Wi-Fi Gets More Secure: Everything You Need to Know About WPA3 – IEEE Spectrum

https://spectrum.ieee.org/tech-talk/telecom/security/everything-you-need-to-know-about-wpa3
The biggest Wi-Fi security update in 14 years was recently unveiled by the Wi-Fi Alliance. The Wi-Fi Protected Access 3 (WPA3) security certificate protocol provides some much-needed updates to the WPA2 protocol introduced in 2004.
The Wi-Fi Alliance also announced two additional, separate from WPA3 certification, protocols: The Enhanced Open and Easy Connect

1 Comment

  1. Tomi Engdahl says:

    Computer Security Researchers: WPA3 Could Have Been Better, Stronger
    https://spectrum.ieee.org/tech-talk/telecom/security/computer-security-researchers-think-more-could-have-been-done-for-wpa3

    Wi-Fi Protected Access 2, or WPA2, had a good run. But after 14 years as the go-to wireless security protocol, cracks inevitably start to show. That’s why, over the summer, the Wi-Fi Alliance announced the protocol’s successor, WPA3, after teasing its capabilities in press releases since the beginning of the year.

    The big change from WPA2 to WPA3 is in the way devices greet a router or other access point to which they are trying to connect. WPA3 introduces a greeting, or handshake, called a Simultaneous Authentication of Equals (SAE).

    So SAE solves some big vulnerabilities of WPA2—an important step, but maybe not enough. According to Vanhoef, the scuttlebutt in the security community is that the dragonfly handshake will prevent debilitating attacks like KRACK, but questions remain regarding whether it is good enough beyond that.

    Vanhoef says mathematical analyses of dragonfly handshakes suggest that they should be secure. “On the other hand, there were some comments and critiques [suggesting] that there were other options,” he says.

    When the Wi-Fi Alliance first announced WPA3 in a press release last January, they announced a “suite of features” to improve security. The release hinted at four features in particular. One, SAE, became the core of WPA3. Another, a 192-bit encryption scheme, is optional for large corporations or financial institutions making the switch to WPA3. The other two features never made it to WPA3.

    The features that didn’t make the cut exist as entirely separate certification programs. The first, Easy Connect, makes it simpler for users to connect their IoT devices to their home networks. The other, Enhanced Open, provides more protection for open networks, like the ones at airports and coffee shops.

    “The Wi-Fi Alliance, I think, purposefully kept their press release at the beginning of the year vague,”

    Reply

Leave a Comment

Your email address will not be published. Required fields are marked *

*

*