Adtran
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
username1
New Contributor II
‎10-16-2017 07:45 AM

'KRACK' hack on WiFi authentication

Jump to solution

"TL;DR on the KRACK WPA2 stuff - you can repeatedly resend the 3rd packet in a WPA2 handshake and it'll reset the key state, which leads to nonce reuse, which leads to trivial decryption with known plaintext. Can be easily leveraged to dump TCP SYN traffic and hijack connections."

Wi-Fi security has been breached, say researchers - The Verge

KRACK: Researcher discovers flaws in WPA2 authentication | CSO Online

I know it's early, but will we be notified about any updates or patches that are available for the BlueSocket APs and controllers?

0 Kudos
Reply
1 Solution

Accepted Solutions
Anonymous
Not applicable
‎10-16-2017 10:24 AM

Re: 'KRACK' hack on WiFi authentication

Jump to solution

Jared.

We are investigating the issue and a potential fix if needed and will be looking to post a security vulnerability notice shortly with information. Our Software Notifications​ section will send out a note to all signed-up users if and when that becomes available.

Thanks,

Evan

ADTRAN Product Support Engineer

View solution in original post

Reply
5 Replies
Anonymous
Not applicable
‎10-16-2017 10:24 AM

Re: 'KRACK' hack on WiFi authentication

Jump to solution

Jared.

We are investigating the issue and a potential fix if needed and will be looking to post a security vulnerability notice shortly with information. Our Software Notifications​ section will send out a note to all signed-up users if and when that becomes available.

Thanks,

Evan

ADTRAN Product Support Engineer

Reply
krisg
New Contributor
‎10-17-2017 11:41 AM

Re: 'KRACK' hack on WiFi authentication

Jump to solution

Evan at ADTRAN,

Will the potential fix support the BSAP-1800 models when Adtran has it available? And how do you download and install these fixes to each Access Point? Thanks.

0 Kudos
Accept as Solution Reply
Anonymous
Not applicable
‎10-18-2017 01:20 PM

Re: 'KRACK' hack on WiFi authentication

Jump to solution

Kris,

ADTRAN WPA2 KRACK Attack Advisory (ADTSA-KRA1001 REV A) explains the situation more. At this point, I do not know if there will be a version of software for the BSAP-1800 as it has been End of Life since June 31st of 2016. You can sign up for Software Notifications​ for your specific products to be advised when they are released.

Thanks,

Evan

ADTRAN Product Support Engineer

0 Kudos
Accept as Solution Reply
nskarim
New Contributor
‎10-31-2017 10:39 AM

Re: 'KRACK' hack on WiFi authentication

Jump to solution

Hi Evan,

Is 3.0.1-HB a full release or just a patch which will require to be on 3.0.1 to apply it?

Regards

/Karim

0 Kudos
Accept as Solution Reply
Anonymous
Not applicable
‎10-31-2017 10:41 AM

Re: 'KRACK' hack on WiFi authentication

Jump to solution

3.0.1-HB will be an AP build only. You will need to be running vWLAN version 3.0.1 to support it on the APs.

Accept as Solution Reply