The onslaught of Bring Your Own Device(s) in recent years places a new focus on the security of wireless networks. In "The BYOD PEAP Show", Josh Yavor explores fundamental flaws in one of the most common and widely supported 802.1x authentication protocols used by countless corporate WPA2-Enterprise networks today. A series of events in the recent past created a situation in which PEAPcan no longer be used safely. In this talk, we will re-trace this path and investigate how the combination of BYOD, new technology and new tools led tothis situation. A live demonstration with audience participation will punctuate the danger of supporting PEAP. Attendees will leave with an understanding of the underlying flaws, methods of exploitation, a set of tools and most importantly, how to secure WPA2-Enterprise networks that currently supportPEAP. A new tool, peapshow, will be released after DEF CON and will make testing and exploitation of this issue truly trivial.
Besides, this is DEF CON. Someone has to mess with the WiFi.