802.11 Wireless Attacks & Detection/Defense  Home ToC Prev Up Next 
802.11 overview
Link layer
MAC header
+AUTH frame
DEAUTH frame
802.1x
802.11i
Attacks
Detection
Defense
Conclusion
  

AUTH frame

Authentication frame

  • type = 0x00 (Management), subtype = 0x0B

  • provides an authentication of device to AP. The device can be authenticated to many AP. There are various ways of authentication:

    • Open authentication (null authentication algorithm) - if encryption is not enabled in the network, any device that knows the SSID can gain access to the network. Otherwise if a device does not have the correct WEP key (and its authentication is successful), the device will be unable to transmit data through the AP.

    • Shared key authentication - the client and AP have to use a static shared WEP key. After the client sends an authentication request to the AP, the AP responds with an authentication response containing challenge text. The client encrypts the challenge text with its WEP key and replies with a subsequent authentication request. If the AP can decrypt this request and retrieve the original challenge text, it grants the client access.

    • MAC address authentication - an additional mechanism to the open shared key authentications that reduces the likelihood of unauthorized devices accessing the network
Copyright © 2005 Pavol Luptįk, ICZ a.s.  Prev Next