Security Vulnerabilities and Cryptanalysis
Several weaknesses have been found in MS-CHAPv2, some of which severely reduce the complexity of brute-force attacks making them feasible with modern hardware.
- Cryptanalysis of Microsoft's PPTP Authentication Extensions (MS-CHAPv2), co-written by Bruce Schneier
- Exploiting known security holes in Microsoft's PPTP Authentication Extensions (MS-CHAPv2), by Jochen Eisinger
In 2012 the complexity of breaking MS-CHAPv2 was reduced to that of breaking a single DES key:
- Divide and Conquer: Cracking MS-CHAPv2 with a 100% success rate by Moxie Marlinspike.
Read more about this topic: MS-CHAP
Famous quotes containing the word security:
“I think the girl who is able to earn her own living and pay her own way should be as happy as anybody on earth. The sense of independence and security is very sweet.”
—Susan B. Anthony (1820–1906)