mfsu21
07-24-2003, 10:11 AM
I'm trying to analyze airsnort and how it works. I understand it uses the FMS theory to get the WEP key but what I don't understand and can't seem to find a definition that I understand, what is considered a weak IV? I have the definition in the documentation of AirSnort.
"Useful packets defined by Schmoo are those packets where the first byte in the Initialization Vector is a number three greater than one of the offsets of the bytes of the key. For 128 bit encryption, this means a number from 3-16. The second byte must be 255 and the third byte can have any value. This means that for every byte of the key, there are 256 weak IVs."
Now I've also read that wireless cards based on the Lucent technology reset the IV everytime the card is removed and inserted into the laptop. Are the lower number IV's weak IV's just because there is a possibilty of them reocurring more often? Or is there some senerio where the key is just weak like in the Schmoo definition?
Thanks for the input.
Mike
"Useful packets defined by Schmoo are those packets where the first byte in the Initialization Vector is a number three greater than one of the offsets of the bytes of the key. For 128 bit encryption, this means a number from 3-16. The second byte must be 255 and the third byte can have any value. This means that for every byte of the key, there are 256 weak IVs."
Now I've also read that wireless cards based on the Lucent technology reset the IV everytime the card is removed and inserted into the laptop. Are the lower number IV's weak IV's just because there is a possibilty of them reocurring more often? Or is there some senerio where the key is just weak like in the Schmoo definition?
Thanks for the input.
Mike