Any news of WPA2 Key Reinstallation Attacks (KRACK) mitigation?

RouterOS Wireless Networking
1

There are bold announcements around about Key Reinstallation Attacks (KRACK) at WPA2. The list is huge, including:

  1. CVE-2017-13077: Reinstallation of the pairwise encryption key (PTK-TK) in the 4-way handshake.
  2. CVE-2017-13078: Reinstallation of the group key (GTK) in the 4-way handshake.
  3. CVE-2017-13079: Reinstallation of the integrity group key (IGTK) in the 4-way handshake.
  4. CVE-2017-13080: Reinstallation of the group key (GTK) in the group key handshake.
  5. CVE-2017-13081: Reinstallation of the integrity group key (IGTK) in the group key handshake.
  6. CVE-2017-13082: Accepting a retransmitted Fast BSS Transition (FT) Reassociation Request and reinstalling the pairwise encryption key (PTK-TK) while processing it.
  7. CVE-2017-13084: Reinstallation of the STK key in the PeerKey handshake.
  8. CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake.
  9. CVE-2017-13087: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame.
  10. CVE-2017-13088: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame.

Are there any plans or maybe time frames we can expect fixes to be released for ROS? Looks like flaws that can worry people, so there’ll be many client questions if Mikrotik devices are hardened well or not.

In a key reinstallation attack, the adversary tricks a victim into reinstalling an already-in-use key. This is achieved by manipulating and replaying cryptographic handshake messages. When the victim reinstalls the key, associated parameters such as the incremental transmit packet number (i.e. nonce) and receive packet number (i.e. replay counter) are reset to their initial value. Essentially, to guarantee security, a key should only be installed and used once. Unfortunately, we found this is not guaranteed by the WPA2 protocol. By manipulating cryptographic handshakes, we can abuse this weakness in practice.

There is a http://www.kb.cert.org/vuls/id/228519 page that explain the problem and also lists vendors and info on patch availability. Mikrotik is not listed at all, so…

2

Yet another one who does not bother reading/searching the forum before posting…

http://forum.mikrotik.com/t/routeros-v6-39-3-v6-40-4-v6-41rc-not-affected-by-wpa2-vulnerabilities/113154/1