I wanted to know if an attacker can do manual associations of random MAC addresses with the access point.
Can it be done in case of WPA2 encrypted networks too, i mean the complete four way handshaking involved during authentication?
You can certainly fake a mac-address, then associate to any access point regardless of its security, but the security may authenticate the mac and then reject you. Some WPA networks perform mac filtering, or RADIUS MAC based authentication.
wpa2-personal networks usually authenticate a PSK, not the mac address, so you can fake it yest.
wpa2-enterprise networks usually authenticate a certificate or other credentials, so you can fake it yes. The network may then reject the mac address if its not in DHCP etc.
It depends what type of authentication you are doing.
If you do "open authentication", it is possible for any attacker to fake a MAC address.
If you do "shared-key authentication", then it becomes more difficult because authentication is done using the pre-shared secret key, rather than a MAC address.
Bear in mind that if your wireless network uses DHCP, it is very likely that you will need to have an additional authentication layer to stop DHCP from giving out IP address automatically.
- Badges
- Science topic