Anyone know if this affects AES encryption or is it just targeted at TKIP?

Read the article and you'll find out.

As I read it - WPA with AES encryption has not been hacked. So the warnings about WPA being vulnerable is a bit misleading.

This article needs more detail before screaming fire. Is WPA-PSK (preshared key) only affected or is WPA Enterprise also affected though I doubt it.

Its the Wireless Dirty Little Secret, No one wants to tell you.

TKIP is a wrapper that goes around the existing WEP encryption. TKIP comprises the same encryption engine and RC4 algorithm defined for WEP.

SO YES, TKIP is WEP with many of the "Known vulnerabilities removed"

So Yes, TKIP is Broke, and YES it effect enterprises,

Move to WPA-Enterprise, not the PSK, or you will someday be sorry:) and use AES.

If you start breaking AES, the black helicopters come down and take you away :)

Wifininja

The way I read it, WPA2 (AES) should still be secure. This is still a big problem for many businesses that still use 802.11b terminals which cannot support AES.

Read the whitepaper: http://dl.aircrack-ng.org/breakingwepandwpa.pdf

If cracking an ARP request or response based on guessing the last octet is considered cracking WPA, then I have some swampland in Arizona to sell.

Folks, there are a lot of articles out there that all have the same lack of detail. Much, much more detail is needed before we get too concerned. There are still safeguards to rekey and other mechanisms before the 12-15 min cracking time required. ARP frames aren't going to come from a router per se and the articles talk about ARP frames as a source for the attack, but they say other traffic can be potentially utilized.

Look on the CWNP forums for more details if you are highly concerned and want to implement some safeguards to give you protection.

Devices that are only capable of WEP can be protected by Motorola's Air Defense product, using the Wep Cloaking feature.

Pretty handy...