Windows Phone Security Advisory – Weakness in Security Protocol

If you’re using a Windows phone, versions 7.8 or 8, there is a new security advisory out with respect to weakness in one of the authentication protocols:

Microsoft Security Advisory (2876146) – Wireless PEAP-MS-CHAPv2 Authentication Could Allow Information Disclosure

There is a recommended security update – not in the form of a patch or download, but rather in a configuration change. Therefore, read through the Suggested Actions if the scenario applies to your or your environment. The suggested action requires the issuing of a certificate to the wireless access point (WAP) so that the phone can validate the WAP.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: