====== 2010.02.28 - new WPA/TKIP flaw ======

3 days ago [[http://www.aircrack-ng.org|Martin Beck]] published new attack against WPA/TKIP networks -- aka [[http://download.aircrack-ng.org/wiki-files/doc/enhanced_tkip_michael.pdf|Enhanced TKIP Michael Attacks]]. TKIP once again shown to be weak, since it's only any improvement and temporary (!) replacement for WEP.

if you have WEP, you don't have security at all. if WPA/TKIP is of your choice, unless you have very short (~100[s]) key switching interval, it can be sniffed and decrypted as well. once again it appeared that only WPA2 does the trick, assuming non-trivial password off course...