论文信息 - Responding to KRACK: Wi-Fi Security Awareness in Private Households

Responding to KRACK: Wi-Fi Security Awareness in Private Households

In this paper, we study the update and security practices of individuals in private households with an exploratory interview study. In particular, we investigate participants’ awareness regarding KRACK, a patched key vulnerability in the WPA/WPA2 protocol, and similar vulnerabilities in the context of usage and management scenarios in Wi-Fi networks. We show that while most people are aware of certain dangers, they struggle to address Wi-Fi related vulnerabilities. The findings could prove to be beneficial in identifying not only the current security status of average users regarding Wi-Fi security, but also to improve update and information propagation to mitigate related threats in the future.

[1] Jens Grossklags,et al. End user cybercrime reporting: what we know and what we can do to improve it , 2016, 2016 IEEE International Conference on Cybercrime and Computer Forensic (ICCCF).

[2] W. Keith Edwards,et al. Computer help at home: methods and motivations for informal technical support , 2009, CHI.

[3] Frank Piessens,et al. Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2 , 2017, CCS.

[4] Peng Liu,et al. Take It or Leave It: A Survey Study on Operating System Upgrade Practices , 2018, ACSAC.

[5] Aron Laszka,et al. An Empirical Study of Android Security Bulletins in Different Vendors , 2020, WWW.

[6] Stuart E. Schechter,et al. Common Pitfalls in Writing about Security and Privacy Human Subjects Experiments, and How to Avoid Them , 2013 .

[7] Mathy Vanhoef,et al. Dragonblood: Analyzing the Dragonfly Handshake of WPA3 and EAP-pwd , 2020, 2020 IEEE Symposium on Security and Privacy (SP).