How does WPA3 provide forward secrecy?
Someone told me that in WPA2, forward secrecy is achieved by generating ephemeral keys through the handshake’s nonces, but I couldn't find how WPA3 achieves it exactly (could not find info regarding nonces in WPA3). Could someone shed some light on this?
But then I read that WPA2 could not achieve perfect forward secrecy because of having a pre-shared key (PSK), since the ephemeral keys are derived from the PSK. So if an attacker knows the PSK, he could decrypt old messages if they had captured them. Is this correct?
On the other hand WPA3 is said to provide perfect forward secrecy. Is this because the key sharing process is done through the Dragonfly handshake, which is based on the Diffie Hellman algorithm and thus retrieving the private keys (the random numbers generated as negotiated) is computationally intractable?
