At a cryptographic conference in Toronto, these experts presented their report, ‘Weakness in the Key Scheduling Algorithm for RC4.’ According to various sources, the report outlines the path to the master key to the Wired Equivalent Privacy (WEP) encryption system, enabling a hacker to access the network.

For the malicious hacker or curious snooper who does not want to labor over the technical and theoretical intricacies of the Mantin, Shamir, and Fluher report, a simpler path is now available. The AirSnort, recently released on the Internet, is a tool that can underhandedly grab and analyze data moving across just about every major wireless network, according to an article posted on Wired’s Web site.

In the article, Randy Sandone of Argus, a security company, says, "Once AirSnort breaks the encryption, you’ve basically hosed. A malicious hacker can read any packet traveling over the network, gather information, and passwords — you name it."

Programmers Jeremy Bruestle and Blake Hegerle are the brains behind AirSnort and responsible for its release on the Web. Bruestle told Wired, "We felt that the only proper thing to do was to release the project. It is not obvious to the layman or the average administrator how vulnerable 802.11b is to attack. It’s too easy to trust WEP. Honestly, there is a lot of work involved in hardening a wireless network. It’s easy to be complacent. AirSnort is all about opening people’s eyes."

Until there is a replacement for WEP, which may not be released before mid 2002, users must have their eyes open to the security risks. They should be vigilant as to what they send over the airwaves: If it can’t be broadcasted, don’t send it.