Just dreaming: different WEP keys per client
Denis Vlasenko
vda
Sat Apr 24 07:50:05 PDT 2004
On Friday 23 April 2004 09:42, Konstantin Klubnichkin wrote:
> Hello people!
>
> I was dreaming last evening about per client WEP encryption.
> As far as I understand (please correct me) there are 2 ways to
> encrypt/decrypt data - in firmware and in hostapd.
Since WEP is broken, it's better to use something else.
IPSec maybe.
> In case we use second way it's may be interesting to implement such
> feature.
>
> I thought about it in a scope of public WiFi cafe. When client gets
> (buys) account information (login/password) and wants to encrypt
> his/her traffic we also give him WEP key. The problem is - once you
> know WEP key of one client - you know WEP key for whole network.
> It's allmost impossible to force client to use WPA-PSK because of
> complexity of the process. Moreover once "bad guy" gets passphrase he
> can decrypt all WiFi traffic in our network.
--
vda
More information about the Hostap
mailing list