1
00:00:06,420 --> 00:00:11,200
 Hello and welcome to this course titled
 Getting Personal with WPA3 Wi

2
00:00:11,200 --> 00:00:15,940
-Fi Security. My name is Keith Bogart
 and I will be the instructor for

3
00:00:15,940 --> 00:00:17,880
 the duration of this course.

4
00:00:17,880 --> 00:00:22,340
 Let's talk about some key concepts
 that this course is going to cover

5
00:00:22,340 --> 00:00:25,720
 at a high level, then we'll drill down
 a little bit deeper into some more

6
00:00:25,720 --> 00:00:26,740
 specific concepts.

7
00:00:26,740 --> 00:00:31,340
 So number one, you're going to learn about
 Wi-Fi key management and cryptographic

8
00:00:31,340 --> 00:00:34,640
 foundations. You're going to learn
 there's a whole bunch of different

9
00:00:34,640 --> 00:00:39,040
 Wi-Fi keys used for different things
 and how they are derived from each

10
00:00:39,040 --> 00:00:43,760
 other and some of the formulas and algorithms
 used to derive those keys.

11
00:00:43,760 --> 00:00:47,440
 We're going to talk about the evolution
 of Wi-Fi security protocols from

12
00:00:47,440 --> 00:00:52,680
 WPA2 to WPA3. Now we're not going to
 spend really a lot of time on the

13
00:00:52,680 --> 00:00:54,380
 mechanics of WPA2.

14
00:00:54,380 --> 00:00:58,520
 If you watch my jumping into Wi-Fi
 security course, I already go into

15
00:00:58,520 --> 00:01:02,680
 that in pretty good detail, but we'll
 do a quick glossing over of WPA2

16
00:01:02,680 --> 00:01:07,740
 so that when we do get into WPA3, which
 is the majority of this course,

17
00:01:07,740 --> 00:01:11,720
 you'll understand why WPA3 is so
 much stronger and so much better.

18
00:01:11,720 --> 00:01:16,220
 We'll also look at how to protect management
 and open network communications,

19
00:01:16,220 --> 00:01:20,700
 as well as a whole bunch
 of WPA3 enhancements.

20
00:01:20,700 --> 00:01:23,740
 So what are some of the major
 topics we're going to look at?

21
00:01:23,740 --> 00:01:28,500
 Number one, we're going to look at the
 role and hierarchy of keys in Wi

22
00:01:28,500 --> 00:01:32,540
-Fi security. There are keys that derive
 other keys that derive other keys

23
00:01:32,540 --> 00:01:36,100
 until you finally get to the keys you
 actually use to encrypt and decrypt

24
00:01:36,100 --> 00:01:38,520
 data, provide your data integrity.

25
00:01:38,520 --> 00:01:41,500
 So we're going to look at what their
 names are, where they come from,

26
00:01:41,500 --> 00:01:43,720
 and how one is derived from the other.

27
00:01:43,720 --> 00:01:46,340
 So we'll look at the pairwise
 key generation.

28
00:01:46,340 --> 00:01:50,080
 You may have heard of things like pairwise
 master key, pairwise temporal

29
00:01:50,080 --> 00:01:54,060
 key. We'll talk about what does that
 word pairwise mean and what do these

30
00:01:54,060 --> 00:01:56,020
 things have to do with security?

31
00:01:56,020 --> 00:01:59,620
 We'll look at the cryptographic derivation
 and handshake mechanics.

32
00:01:59,620 --> 00:02:04,900
 There's a lot of different mechanisms
 for creating keys depending on what

33
00:02:04,900 --> 00:02:09,880
 feature you're using, whether it's just
 be a plain old WPA3 SAE connection,

34
00:02:09,880 --> 00:02:14,420
 whether using Wi-Fi easy connect, the
 opportunistic wireless encryption

35
00:02:14,420 --> 00:02:17,400
 standard. We'll talk about those.

36
00:02:17,400 --> 00:02:22,700
 We'll talk about the transition from
 WPA2 to WPA3 and the rise of SAE

37
00:02:22,700 --> 00:02:27,340
 and how you can protect your management
 frames and prevent spoofing.

38
00:02:27,340 --> 00:02:32,240
 We'll talk about some features where
 we can protect our authentication

39
00:02:32,240 --> 00:02:36,700
 frames, our disassociation frames,
 our action frames so that somebody

40
00:02:36,700 --> 00:02:41,560
 can't insert a rogue access point
 into our network and wreak havoc.

41
00:02:41,560 --> 00:02:48,460
 We'll also talk about some E and DPP.

42
00:02:48,460 --> 00:02:51,940
 So let's talk about some learning outcomes
 I hope you can have after going

43
00:02:51,940 --> 00:02:53,160
 through this course.

44
00:02:53,160 --> 00:02:56,940
 I want you at the end of it to be able
 to explain the complete Wi-Fi key

45
00:02:56,940 --> 00:02:59,600
 hierarchy and its functions.

46
00:02:59,600 --> 00:03:04,260
 I want you to be able to differentiate
 between WPA2 pre-shared key and

47
00:03:04,260 --> 00:03:10,540
 WPA3 simultaneous authentication of
 equals key derivation processes.

48
00:03:10,540 --> 00:03:15,580
 We will analyze the importance and operation
 of WPA3 protected management

49
00:03:15,580 --> 00:03:20,120
 frames and beacon protection so that
 you can explain that to other people

50
00:03:20,120 --> 00:03:22,720
 and explain why it's such a good thing.

51
00:03:22,720 --> 00:03:26,400
 And hopefully you'll be able to configure
 and validate modern Wi-Fi security

52
00:03:26,400 --> 00:03:33,460
 enhancements such as Wi-Fi easy connect
 and opportunistic wireless encryption.

53
00:03:33,460 --> 00:03:37,120
 So there are a few prerequisites for
 you to really maximize and get the

54
00:03:37,120 --> 00:03:38,740
 most out of this course.

55
00:03:38,740 --> 00:03:42,980
 I'm assuming you already have some familiarity
 with basic 802.11 wireless

56
00:03:42,980 --> 00:03:44,580
 LAN terminology.

57
00:03:44,580 --> 00:03:49,720
 If I say things like SSID, like authentication
 frame, association frame,

58
00:03:49,720 --> 00:03:52,600
 I'm hoping you already know
 what those things mean.

59
00:03:52,600 --> 00:03:58,920
 Also, hopefully you have some experience
 connecting to WPA2 and WPA3 wireless

60
00:03:58,920 --> 00:04:03,820
 LANs. And you have some general familiarity
 with cryptographic hashing

61
00:04:03,820 --> 00:04:07,620
 functionality. In other words, if you
 don't know what a cryptographic

62
00:04:07,620 --> 00:04:11,980
 hash means, you might not know
 the mechanics of how it works.

63
00:04:11,980 --> 00:04:16,440
 But just that term, you should know what
 is a cryptographic hash and what

64
00:04:16,440 --> 00:04:19,360
 are some examples of why we use them?

65
00:04:19,360 --> 00:04:20,780
 What's the benefit of using them?

66
00:04:20,780 --> 00:04:21,640
 Hopefully you know that.

67
00:04:21,640 --> 00:04:26,100
 If not, just take five minutes go on chat
 GPT and ask it, what is a cryptographic

68
00:04:26,100 --> 00:04:29,220
 hash and why would I benefit from it?

69
00:04:29,220 --> 00:04:33,120
 So with that, let's go and start our
 course and hopefully you'll get a