Comment Re:unsecured wifi? (Score 1) 248
That doesn't stop man in the middle attacks. If I know the password, I can run my own AP with the same SSID and password, and proxy all traffic through to the real AP, with whatever snooping of malicious transformations I care to implement.
Actually solving the prolem requires public-key cryptographic verification of the access point. WPA-PSK just authenticates the users to the AP, not the other way around.
Actually solving the prolem requires public-key cryptographic verification of the access point. WPA-PSK just authenticates the users to the AP, not the other way around.