Defeating PPTP VPNs and WPA2 Enterprise with MS-CHAPv2 presented at DEF CON 20

by Marsh Ray, Moxie Marlinspike (Institute For Disruptive Studies), David Hulton,

Summary : MS-CHAPv2 is an authentication and key
negotiation protocol that, while old and battered,
is still unfortunately deployed quite widely. It
underpins almost all PPTP VPN services, and is
relied upon by many WPA2 Enterprise wireless
deployments. We will release tools that definitively
break the protocol, allowing anyone to affordably
decrypt any PPTP VPN traffic or CHAPv2-based
WPA2 handshake with a 100% success rate.

Marsh Ray: Marsh has been desoldering computer circuits since he was a small child. He has built some stuff. He has broken some stuff. He has helped to fix some stuff. He spoke about it at Shmoocon last year. Speak, Marsh, speak! If my talk is accepted, I promise to get a real bio. (Seems he didn't)