On WPA2-Enterprise Privacy in High Education and Science

More than 87% of 1650 devices collected during a two-month test on our university are vulnerable to Eduroam MAC address deanonymization attack. By analyzing the Eduroam Configuration Assistant Tool of 1066 different institutions around the world, 67% of exported Eduroam profiles having the Wi-Fi device reveal the user’s identity in the clear, thus linking the users with the device’s MAC address.