Notebookcheck
, , , , , ,
search relation.
, , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
 

Wi-Fi gets its biggest update in 14 years — WPA3 security protocol now official

The WPA3 security protocol is now official. (Source: Phone Year)
The WPA3 security protocol is now official. (Source: Phone Year)
The ubiquitous and all-pervasive Wi-Fi is receiving its first major update in 14 years with the announcement of the WPA3 authentication protocol by the Wi-Fi Alliance. WPA3 is the successor to WPA2, which was the target of many hackers in the last year and comes with new features that prevent offline dictionary attacks and enable forward secrecy. The protocol is available for implementation in new routers today and is expected to go mainstream by 2019.
, , , , , ,
search relation.
, , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
 

There are an estimated 9 billion Wi-Fi enabled devices in the wild today and for almost a decade and a half, they have been using the WPA2 (Wi-Fi Protection Access) authetication protocol making them a ripe target for hackers of all kinds. Add to the fact that most Wi-Fi passwords are simple dictionary words or the neighbor's dog's name and you have a perfect recipe for disaster. All that will soon be a thing of the past thanks to WPA3 — the Wi-Fi Alliance's update to the ageing WPA2 security protocol. Yes, it has taken them 14 years to develop but it couldn't have come at a better time.

WPA3 will support two distinct operation modes — WPA3-Personal and WPA3-Enterprise. WPA3-Personal offers high resilient, password-based authentication even when the passwords themselves do not conform to the specified complexity requirements. WPA3-Personal uses Simultaneous Authentication of Equals (SAE) that helps prevent offline dictionary attacks. Hackers use offline dictionary attacks to physically eavesdrop on communications and try a brute-force attack by cycling through dictionary phrases till they find a match. While offline dictionary attacks are difficult for complex passwords, the average Joe might just use his surname and year of birth totalling up to 8 characters making the attack relatively simple. SAE prevents this process by restricting the ability to make only a single guess at a time. Every time the hacker wants to guess a password, he/she would have to interact live with the router, which will have the necessary protections built-in to prevent repeated guessing. 

WPA3-Personal is also getting another feature called forward secrecy. It basically means that even if a hacker manages to breach your credentials, devices can encrypt the transmission that occured prior to the attack. WPA2, on the other hand, made it easy to decrypt the older information as well. Likewise, the enterprise is also getting its own share of security measures in the form of WPA3-Enterprise. WPA3-Enterprise comes with a 192-bit cryptographic strength to protect sensitive government and financial data.

The Wi-Fi Alliance is also introducing a new feature called Wi-Fi Certified Easy Connect that helps in easy onboarding of Wi-Fi devices that have limited or no displays such as Internet of Things (IoT) devices, which were previously highly vulnerable on traditonal WPA2 networks. Wi-Fi Easy Connect works with a WPA3 device and pairs them securely via a QR code. Also in the offing is Wi-Fi Enhanced Open, which uses Opportunistic Wireless Encryption to automatically encrypt wireless data in public places such as coffee shops and airports. This effectively prevents man-in-the-middle attacks or any form of traffic snooping.

Implementing WPA3 will not be mandatory for new products but devices that support 802.11ax will have to inevitably support it. Over the coming months, new devices must support WPA3 in order to be Wi-Fi Certified. Of course, WPA3 devices will still continue to support the WPA2 protocol so you can still connect to existing networks at home or work. Similar to WPA2, WPA3 will receive maintanance updates during its lifetime to address security concerns as they keep coming.

All these changes are under the hood. For the end user, though, it is still a matter of typing a password to connect to the network. If you are in the market for a new Wi-Fi router, it makes sense to wait and ensure that your new purchase is WPA3-ready. Better still, a WPA3-ready 802.11ax router will make for a future-proof purchase but it could be sometime before such a combination goes mainstream. 

Source(s)

+ Show Press Release
, , , , , ,
search relation.
, , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
 
Read all 1 comments / answer
static version load dynamic
Loading Comments
Comment on this article
Vaidyanathan Subramaniam
Vaidyanathan Subramaniam - Managing Editor - 1353 articles published on Notebookcheck since 2012
Though a cell and molecular biologist by training, I have been drawn towards computers from a very young age ever since I got my first PC in 1998. My passion for technology grew quite exponentially with the times, and it has been an incredible experience from being a much solicited source for tech advice and troubleshooting among family and friends to joining Notebookcheck in 2017 as a professional tech journalist. Now, I am a Lead Editor at Notebookcheck covering news and reviews encompassing a wide gamut of the technology landscape for Indian and global audiences. When I am not hunting for the next big story or taking complex measurements for reviews, you can find me unwinding to a nice read, listening to some soulful music, or trying out a new game.
contact me via: @Geeky_Vaidy
Please share our article, every link counts!
> Notebook / Laptop Reviews and News > News > News Archive > Newsarchive 2018 06 > Wi-Fi gets its biggest update in 14 years — WPA3 security protocol now official
Vaidyanathan Subramaniam, 2018-06-26 (Update: 2018-06-26)