11-09-2012, 11:46 PM
From wikipedia I get: "The PTK is generated by concatenating the following attributes: PMK, AP nonce (ANonce), STA nonce (SNonce), AP MAC address, and STA MAC address. The product is then put through PBKDF2-SHA1 as the cryptographic hash function."
AFAIK in PSK mode, the PMK is the PSK.
What I don't get however is how to derive the PMK from the PTK.
What's also confusing is that rainbow tables are made for WPA2 by taking the ESSID, adding the PSK at the end, and then hashing it 4096 times. Where does that come from? I see no mention of the ESSID in the context of the four way handshake.
AFAIK in PSK mode, the PMK is the PSK.
What I don't get however is how to derive the PMK from the PTK.
What's also confusing is that rainbow tables are made for WPA2 by taking the ESSID, adding the PSK at the end, and then hashing it 4096 times. Where does that come from? I see no mention of the ESSID in the context of the four way handshake.