There has been a lot of recent publicity about problems with WEP, and it is easy to gain the impression that WEP is so fundamentally broken as to be useless. This white paper describes practical experience of running two of the most well known cracking tools in order to measure their performance. It shows that these tools are not in general as effective as some in the media have claimed, and that they are completely defeated by techniques such as weak IV avoidance which many manufacturers are now implementing. The paper then goes on to describe other known weaknesses in WEP, which while not available to the “hacker in the street” could be used for industrial or state espionage. A standard approach to protect against this sort of attack is described.

For more information on WEP, visit Synad Technologies’ Web site.