diff options
| author | Jouni Malinen <jouni.malinen@atheros.com> | 2008-11-06 19:57:21 +0200 |
|---|---|---|
| committer | Jouni Malinen <j@w1.fi> | 2008-11-06 19:57:21 +0200 |
| commit | 581a8cde77670ba7de2cce57f4a723ba435df9b7 (patch) | |
| tree | d06cf58048193c7a10dc8e6de59fc414124fffcc /hostapd/ChangeLog | |
| parent | 81eec387dd7c1f4521822e48023e950dfa7b5a52 (diff) | |
| download | external_wpa_supplicant_8_ti-581a8cde77670ba7de2cce57f4a723ba435df9b7.zip external_wpa_supplicant_8_ti-581a8cde77670ba7de2cce57f4a723ba435df9b7.tar.gz external_wpa_supplicant_8_ti-581a8cde77670ba7de2cce57f4a723ba435df9b7.tar.bz2 | |
Added support for enforcing frequent PTK rekeying
Added a new configuration option, wpa_ptk_rekey, that can be used to
enforce frequent PTK rekeying, e.g., to mitigate some attacks against TKIP
deficiencies. This can be set either by the Authenticator (to initiate
periodic 4-way handshake to rekey PTK) or by the Supplicant (to request
Authenticator to rekey PTK).
With both wpa_ptk_rekey and wpa_group_rekey (in hostapd) set to 600, TKIP
keys will not be used for more than 10 minutes which may make some attacks
against TKIP more difficult to implement.
Diffstat (limited to 'hostapd/ChangeLog')
| -rw-r--r-- | hostapd/ChangeLog | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/hostapd/ChangeLog b/hostapd/ChangeLog index a8e7f4e..b2cfb5b 100644 --- a/hostapd/ChangeLog +++ b/hostapd/ChangeLog @@ -1,5 +1,10 @@ ChangeLog for hostapd +????-??-?? - v0.6.6 + * added a new configuration option, wpa_ptk_rekey, that can be used to + enforce frequent PTK rekeying, e.g., to mitigate some attacks against + TKIP deficiencies + 2008-11-01 - v0.6.5 * added support for SHA-256 as X.509 certificate digest when using the internal X.509/TLSv1 implementation |