Denial-of-Service attacks and countermeasures in IEEE 802.11 wireless networks

Biçakcı, Kemal; Tavlı, Bülent

doi:10.1016/j.csi.2008.09.038

Cited by 122 publications

(73 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Manual and automatic assigned thresholds in multi-layer data fusion intrusion detection system for 802.11 attacks. IET Information Security,8 (1), pp. 42 -50.…”

mentioning

confidence: 99%

Manual and Automatic assigned thresholds in multi‐layer data fusion intrusion detection system for 802.11 attacks

Kyriakopoulos

Aparicio-Navarro

Parish

2014

IET Information Security

View full text Add to dashboard Cite

., 2014. Manual and automatic assigned thresholds in multi-layer data fusion intrusion detection system for 802.11 attacks. IET Information Security,8 (1), pp. 42 -50.Additional Information:• This paper was published in the journal, IET Information Security [ c Intrusion Detection Systems for wireless attacks either focuses on just one layer of observation or uses a limited number of metrics without proper data fusion techniques. However, the true status of a network is rarely accurately detectable by examining only one network layer. The goal of this work is to detect injection types of attacks in wireless networks by fusing multi-metrics using the Dempster-Shafer (D-S) belief theory. When combining beliefs, an important step to consider is the automatic and self-adaptive process of Basic Probability Assignment (BPA).This work presents a comparison between manual and automatic BPA methods using the D-S technique. Custom tailoring BPAs in an optimum manner under specific network conditions could be extremely time consuming and difficult. In contrast, automatic methods have the advantage of not requiring any prior training or calibration from an administrator. The results show that multi-layer techniques perform more efficiently when compared to conventional methods. In addition, the automatic assignment of beliefs makes the use of such a system easier to deploy whilst providing a similar performance to that of a manual system.

show abstract

“…Manual and automatic assigned thresholds in multi-layer data fusion intrusion detection system for 802.11 attacks. IET Information Security,8 (1), pp. 42 -50.…”

mentioning

confidence: 99%

Manual and Automatic assigned thresholds in multi‐layer data fusion intrusion detection system for 802.11 attacks

Kyriakopoulos

Aparicio-Navarro

Parish

2014

IET Information Security

View full text Add to dashboard Cite

show abstract

“…allow some stations to access the medium while denying access to other. And the data frame types are used for data transmission [9].…”

Section: Frame Typesmentioning

confidence: 99%

A Flexible Framework for Rogue Access Point Detection

Gonçalves

Correia

Brandão

2018

Proceedings of the 15th International Joint Conference on E-Business and Telecommunications

View full text Add to dashboard Cite

Nowadays wireless communications are ubiquitous and getting over requested. It has become a demand in modern days life; people have to be connected always and everywhere. To meet these needs there is an increasing number of WiFi Access Points (APs), located everywhere: schools, coffee shops, shopping malls, airports, trains, buses, and all the free ones from the Internet Service Providers (ISPs) distributed by users' home networks.Among all these APs how can a user be sure that is connecting to a trusted source?In a small-medium sized company, without spending much money, how do they guarantee their wireless security?In order to address these questions there is the need to detect Rogue Access Points (RAPs). There are solutions described in the literature and enterprise solutions. Relative to the latter, it has become obvious that they are not accessible to everyone (high prices), and the first ones do not address all the types of RAPs.Apart from these solutions we did a thorough study on the most commonly used and recent types of WiFi attacks. With this knowledge we were able to develop a solution to detect RAPs which covers the most commonly known attacks.The proposed solution, is a modular framework composed of Scanners, Detectors and Actuators, which are responsible for: scanning for available APs, apply a set of heuristics to detect RAPs and alert the application user. And finally, apply a countermeasure mechanism.i ResumoHoje em dia, as comunicações sem fios são ubíquas e cada vez mais requisitadas. Tornando-se uma exigência para a maioria das pessoas, causando uma necessidade de estarem ligadas, sempre e em qualquer lugar. Para responder a esta necessidade existe um número crescente de Pontos de acesso (PA) WiFi, localizados em todos os lugares: escolas, cafés, shoppings, aeroportos, comboios, autocarros e os PA gratuitos dos Internet Service Providers (ISPs) distribuídos através das redes domésticas dos utilizadores.Entre todos estes PA como é que um utilizador pode ter certeza de que se está a ligar a uma rede confiável?Numa pequena ou média empresa, sem gastar muito dinheiro, como se pode garantir a segurança da rede sem fios?De forma a responder a estas questões existe a necessidade de se detectar PA rogue. Para tal, existem soluções descritas na literatura e soluções empresariais. Estas últimas, não são acessíveis para todos (preços altos), e as primeiras não abordam todos os tipos de PA rogue.Para além das soluções mencionadas, foi feito um estudo completo aos tipos de ataques mais recentes e frequentes a redes sem fios. Desta forma, foi possível desenvolver uma solução para detectar PA rogue, que cobre os ataques mais conhecidos.A solução proposta é uma ferramenta modular composta por Scanners, Detectors e Actuators, que são responsáveis por: escutar o ar de forma a encontrar PA disponíveis, aplicar um conjunto de heurísticas para detectar PA rogue e alertar os utilizadores. E finalmente aplicar uma contramedida.iii

show abstract

“…They also find new deadlock vulnerability in 802.11 and validate it experimentally. In [130], authors discuss in detail the existing denial of service attacks and countermeasures in 802.11 based wireless networks. In Table 10, a few common attacks and defenses discussed in [130] are mentioned.…”

Section: Dos Attacks In 80211 Based Wireless Networkmentioning

confidence: 99%

A Survey on DDoS Attack and Defense Strategies: From Traditional Schemes to Current Techniques

Aamir

Zaidi

2013

IIS

View full text Add to dashboard Cite

Distributed Denial of Service (DDoS) attacks exhaust victim's bandwidth or services. Traditional architecture of Internet is vulnerable to DDoS attacks and an ongoing cycle of attack & defense is observed. A recent attack report of year 2013 -'Quarter 1' from Prolexic Technologies identifies that 1.75 percent increase in total number of DDoS attacks has been recorded as compared to similar attacks of previous year's last quarter. In this paper, different types and techniques of DDoS attacks and their countermeasures are surveyed. The significance of this paper is the coverage of many aspects of countering DDoS attacks including new research on the topic. We survey different papers describing methods of defense against DDoS attacks based on entropy variations, traffic anomaly parameters, neural networks, device level defense, botnet flux identifications, application layer DDoS defense and countermeasures in wireless networks, CCN & cloud computing environments. We also discuss some traditional methods of defense such as traceback and packet filtering techniques, so that readers can identify major differences between traditional and current techniques of defense against DDoS attacks. We identify that application layer DDoS attacks possess the ability to produce greater impact on the victim as they are driven by legitimate-like traffic, making it quite difficult to identify and distinguish from legitimate requests. The need of improved defense against such attacks is therefore more demanding in research. The study conducted in this paper can be helpful for readers and researchers to recognize better techniques of defense in current times against DDoS attacks and contribute with more research on this topic in the light of future challenges identified in this paper.

show abstract

Denial-of-Service attacks and countermeasures in IEEE 802.11 wireless networks

Cited by 122 publications

References 5 publications

Manual and Automatic assigned thresholds in multi‐layer data fusion intrusion detection system for 802.11 attacks

Manual and Automatic assigned thresholds in multi‐layer data fusion intrusion detection system for 802.11 attacks

A Flexible Framework for Rogue Access Point Detection

A Survey on DDoS Attack and Defense Strategies: From Traditional Schemes to Current Techniques

Contact Info

Product

Resources

About