connect to them.

There are Broadly two kinds of networks:
1. Open - Not Encrypted, No Authentication required, available to everyone and NOT recommended

2. Secured - Encrypted, Authentication required ( PSK or dot1x )
    i. WEP based - WEP stands for Wired Equivaled Privacy. When the 802.11 standard was                  developed this was the only security network, but this network was not very much secured and was soon Broken. This kind of security is not used nowadays. This security was based on Password/ Dot1x Credentials shared by Network administrator.
You really dont have to go in the details of this as this is DEAD.

   ii. WPA - Soon after WEP was broken, there was an immediate need to have a secured network in Wireless LAN and thus Wifi Alliance came up with WPA (Wifi Protected Access) standard. WPA Standard used TKIP as an encryption Cipher to encrypt the data and protect the network.

  iii. WPA2 or 802.11i - This was the IEEE developed standard and this provides a strong encryption technique called AES. This encrytion engine was developed at the Chip hardware and thus was fast.


Both WPA/WPA2 provides PSK and Enterprise Authentication:
In PSK, the network administrator provides a common password for all the users.
In Dot1x, the authentication is done by a radius server ( it is a kind of server which has Usernames and its Password).  More details on this in future.


Now lets see how the Connection Packet exchange looks like:

For Open Network:
After Scanning, the wireless client sends out a Authentication request process to the AP indicating its interest to Join the network. The packet contains a field called "Authentication Algorithm" this is set to "Open" for all networks except for WEP networks for which it is set to "Shared Key". 

The Authentication response is sent by the AP to wireless client with Status code as "Success".

After Authentication, Association packet is sent to the AP by the Station. This packets has all the required fields to join to a network. This packet has the following:
SSID field - which says as which network it wishes to join. 
Supported data rates - lists the supported data rates by client
QoS - QoS information 
and much more. For now, it is important to know that Association packet has all the required info to connect to the network

AP after looking at the Association request packet contents, decides if the client is fit to join the network, if yes, then it sends a Association response packet with an Association ID called AID. With this ID the AP now identifies this client. No two clients connected to the same AP can have the same AID. The association response packet also has the Association status as Success.

For Open network, the connection is completed at this state. The Client can now request for DHCP IP address and get a valid IP address. 

 For PSK Network:

The Association process in PSK is same as Open network but has an extra step of doing a 4-way Handshake. This is to derive keys using the "Pre shared Password" between Client and AP for data encryption.
        Four Way Handshake: Refer the next Blog update 4way Handshake explanation


For Dot1x Network:

The initial process of Association is similar to an Open profile or PSK, the new part in Dot1x network is that there is no Pre shared Password in this. There is a radius server that takes care of authenticating the user and deriving a "PMK" Pair wise Master key between station and AP. This PMK is then used to derive the PTK  using the 4-way Handshake.

There are different 802.1X protocols that Wireless client uses, such as:
EAP-TLS
PEAP-MSCHAP, 
EAP-FAST
PEAP-TLS
LEAP
EAP-SIM... etc.

Comments

Post a Comment

Popular posts from this blog

Wifi Roaming Techniques : Pre-Authentication, PMK Caching, OKC, Fast Transition - 11r

-
Image
Wifi Roaming Techniques: Roaming is one of the most crucial aspect of Wifi. Roaming in simple terms is Handing off Client connectivity from one Access point to another without losing connectivity. When the Client sees that the RSSI ( signal Strength ) of connected AP is decreasing, the Client does a roam Scan and sees if there are other APs with better RSSI. Once it identifies the better AP, it starts association with this AP. This process is called Roaming. Why is Roaming Important: Wifi is mostly used in devices which are mobile such as mobile phones, Laptops etc. User intend to use these device while moving from one place to another and it is expected that the devices are always connected to wifi and the user can continue his work seamlessly. It would not be desirable that wifi keeps disconnecting and connecting to other Access Point while the user is moving, there should be a way where in the client can remain connected to wifi network while it moves. This issue is add
Read more

802.11w Protected Management Frames (PMF)

-
Image
802.11w Protected Management Frames Why? As you are aware that Management Frames are not encrypted in WLAN networks and this causes WLAN networks to be vulnerable to Denial of Service Attacks (DoS). Let us see a few of the Denial of Service attacks which Attackers can use to disrupt few or all of the users in a WLAN network. DoS Attacks Following frames can break the existing wireless connection (without PMF support) and will lead to Denial of Service attack. Sending Deauth or Disassoc notification to AP Sending (Re) Association request to AP. Sending Auth frame to AP. Sending Deauth or Disassoc notification to Station Sending Channel switch announcement to Station. How to solve the problem? Once the 4 way Handshake is done, the AP and the STA have the PTK and GTK to encrypt data. The same keys can now be used to encrypt Management frames to provide a certain level of Protection against DoS Attacks. Access Point and the Station both needs to have s
Read more

Power Saving Techniques

-
Image
Why it is so Important? As you are aware that most of the Wifi Devices are Battery Operated such as Mobile Phones, Laptops etc. It is very important to consider the Power consumed of every component of such devices. If the device drains its battery too often, then it limits it mobility capability. It is very essential to conserve the battery when the device is not using any of such components. For Ex: Screen times out if there is no activity by User. Similarly when there is no active data transfer over Wifi, it is best to put it in a low power consumption mode to avoid Battery Wastage. Basic Mechanism: 1. STA sends out a packet to AP indicating that it is going to sleep mode. 2. AP Start buffering data for the client and indicates that there is data buffered in Beacon. 3. STA wakes up, listens to Beacon and sees if there is any data buffered for it. If no, go back to sleep. If yes, send a packet to AP to say that it is awake and send the buffered data. 4. AP after sending th
Read more