subject:"\[cryptography\] RC4 Forevar\! \[was\: RC4 is dangerous in ways not yet known \- heads up on near injection WPA2 downgrade to TKIP RC4\]"

Re: [cryptography] RC4 Forevar! [was: RC4 is dangerous in ways not yet known - heads up on near injection WPA2 downgrade to TKIP RC4]

2014-10-13 Thread coderman

On 10/12/14, coderman coder...@gmail.com wrote: ... also, the definitive paper at http://www.isg.rhul.ac.uk/tls/ still insists, For WPA/TKIP, the only reasonable countermeasure is to upgrade to WPA2. which is either incompetently incorrect, or intentional indirection. there is a third

[cryptography] RC4 Forevar! [was: RC4 is dangerous in ways not yet known - heads up on near injection WPA2 downgrade to TKIP RC4]

2014-10-12 Thread coderman

On 9/22/14, coderman coder...@gmail.com wrote: ... Please elaborate. TKIP has not been identified as a ‘active attack’ vector. hi nymble, it appears no one cares about downgrade attacks, like no one cares about MitM (see mobile apps and software update mechanisms). [0] to be specific