A WPA protocol that:
- Uses AES-128 encryption in CCMP
- Can be optionally backwards compatible to include TKIP, but its not recommended
- Uses a 4-way handshake to share the PSK
- Not secure
- Requires authentication with RADIUS
PSK Problem (WPA2 Only)
- Attacker listens to the 4 way handshake and steals the PSK hash
- Attacker brute forces the hash to find the PSK
- The PSK can be used to decrypt the network password