NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

ausgumbie's avatar
ausgumbie
Aspirant
Nov 07, 2017
Solved

A repeated query about AC790S and KRACK

I am going to attempt to resubmit a question I had submitted on 17th October last, but which mysteriously disappeared. The thread was found on another url. I won't bother including this as it isn't visible to me when I'm logged off and isn't listed among the "Mobile Routers, Hotspots & Modems" topics.

 

Another mystery - I've tried to include my model in the relevant place as I make this post. But all that happens is a message pops up: "Please verify that the model# and/or category are correct." I've got no idea what's going on.

 

My model: AirCard 790S (BigPond)|AC790S BigPond Wi-Fi 4G Advanced II

 

My previously-posted and "lost" thread follows. (It may be dated but I think it deserves another shot):

 

Hi all (I use an AC790S mobile hotspot),

I have a query following Mathy Vanhoef's article, "Key Reinstallation Attacks: Breaking WPA2 by forcing nonce reuse" and Netgear's "Security Advisory for WPA-2 Vulnerabilities, PSV-2017-2826, PSV-2017-2836, PSV-2017-2837".

Netgear's Security Advisory says: "Mobile hotspots are only affected while using WiFi data offloading, which is not enabled by default." It does not show my AC790S as an affected product.

However, in Mathy Vanhoef's article, he says "The attack works against all modern protected Wi-Fi networks. ... The weaknesses are in the Wi-Fi standard itself, and not in individual products or implementations. Therefore, any correct implementation of WPA2 is likely affected. To prevent the attack, users must update affected products as soon as security updates become available. Note that if your device supports Wi-Fi, it is most likely affected." (* my emphasis)

So:

(1) Can offloading be enabled in the 790S? (It's not in the 790S manual but that doesn't mean it mightn't be able to be done).

(2) How do we reconcile my quote from the Vanhoef article with Netgear's lead statement: "NETGEAR is aware of WPA-2 security vulnerabilities that affect (*some) NETGEAR products". (* my insertion).

(3) What protection will be available for "non-affected Netgear products", e.g., a 790S?

Many thanks

ausgumbie

Firmware
Mobile Routers
Security

3 Replies

  • JamesGL's avatar
    JamesGL
    Master
    Nov 16, 2017

    Hi ausgumbie,

     

    Device does not support bridging that is why it is not on the list. If the device does not have bridging option then it is not affected.

    • ausgumbie's avatar
      ausgumbie
      Aspirant
      Nov 16, 2017

      Hi James

       

      Made a bit of an error allocating "Solution" mark. Gave it to my "Thank You" note. Anyone able to change it to your post of the 15th which is the post I meant to mark?

       

      Many thanks

       

      ausgumbie