ɘƨɿɘvɘЯ algo attack cracks Belkin router WPS PINs: researcher A researcher who last year turned up weak WPS PIN protection in D-Link broadband modems has found the same problem exists on Belkin devices. The writer at embedded systems hacker hangout /dev/ttyS0, who goes by the name of Craig, says the upshot of his latest work is the same as previously: it demonstrates that like D-Link, …
This would be a lot less of an issue if it was only possible to get the serial number from the outside of the box, or via the web interface.
Once someone has physical access to your router, they can just plug an ethernet cable in, no need to crack the wireless.
But again, how else can it guarantee a genuinely-unique ID without using something like the Serial Number? ANY other source and you run the remote but still possible and highly-consequential risk of a collision. And anything sufficiently unique may as well BE a serial number for all intents and purposes.
" that doesn't involve programming each and every device individually"
What do you mean be programming each and every device individually? The serial number would surely fit that description so just have a random PIN generator and flash that as well as the unique serial number and unique MAC.
Not necessarily. The serials and stuff would be done on small ROM chips, meaning all the rest of the stuff can be mass-produced. That includes the label printer that doesn't have to actually read the ROM chips to learn the serial number (key word serial) to compute the PIN. IOW, using any method other than based on the easy-to-know-at-manufacture-time serial number will seriously slow down the manufacturing process.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
