eap-10----Page:6
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
|
Example WLAN Attack Scenario <- Rogue AP/Client -> EAP/Identity Request EAP/Identity Response (anonymous@realm) Tunnel establishment EAP/Identity Request EAP/Identity Response (user id@realm) EAP/ Request / Method Challenge EAP/Response/ Method Response EAP/ Success EAP-Method in Tunnel WLAN Session Stolen Tunnel Keys Client MitM Home AAA Server Tunnel Server AP Inner EAP Method Keys Derived & Not used Tunnel Keys Derived Tunnel Keys Derived Inner Method Keys Derived |