WLAN Book: WLAN, Wireless Local Area Networks, Wireless LAN Security, Wireless Intrusion Prevention VisiWave - Visualize Your Wireless Network
April 4th, 2007

Man-In-The-Middle (MITM) Attack

A man-in-the-middle (MITM) attack occurs when an attacker inserts himself between two devices and is able to read, insert, modify messages between the two devices.

The most difficult part of a MITM attack in wired networks is getting in the middle without being detected. Usually this requires physical access to the network increasing the chances of being discovered.

In wireless network an attacker can insert his device in the the path of communication remotely and never expose himself making this one of the most dangerous types of wireless attacks. A MITM attack can be used to break connections such as SSL, SSH and VPN.

A wireless MITM utilizes a rogue access point, rogue station and phishing to exploit a user connected to the wireless network. Usually the rogue access point is implemented as a software based AP using a PC with dual wireless network interfaces.

Man-In-The-Middle Attack

mitm.jpg

(image source)

Share and Enjoy:
  • Digg
  • Reddit
  • del.icio.us
  • StumbleUpon

Related Posts

If you liked this post, subscribe using below

WLAN Book RSS Feed

RSS Email WLAN Book by Email

.

Filed under: WLAN Security

2 Responses to “Man-In-The-Middle (MITM) Attack”

  1. Zaib Kaleem » Blog Archive » ‘Evil Twin’ Wi-Fi Access Points Proliferate said:

    [...] points are more likely to exist when the attacker is planning a more sophisticated attack such as a man-in-the-middle (MITM) attack. The evil twin access point would by used by the attacker to get between a secure communications [...]

    Posted on April 29th, 2007 at 7:03 am
  2. agung said:

    dear writer,
    is there any change in performance if a host is attacked with MITM attack? i mean in its wireless network performance. Can we count it? with iperf maybe?

    Posted on October 23rd, 2007 at 12:55 am

Leave a Reply