Wireless Network Frames
802.11 networks use data frames, management frames, and control frames. Data frames convey the real data, and are similar to those of Ethernet. Management frames maintain both network configuration and connectivity. Control frames manage access to the ether and prevent access points and clients to interfere with each other in the ether. Some information on management frames will be helpful to better understand what programs for reconnaissance do.
- Beacon frames are probably the most important frames for reconnaissance. They advertise the existence and basic configuration of the network. Each frame contains the BSSID, the SSID, and some information on basic authentication and encryption. Clients use the flow of beacon frames to monitor the signal strength of their access point.
- Probe request frames are almost the same as the beacon frames. A probe request frame is sent from a client when it wants to connect to a wireless network. It contains information about the requested network.
- Probe response frames are sent to clients to answer probe request frames. One response frame answers each request frame, and it contains information on the capabilities and configurations of the network. Useful for reconnaissance.
- Authentication request frames are sent by clients when they want to connect to a network. Authentication precedes association in infrastructure networks. Either open authentication or shared key authentication is possible. After serious flaws were found in shared key authentication, most networks switched to open authentication, combined with a stronger authentication method applied after the association phase.
- Authentication response frames are sent to clients to answer authentication request frames. There is one answer to each request, and it contains either status information or a challenge related to shared key authentication.
- Association request frames are sent by clients to associate with the network. An association request frame contains much of the same information as the probe request contains, and it must have the SSID. This can be used to obtain the SSID when a network is configured to hide the SSID in beacon frames.
- Association response frames are sent to clients to answer an association request frame. They contain a bit of network information and indicate whether the association was successful.
- Deauthentication and disassociation frames are sent to a node to notify that an authentication or an association has failed and must be established anew.
Read more about this topic: Cracking Of Wireless Networks
Famous quotes containing the words network and/or frames:
“A culture may be conceived as a network of beliefs and purposes in which any string in the net pulls and is pulled by the others, thus perpetually changing the configuration of the whole. If the cultural element called morals takes on a new shape, we must ask what other strings have pulled it out of line. It cannot be one solitary string, nor even the strings nearby, for the network is three-dimensional at least.”
—Jacques Barzun (b. 1907)
“... though it is by no means requisite that the American women should emulate the men in the pursuit of the whale, the felling of the forest, or the shooting of wild turkeys, they might, with advantage, be taught in early youth to excel in the race, to hit a mark, to swim, and in short to use every exercise which could impart vigor to their frames and independence to their minds.”
—Frances Wright (1795–1852)