802.1x and Beyond!

by Brad Antoniewicz
Sept. 19, 2017 1 comment Black Hat belen_caty Apps & Hardening

IEEE 802.1x has been leveraged for a long time for authentication purposes. Up until this point, little has been done to help researchers expose vulnerabilities within the systems that implement the protocol. In this talk, we'll dissect IEEE 802.1x, its surrounding protocols (RADIUS/EAP), provide testing tools, and detail a number of vulnerabilities identified in popular supporting systems. We'll wrap up demonstrating a vulnerability within a RADIUS server that allows for remote code execution over 802.11 wireless using WPA Enterprise before the user is authorized to join the network.

https://www.blackhat.com/us-14/archives.html#802-1x-and-beyond

Avatar
Irina Alexandra Negrii 7 months ago

i have read here a fresh approach which has been designed from the ground up to be extensible, flexible and agile to enable new use cases, address existing challenges and leverage the intelligence of the network

Reply