this post was submitted on 22 Feb 2026
8 points (90.0% liked)

Cryptography @ Infosec.pub

610 readers
1 users here now

Questions, answers, discussions, and literature on the theory and practice of cryptography

Rules (longer version here)

##Related resources;

founded 2 years ago
MODERATORS
SqueamishOssifrage
TrustedThirdParty
8
AirSnitch: Demystifying and Breaking Client Isolation in Wi-Fi Networks (www.ndss-symposium.org)
submitted 1 month ago by Natanael@slrpnk.net to c/crypto
2 comments fedilink hide all child comments
 

In this paper, we undertake a structured security analysis of Wi-Fi client isolation and uncover new classes of attacks that bypass this protection. We identify several root causes behind these weaknesses. First, Wi-Fi keys that protect broadcast frames are improperly managed and can be abused to bypass client isolation. Second, isolation is often only enforced at the MAC or IP layer, but not both. Third, weak synchronization of a client's identity across the network stack allows one to bypass Wi-Fi client isolation at the network layer instead, enabling the interception of uplink and downlink traffic of other clients as well as internal backend devices. Every tested router and network was vulnerable to at least one attack. More broadly, the lack of standardization leads to inconsistent, ad hoc, and often incomplete implementations of isolation across vendors.

you are viewing a single comment's thread
view the rest of the comments
[–] Natanael@slrpnk.net 1 points 1 month ago

I'm assuming this is the same type of attack as against WiFi passwords in general, bruteforce of weak passwords. But otherwise yes, a PAKE algorithm instead for auth would completely prevent the ability to bruteforce based on watching traffic alone, and WPA3 already uses a PAKE and it should be used for everything which could be low entropy