Skip to main content

PSA: Don’t buy a new Wi-Fi router without checking for WPA3 security

If you’re in the market for a new wireless router, you’d be well advised to look out for models which support a new security standard. After relying on WPA2 for security for more than a decade, the Wi-Fi Alliance has just begun certifying products that use its replacement: WPA3 …

WPA2 has a couple of significant weaknesses. First, an attacker can capture an encrypted data stream from your router and then carry out an offline dictionary attack at their leisure. Because they don’t need to remain connected to your router to make repeated password guesses, they bypass any limits the router itself places on repeated access attempts.

Second, if someone downloads encrypted data from your router and then later cracks the password, they will be able to decrypt the data they already hold.

The Verge explains that WPA3 protects against both.

With WPA3, attackers are only supposed to be able to make a single guess against that offline data before it becomes useless; they’ll instead have to interact with the live Wi-Fi device every time they want to make a guess. (And that’s harder since they need to be physically present, and devices can be set up to protect against repeat guesses.)

WPA3’s other major addition, as highlighted by the Alliance, is forward secrecy. This is a privacy feature that prevents older data from being compromised by a later attack. So if an attacker captures an encrypted Wi-Fi transmission, then cracks the password, they still won’t be able to read the older data — they’d only be able to see new information currently flowing over the network.

You’ll start to see WPA3-certified routers rolling out from today. These are backward-compatible with WPA2, so you don’t need to worry about connecting to them with existing devices.

Also starting to roll out is 802.11ax, the replacement for 802.11ac. This allows for data speeds several times higher than existing routers. Your most future-proof option, then, would be to look for a router which supports both WPA3 and 802.11ax, but you can expect options to be limited for a while yet.

Photo: What Laptop magazine/Future Publishing/REX


Check out 9to5Mac on YouTube for more Apple news:

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel

Comments

Author

Avatar for Ben Lovejoy Ben Lovejoy

Ben Lovejoy is a British technology writer and EU Editor for 9to5Mac. He’s known for his op-eds and diary pieces, exploring his experience of Apple products over time, for a more rounded review. He also writes fiction, with two technothriller novels, a couple of SF shorts and a rom-com!


Ben Lovejoy's favorite gear

Manage push notifications

notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications
notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications