All your Credentials are Belong to Us: On Insecure WPA2-Enterprise Configurations-Reference-Cited by-同舟云学术

All your Credentials are Belong to Us: On Insecure WPA2-Enterprise Configurations

Published:2021-11-12 Issue: Volume: Page:
ISSN:
Container-title:Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security
language:
Short-container-title:

Author:

Hue Man Hong¹,Debnath Joyanta²,Leung Kin Man³,Li Li⁴,Minaei Mohsen⁵,Mazhar M. Hammad²,Xian Kailiang¹,Hoque Endadul⁴,Chowdhury Omar²,Chau Sze Yiu¹

Affiliation:

1. The Chinese University of Hong Kong, Hong Kong, Hong Kong

2. The University of Iowa, Iowa City, IA, USA

3. The University of British Columbia, Vancouver, BC, Canada

4. Syracuse University, Syracuse, NY, USA

5. Visa Research, Palo Alto, CA, USA

Funder

US Department of Defense (DARPA)

US National Science Foundation (NSF)

Chinese University of Hong Kong (CUHK)

Publisher

ACM

Link

https://dl.acm.org/doi/pdf/10.1145/3460120.3484569

Reference62 articles.

1. [n. d.]. A Configuration File Format for Extensible Authentication Protocol (EAP) Deployments. https://tools.ietf.org/id/draft-winter-opsawg-eap-metadata-00.html. [n. d.]. A Configuration File Format for Extensible Authentication Protocol (EAP) Deployments. https://tools.ietf.org/id/draft-winter-opsawg-eap-metadata-00.html.

2. [n. d.]. CWE-297: Improper Validation of Certificate with Host Mismatch. https://cwe.mitre.org/data/definitions/297.html. [n. d.]. CWE-297: Improper Validation of Certificate with Host Mismatch. https://cwe.mitre.org/data/definitions/297.html.

3. [n. d.]. Linux WPA/WPA2/IEEE 802.1X Supplicant. https://w1.fi/wpa_supplicant/. [n. d.]. Linux WPA/WPA2/IEEE 802.1X Supplicant. https://w1.fi/wpa_supplicant/.

4. [n. d.]. Open Network Configuration. https://chromium.googlesource.com/chromium/src/+/main/components/onc/docs/onc_spec.md#EAP-configurations. [n. d.]. Open Network Configuration. https://chromium.googlesource.com/chromium/src/+/main/components/onc/docs/onc_spec.md#EAP-configurations.

5. [n. d.]. WiFi CSP - Windows Client Management | Microsoft Docs. https://docs.microsoft.com/en-us/windows/client-management/mdm/wifi-csp. [n. d.]. WiFi CSP - Windows Client Management | Microsoft Docs. https://docs.microsoft.com/en-us/windows/client-management/mdm/wifi-csp.

Cited by 6 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Attacks and vulnerabilities of Wi-Fi Enterprise networks: User security awareness assessment through credential stealing attack experiments;Computer Communications;2023-12

2. The Devil is in the Details: Hidden Problems of Client-Side Enterprise Wi-Fi Configurators;Proceedings of the 16th ACM Conference on Security and Privacy in Wireless and Mobile Networks;2023-05-29

3. SAP: A Secure Low-Latency Protocol for Mitigating High Computation Overhead in WI-FI Networks;IEEE Access;2023

4. You Cannot Fully Trust Your Device: An Empirical Study of Client-Side Certificate Validation in WPA2-Enterprise Networks;2022 IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom);2022-12

5. Network (In)security: Leniency in Protocols' Design, Code and Configuration;Proceedings of the 27th ACM on Symposium on Access Control Models and Technologies;2022-06-07