conference logo

Playlist "34C3: TUWAT"

KRACKing WPA2 by Forcing Nonce Reuse

Mathy Vanhoef

We introduce key reinstallation attacks (KRACKs). These attacks abuse features of a protocol to reinstall an already in-use key, thereby resetting nonces and/or replay counters associated to this key. We show that our novel attack technique breaks several handshakes that are used in a WPA2-protected network.