Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

cross mob

Introduction: WPA2-Personal Attack using PMKID

lock attach
Attachments are accessible only for community members.

Introduction: WPA2-Personal Attack using PMKID

MichaelF_56
Moderator
Moderator
Moderator
250 sign-ins 25 comments on blog 10 comments on blog

WPA2-Personal is vulnerable to a standard dictionary attack using a captured successful “4-way handshake”. Recently, it was demonstrated that a similar dictionary style attack can be done with a captured Pairwise Master Key Identifier (PMKID) instead of a successful 4-way handshake (see: https://hashcat.net/forum/thread-7717.html). Public visibility of a PMKID is by design and is not considered a security risk/flaw in the protocol. The availability of the PMKID does not significantly affect the effort needed to perform the dictionary attack.

0 Likes
345 Views
Authors