We show how state machine learning can be extended to handle time out behaviour and unreliable communication mediums. This enables us to carry out the first fully automated analysis of 802.11 4-Way Handshake implementations. We develop a tool that uses our learning method and apply this to 7 widely used Wi-Fi routers, finding 3 new security critical vulnerabilities: two distinct downgrade attacks and one router that can be made to leak some encrypted data to an attacker before authentication.
CITATION STYLE
McMahon Stone, C., Chothia, T., & de Ruiter, J. (2018). Extending automated protocol state learning for the 802.11 4-way handshake. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 11098 LNCS, pp. 325–345). Springer Verlag. https://doi.org/10.1007/978-3-319-99073-6_16
Mendeley helps you to discover research relevant for your work.