Question

Write a brief report on KRACK Attack . The report should include how the attack works ? How the devices can be protected against this attack

Answer 1

KRACK ATTACKS (Key Reinsallation Attacks)

Krack attack is an attacking technique in which the attack is done by exploiting vulnerabilities found in a WPA2 security protocol. It is basically done by exploiting the 4-way handshake of a WPA2 protocol. 4-way handshake is a type of authentication protocol on delivering data throuhg a network. This authentication happens when a system is connected to a Wi-Fi network.the access-point provides an encryption key which will be used to encrypt the traffic.

If a proper response is not delivered, it means a particular message is dropped or lost. So the access-point resend the third message of the 4-way handshake. By this the user may receive repeated message. Each message reinstalls the same encryption key and reset the transmit number called nonce. By Krack Attacks, the attacker forces these nonce resets by collecting and replaying retransmission of message 3 of 4-way handshake. Thus the encryption is is attacked and creates a fake access-point then interferes to the network collect personal informations, manipulate data and inject malwares.

Protection against Krack Attacks

• Both software and hadware of every devices should be upated and patched
• Turn off public sharing when the device is connected to a WiFi network which is unsecure.
• Turn off WiFi connection when you are not using it.
• Make sure that you have an advanced antivirus while using a public network.
• Make use of two-factor authentication feature for social accounts and email.
• Use an antispyware software.
• Use VPN(Vrtual Private Network) while connecting to a public or unsecured network.