Explore the intricacies of WiFi security in this 31-minute Black Hat conference talk. Delve into the unique challenges faced by WiFi networks due to their use of unprotected air as a medium. Trace the evolution of WiFi security protocols alongside the development of WiFi technology itself. Examine persistent vulnerabilities in WiFi protocols and implementations, even with the advent of WiFi 6 and WPA3. Learn about the Owfuzz architecture, fuzzing strategies, and anomaly detection techniques. Discover various WiFi attack surfaces, including authentication DoS, (re)association DoS, beacon DoS, and channel-based MitM attacks. Gain insights into WiFi protocol families, elements, extensions, and protocol stack implementations. Understand frame fuzzing mutation strategies and Qualcomm IEs parsing. Conclude with a comprehensive overview of discovered vulnerabilities and their implications for WiFi security.
Overview
Syllabus
Intro
WIFI Attack Surface
WIFI Protocol Family
Elements and Element Extensions
WiFi Protocol Stack Implementation
Owfuzz Architecture
Fuzzing Status And Anomaly Detection
Frame Fuzzing Mutation Strategy
Qualcomm IEs Parsing And Mandatory Check
Discovered Vulnerabilities
Authentication Dos
(Re)Association Dos
Beacon Dos
Channel Switch Announcement(CSA)
Extended Channel Switch Announcement
ECSA Channel-Based MitM
Conclusion
Taught by
Black Hat
