SSID Confusion, kusagadzikana kweWiFi uko kunonyengedza vanobatwa kuti vabatanidze kune isina kuchengetedzeka network

SSID Kuvhiringidzika, kusagadzikana kunoshandisa chikanganiso chekugadzira muyero yeWiFi

Chikwata che vatsvakurudzi veCatholic University yeLouvain muBelgium kuziviswa, kuburikidza ne blog post, ruzivo nezve "SSID Confusion", nzira yekurwisa inobvumira vanobatwa kunyengerwa kuitira kuti vabatane kune mashoma akachengeteka network uye nekudaro vanobata traffic yavo

Uku kurwisa inoshandisa kukanganisa kwekugadzira muIEEE 802.11 standard, kubvumira vanorwisa kuti vanyengedze vakakuvadzwa kuti vabatanidze kune network yenhema vachishandisa zita retiweki re spoofed (SSID). Kana yangobatanidzwa, munhu anenge abatwa anoratidzwa panjodzi yekubatwa kwetraffic uye kunyengedzwa. Pamusoro pezvo, vamwe vatengi veVPN vane otomatiki deactivation basa kana vachibatanidza kune "yakavimbika" WiFi network inogona kudzimwa nekurwiswa uku.

Masangano edzidzo, anosanganisira mayunivhesiti eUnited Kingdom, United States nedzimwe nyika, ari panjodzi zvakanyanya nekuda kwekushandisa zvakare magwaro. Pamusoro pezvo, imba nebhizinesi WiFi network inokanganiswa, kunyanya ayo anoshandisa WPA3 protocol, pakati pevamwe.

Nezve SSID Kuvhiringidzika

Yakawanikwa muna Chivabvu 2024 uye yakanyorwa pasi peCVE-2023-52424, SSID Confusion, injodzi muIEEE 802.11 Wi-Fi chiyero icho inokubvumira kunyengedza mushandisi kuti abatanidze kune isina kuchengetedzeka isina waya network pachinzvimbo chetiweki inovimbwa nayo yaiitirwa kubatana nayo, zvichiita kuti zvive nyore kubata uye kushandura traffic. Kusagadzikana uku kunokanganisa masisitimu asina waya echero sisitimu yekushandisa uye kukanganisa WPA3, WEP, EAP, AMPE, uye FILS nzira dzechokwadi.

SSID Kuvhiringidzika, inobvumidza iwe kuti upfuure nzira dzekugonesa nzira muprotocol, inodzivirira kubva pakutsiva yeSSID network identifier uye kudzivirira kusikwa kwemanetwork emanyepo ane zita rakafanana netiweki inosanganisirwa nemutengi. Zvinotaurwa izvozvo Mudzi wedambudziko uri mukutsanangurwa kwakajairika kwemamiriro ezvinhu umo SSID inogona kunge isina chokwadi. Kunyanya, kuratidza kuvepo kwayo, nzvimbo yekupinda inoburitsa mabhekoni mafuremu anosanganisira ruzivo nezve network yeSSID. Kuti ufambise maitiro ekuwanikwa kwetiweki, vatengi havatendese iyo SSID mumafuremu aya, sezvo zvichifungidzirwa kuti kuoneswa kunozodiwa mushure mekunge mutengi afunga kubatanidza kunetiweki.

Kuita kurwisa uku, mushandisi anofanira kutanga kubatana kune chaiyo isina waya network uye panofanira kunge paine imwe isina waya network iri pedyo ine maparamendi akafanana kubatana kupfuura yekutanga network. Izvi zvinogona kuitika, semuenzaniso, kana manetwork akasiyana akagadzirwa e2,4 GHz uye 5 GHz mabhendi, imwe yacho ichidzivirirwa zvisina kusimba uye panjodzi yekurwiswa kwakajairwa kwetraffic interception seKRACK kana Frag. Anorwisa anofanira kunge ari mukati mechiratidzo chechiratidzo kuti asvike pakati pemushandisi netiweki inotangwa (MitM). Zvakakosha, kuti aite kurwisa uku, anorwisa haafaniri kuziva magwaro emunhu anenge abatwa.

Kurwiswa kunobva pane anorwisa achigadzira nzvimbo yekuwana (inonzi WrongAP) inotepfenyura zvikwangwani pane imwe chiteshi kune inetiweki isina kuchengetedzeka yekunyepedzera, uko mutengi anobatanidza panzvimbo yetiweki inodiwa. Iyi nzvimbo yekupinda inogona kugadzirwa uchishandisa yakajairika laptop uye inoshandiswa kuita akawanda-channel MitM kurwisa munhu akabatwa.

Kurwisa kunoitika mumatanho matatu:

  1. Network kuwanikwa: Iyo MitM system inobata mapaketi anotumirwa pamusoro pemhepo nemunhu akabatwa uye yakavimbika yekuwana nzvimbo (TrustedNet), ichitsiva iyo SSID mavari. Mumapaketi kubva panzvimbo yekuwana, iyo SSID inotsiviwa nechiziviso chetiweki isina kuchengetedzeka, uye mumhinduro kubva kune akabatwa kune network chaiyo, kutevedzera kupindirana pakati pemutengi nenzvimbo yakavimbika yekuwana. Nekuda kweizvozvo, mudziyo weanobatwa unogamuchira mhinduro uye unotenda kuti network inodiwa iri pedyo, kunyangwe mhinduro idzi dzichifambiswa nenzvimbo yekupinda yeanorwisa.
  2. Authentication hijacking: Anorwisa anonyepera chokwadi chakabudirira uye anomanikidza mutengi kuti abatanidze kune inetiweki isina kuchengetedzeka pane network yakavimbika. Panguva ino, anorwisa anobata mafuremu anotumirwa panguva yekutenderwa nemutengi, anotsiva iyo SSID mavari uye oaendesa kunzvimbo yekuwana.
  3. MitM: Mushure mekugadzira nzira yekutaurirana, anorwisa anotsiva iyo WrongNet SSID neTrustedNet, zvichiita kuti munhu afunge kuti mushandisi ari kushanda netiweki inovimbwa kwete network yakachengeteka zvishoma.

Kudzivirira kubva kurudzi urwu rwekurwiswa padivi rekupinda, iyo 802.11 chiyero inotaura kudiwa kweSSID yechokwadi pane yekubatanidza, iyo inogona kuwanikwa nekuwedzera iyo SSID kuchizvarwa chakakosha kana kuisanganisira se data rakawedzerwa rakasimbiswa panguva yekubatanidza nhaurirano. Manetiweki manejimendi anogona kudzivirira idzi mhando dzekurwiswa nekudzivisa kugovana zvitupa pakati pemanetiweki ane akasiyana maSSID. Kune chikamu chavo, vashandisi vanogona kuzvidzivirira nekushandisa VPN dzakavimbika kana vachibatanidza pane chero isina waya network.

Chekupedzisira, kana iwe uchifarira kugona kuziva zvakawanda nezvazvo, unogona kutarisa ruzivo mu chinotevera chinongedzo.


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira data: AB Internet Networks 2008 SL
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako