‘Krack’ security flaw
Researchers reveal major wi-fi fault puts devices at risk
The wi-fi connections of businesses and homes around the world are potentially at risk after a major flaw dubbed ‘Krack’ was discovered.
It concerns an authentication system which is widely used to secure wireless connections.
Experts say ‘Krack’ could leave the majority of connections at risk until they are patched.
When any device uses wi-fi to connect to a router it does what is known as a "handshake": it goes through a four-step dialogue, whereby the two devices agree a key to use to secure the data being passed (a "session key").
The attack begins by tricking a victim into reinstalling the live key.
"This is a flaw in the standard, so potentially there is a high risk to every single wi-fi connection out there, corporate and domestic,” Computer security expert Prof Alan Woodward told the BBC.
"The risk will depend on a number of factors including the time it takes to launch an attack and whether you need to be connected to the network to launch one, but the paper suggests that an attack is relatively easy to launch.
"It will leave the majority of wi-fi connections at risk until vendors of routers can issue patches."
To read the BBC report in full visit http://www.bbc.co.uk/news/technology-41635516