Networking nerds claim to have devised a way of breaking Wi-Fi Protected Access (WPA) encryption within 60 seconds.

The technique, developed by Toshihiro Ohigashi of Hiroshima University and Masakatu Morii of Kobe University, is based on the established Becks-Tews method, which involves making minor changes to packets encrypted with TKIP - Temporal Key Integrity Protocol, a WPA security mechamism - and then sending those packets back to the access point.

However, the Becks-Tews method is known to take anywhere between ten and 15 minutes to execute.

In a recently released paper, Ohigashi and Morii proposed a man-in-the-middle style of attack – also used by the Beck-Tews approach – in which a user’s communication is intercepted by an attacker.

This approach carries a high risk of detection, the pair admitted, so being able to shorten the attack time down to under one minute is a major advantage – to potential hackers, at least.

Ohigashi’s and Morii’s technique doesn’t work in WPA 2 – the AES-based successor to WPA.

The pair will formally unveil their technique at a conference in Hiroshima, Japan late next month. ®

Related stories

• Consumers urged to step up wireless security (3 February 2011)
• Wireless network security weakness to demo at DEFCON (27 July 2010)
• Intel stuffs speedy security into silicon (17 June 2010)
• Service cracks wireless passwords from the cloud (7 December 2009)
• Bloggers howl after conference snoops on 'secure' network (15 October 2009)
• Wi-Fi body to highlight 802.11n aerial counts (30 September 2009)
• Notorious hacker Analyzer pleads guilty on credit card scam (26 August 2009)
• Liberty launches McKinnon paper plane campaign (24 August 2009)
• Updated Besieged by attacks, AT&T dumps celebrity hacker (19 August 2009)
• Open-source firmware vuln exposes wireless routers (21 July 2009)
• Linksys router ripe for remote takeover (1 June 2009)