Support for WPA2 Enterprise EAP-PWD

RFZ
Posts: 6
Joined: Mon Aug 21, 2017 12:37 am

Support for WPA2 Enterprise EAP-PWD

Postby RFZ » Fri Dec 22, 2017 1:02 am

Hi,
I've found very little information about using WPA2 Enterprise and even less about EAP-PWD.
While EAP-MSCHAPv2 and EAP-TTLS require certificates and have known security issues, EAP-PWD only uses username and password and is, as far as i know, considered secure at the moment.
Is there support (planned) for EAP-PWD? Thx

RFZ
Posts: 6
Joined: Mon Aug 21, 2017 12:37 am

Re: Support for WPA2 Enterprise EAP-PWD

Postby RFZ » Sun Jan 20, 2019 7:05 pm

Since I don't see any progress here... Is there a way to implement EAP-PWD (or any other EAP method) within the user application code?
If I understand the WPA2 4-Way handshake right, it doesn't care about the EAP method used. At the end of the EAP auth you always get a PMK that is used for the WPA2 connection. Is there a way to set this PMK?

AgentSmithers
Posts: 195
Joined: Sat Apr 01, 2017 1:21 am
Contact:

Re: Support for WPA2 Enterprise EAP-PWD

Postby AgentSmithers » Tue Jan 22, 2019 1:37 am

RFZ wrote:Since I don't see any progress here... Is there a way to implement EAP-PWD (or any other EAP method) within the user application code?
If I understand the WPA2 4-Way handshake right, it doesn't care about the EAP method used. At the end of the EAP auth you always get a PMK that is used for the WPA2 connection. Is there a way to set this PMK?


Hi RFZ,
In order to implement EAP-PWD don't you need access to the 802.11 Frames. I don't believe you can cast Management 08 Frames in this SDK due to them locking it down. If the management frames are not required It may be possible. I have not yet touched on this topic but I'm getting to the point where I will have too in the next week or so. If you find a way out post back here and maybe we can tackle it together! :)

RFZ
Posts: 6
Joined: Mon Aug 21, 2017 12:37 am

Re: Support for WPA2 Enterprise EAP-PWD

Postby RFZ » Tue May 07, 2019 4:44 am

AgentSmithers wrote:In order to implement EAP-PWD don't you need access to the 802.11 Frames.

I guess so, yes. But since there are lots of projects like the wifi deather, I don't think sending raw frames / management frames is an issue... But I'm not sure. e.g. https://github.com/spacehuhn/esp8266_deauther

AgentSmithers
Posts: 195
Joined: Sat Apr 01, 2017 1:21 am
Contact:

Re: Support for WPA2 Enterprise EAP-PWD

Postby AgentSmithers » Wed May 08, 2019 12:48 am

RFZ wrote:
AgentSmithers wrote:In order to implement EAP-PWD don't you need access to the 802.11 Frames.

I guess so, yes. But since there are lots of projects like the wifi deather, I don't think sending raw frames / management frames is an issue... But I'm not sure. e.g. https://github.com/spacehuhn/esp8266_deauther


I just tried this last week and failed. I have an Oracle Box image I can send you to try out with me if you wanna give it a shot?
I'd like to get it working as well..
Got a skype?

Who is online

Users browsing this forum: No registered users and 181 guests