Multi-Channel Man-in-the-Middle Attacks Against Protected Wi-Fi Networks: A State of the Art Review

Thankappan, Manesh; Rifà-Pous, Helena; Garrigues, Carles

doi:10.48550/arxiv.2203.00579

Cited by 2 publications

(4 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In our previous work [13], we extensively studied the technical feasibility of various MC-MitM defense mechanisms and demonstrated that it is difficult to achieve their deployment, especially in IoT environments like smart homes. On the one hand, there are no patches for all commercial devices, and on the other hand, the management and maintenance of these devices requires technical knowledge that the standard user does not have.…”

Section: B Motivationmentioning

confidence: 99%

See 1 more Smart Citation

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-The-Middle Attacks Against Protected Wi-Fi Networks

Thankappan¹,

Rifà-Pous²,

Garrigues³

2022

SSRN Journal

Self Cite

View full text Add to dashboard Cite

Section: B Motivationmentioning

confidence: 99%

“…Surprisingly, they used the MC-MitM position to capture, decrypt, and modify protected Wi-Fi packets (train control messages). In our previous work [13], we evaluated the capabilities of MC-MitM attacks and provided a detailed description of different kinds of MC-MitM attacks reported so far.…”

mentioning

confidence: 99%

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-The-Middle Attacks Against Protected Wi-Fi Networks

Thankappan¹,

Rifà-Pous²,

Garrigues³

2022

SSRN Journal

Self Cite

View full text Add to dashboard Cite

“…If the victim is using encrypted DNS, the adversary can try to block these connections to induce the victim into falling back to plaintext DNS over UDP. Packets can be blocked using methods from Section 8.4 or by using a multi-channel MitM position [100,209].…”

Section: Intercepting Client Trafficmentioning

confidence: 99%

“…In our network disruption attacks of Chapter 8.4, we abused frame queues and power-save features to block frames from arriving at their destination. Though blocking frames can also be done using other methods, for example through a multi-channel MitM [209] or jamming techniques [100], our approach requires fewer resources. Performing a multi-channel MitM requires two wireless network cards, while our attacks only require one.…”

Section: Comparison To Frame-blocking Attacksmentioning

confidence: 99%

Towards rapid prototyping for wi-fi security research

Schepers

View full text Add to dashboard Cite

The rapid deployment of wireless networks, combined with an increasing demand for performance and security, resulted in the significant evolution of standards. Today, ) and Wi-Fi Protected Access 3 (WPA3) are the latest standard and set of security protocols. In order to enhance the security protections offered by these networks, it remains key to adopt the newest standards and promptly deprecate any old and vulnerable protocols. With this perspective, and the knowledge that early research in new protocols allows us to identify and address shortcomings before they are widely-adopted in practice, we are motivated to perform rigorous security and privacy analyses.In this dissertation, we perform an extensive wireless survey to understand and contextualize the Wi-Fi (IEEE 802.11) landscape. It allows us to gain real-world insights in the adoption rates of deprecated, recommended, and state-of-the-art protocols, and thereby identify trends and determine their security impact in practice. Based on our newfound insights, we perform a security and privacy analysis on the Temporal Key Integrity Protocol (TKIP) and Wi-Fi Fine Timing Measurement (FTM), revealing a wide-variety of sidechannels and security vulnerabilities. In order to ease and streamline our research process, and address implementation challenges faced throughout, we design a novel framework for rapid prototyping. Our framework allows one to rapidly test hypothesis on new weaknesses, implement proof-of-concepts, build on-target fuzz-testing tools, create testing suites (e.g., test if a device is vulnerable to known attacks), and automate experiments. We then demonstrate the features of our framework by means of two practical use cases. First, we perform a security analysis on the Wi-Fi Management Frame Protection (MFP) standard and its implementations, revealing numerous deauthentication vulnerabilities. Second, we analyze frame queuing mechanisms used within access points, revealing vulnerabilities which enable an adversary to bypass encryption. Finally, we release our framework for rapid prototyping to the community in order to encourage and support further security and privacy research.

show abstract

Multi-Channel Man-in-the-Middle Attacks Against Protected Wi-Fi Networks: A State of the Art Review

Cited by 2 publications

References 0 publications

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-The-Middle Attacks Against Protected Wi-Fi Networks

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-The-Middle Attacks Against Protected Wi-Fi Networks

Towards rapid prototyping for wi-fi security research

Contact Info

Product

Resources

About