What is KRACK and how does it work
The KRACK WPA2 vulnerability was discovered by Mathy Vanhoef of imec-DistriNet his website on the research is here
Mathy presented some of his research on this at Black Hat on the 27 July 2017, presentation here:
If you want to learn more about the technical aspects of this vulnerability then here is a great video series by Pentester Academy and Mojo Networks
Do I need to turn off my wireless networks?
No you do not need to start turning off all your wireless networks. As stated in the Wi-Fi Alliance update, there is no evidence that the vulnerability has been exploited maliciously yet. It is also worth noting that for this attack to be successful an attacker must be in close proximity and it requires a sophisticated attack. Sensitive corporate data is often sent using TLS which will not be affected by this attack.
Out of the 10 vulnerabilities 9 of them are client side, so keeping your clients patched is the best way to protect against the KRACK attack. Vendors have known about these vulnerabilities for a few months now and many have already released patches or will be soon.
Vulnerability CVE-2017-13082 (accepting a retransmitted Fast BSS Transition Reassociation Request and reinstalling the pairwise key while processing it) is a wireless infrastructure vulnerability relating to the 802.11r FT. This vulnerability should be patched as soon as possible and if no patch if currently provided by your infrastructure vendor, perhaps disabling 802.11r FT until a patch is available would be the best approach.
1st May 2017: Hello and welcome to day #1 of the Wireless LAN Association! It’s an exciting day, with the birth of a new voice within the wireless LAN community.
Formed as an evolutionary step from the original Wireless LAN advisory board (WLANAB), the new WLA aims to continue the invaluable design standardization work of the WLANAB and to provide a professional association for Wi-Fi professionals of all abilities.
The original Wireless LAN Advisory Board was established in early 2016 with the sole purpose of creating a definitive set of industry standard Wi-Fi networking design guidelines. Although the industry has a plethora of vendor Wi-Fi design recommendations, an online community of wireless LAN professionals felt that a set of vendor neutral design guidelines would be invaluable to both individuals and vendors alike.
After discussions spanning many months through 2015/16, it was agreed to set up the WLAN Advisory Board, to start the important task of standardization of Wi-Fi network design. The WLANAB was formed during a series of webinar meetings where an initial organisational structure was created. Elected officials were assigned various roles and a set of rules were hammered out to provide the foundations of an official, well-established organization. Membership of the WLAN was free to anyone who wanted to come along and join the effort to create the WLAN design standards documents.
During the discussions with wireless LAN professionals about the WLANAB, it became clear that many individuals felt that they would like to be part of the WLANAB purely because of its association with many of their peers within the Wi-Fi industry. They didn’t necessarily want to be part of the standards creation process, but wanted to be a part of a vendor-neutral community or organization that includes other wireless LAN professionals like themselves.
The WLANAB executive committee entered into discussions with both members and other industry professionals. After polling all existing members, it was decided to enhance, extend and re-brand the WLANAB to become the “Wireless LAN Association”. The executive committee was extended to bring in new officials for the increased scope of the new organization. An additional operations committee formed to fulfil the additional functions of the organization and the new organisation launched on May 1st 2017.
The new organisation with continue the important work of the WLANAB in defining wireless LAN design standards. However, the new organization will also provide a new, powerful voice within the WLAN industry, consisting of individuals who are out there, designing, deploying and troubleshooting WLAN networks on a day to day basis. Their combined, vast experience and knowledge will provide a voice to help shape the WLAN industry, allow WLAN professionals to collaborate, engage and interact, and provide quality assurance for WLAN networks that the industry currently needs.
Please join up today and become part of the exciting new voice of professionals within the Wi-Fi industry!