Security in an Insecure WLAN Network

Anjum, Farooq; Das, Saurav; Gopalakrishnan, P.; Kant, L.; Kim, Byungsuk

doi:10.1109/wirles.2005.1549425

Cited by 15 publications

(6 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Sequence number approaches [79][80][81][82][83] detect MAC address spoofing attacks, such as deauthentication attacks. These approaches assume that the legitimate wireless user generates a sequence of numbers, so it is hard for an adversary to manipulate the sequence to match the legitimate one.…”

Section: Deauthentication/disassociation Countermeasuresmentioning

confidence: 99%

Rogue Access Point Detection: Taxonomy, Challenges, and Future Directions

Alotaibi

Elleithy

2016

Wireless Pers Commun

View full text Add to dashboard Cite

Wireless Local Area Networks (WLANs) are increasingly integrated into our daily lives. Access Points (APs) are an integral part of the WLAN infrastructure, as they are responsible for coordinating wireless users and connecting them to the wired side of the network and, eventually, to the Internet. APs are deployed everywhere, from airports and shopping malls to coffee shops and hospitals, to provide Internet connectivity. One of the most serious security problems encountered by WLAN users is the existence of Rogue Access Points (RAPs). This article classifies existing solutions, identifies vulnerabilities, and suggests future directions for research into these RAPs. The ultimate objective is to classify existing detection techniques and find new RAP types that have not been classified by the research community. The literature typically categorizes Evil-twin, Unauthorized, Compromised, and Improperly Configured RAPs. Two other types have largely been abandoned by researchers, but can be classified as Denial of Service RAP attacks. These are deauthentication/disassociation attacks targeting wireless users, and the forging of the first message in a four-way handshake.

show abstract

Section: Deauthentication/disassociation Countermeasuresmentioning

confidence: 99%

Rogue Access Point Detection: Taxonomy, Challenges, and Future Directions

Alotaibi

Elleithy

2016

Wireless Pers Commun

View full text Add to dashboard Cite

show abstract

“…Anjum et al . proposed a secure wireless system that uses monitoring at the local and global levels. The local monitor is attached at the AP level to analyze the Layer‐2 traffic, while a global monitor is connected via wired connection to the backbone network and also to the local monitors to analyze the Layer‐3 traffic.…”

Section: Protection Against Dos Attacksmentioning

confidence: 99%

“…There are few solutions (Category V, Table ) that are proposed, keeping in view the DoS threat caused using deauthentication/disassociation frames. The secure wireless scheme is similar to other spoof‐reducing schemes of Category I. Letter‐Envelop Protocol is a small but effective scheme to protect against deauthentication/disassociation DoS attacks. Here, the computation time is required to calculate the prime numbers, and the frame is modified to accommodate the prime numbers.…”

Section: Comparison Of Dos Solutions In Ieee 80211imentioning

confidence: 99%

On the IEEE 802.11i security: a denial‐of‐service perspective

Singh

Sharma

2014

Security Comm Networks

View full text Add to dashboard Cite

The IEEE 802.11i standard provides authentication and security at the Medium Access Control layer in wireless local area networks (WLANs). It involves an authentication process followed by a four‐way handshake to evolve a key for securing data sessions. The standard suffers under denial‐of‐service (DoS) attacks. These attacks often block the ongoing communication process and deprive services to the legitimate users. These are easy to conduct while maintaining anonymity of the attackers. It hence becomes imperative to learn about the attacks and their solutions in IEEE 802.11i‐protected WLANs so that future research proposals and solutions to mitigate the attack may develop. The paper presents a review of DoS attacks and existing solutions pertaining to the IEEE 802.11i security standard. Copyright © 2014 John Wiley & Sons, Ltd.

show abstract

“…Also in the case when multiple IP address are assigned to same NIC the solution fails [8], [9]. • Guo et al [10], Wright [11], Mar et al [12], Xia et al [13] and Anjum et al [14] have suggested various schemes for detection of spoofing attacks based on the sequence number analysis. However a clever attacker can predict the sequence number in advance to escape detection.…”

Section: Related Work and Motivationmentioning

confidence: 99%

Detection of De-authentication Denial of Service attack in 802.11 networks

Agarwal

Biswas

Nandi

2013

2013 Annual IEEE India Conference (INDICON)

View full text Add to dashboard Cite

Wi-Fi networks are prone to a large number of Denial of Service (DoS) attacks due to vulnerabilities at the MAC layer of 802.11 protocol. In this paper we focus on the De-authentication DoS attack in Wi-Fi networks. The impact of de-authentication DoS attack is severe as the victim gets disconnected from the network. This attack can be launched easily using minimal resources. In this paper we propose an Intrusion Detection System (IDS) along with Intrusion Prevention System (IPS) that not only detects the de-authentication DoS attack in a Wi-Fi network but also helps the victim station (STA) in recovering swiftly from the attack. Our proposed IDS is lightweight and detects the attack with high accuracy & low false positive rate. Our technique can be easily deployed on open as well as encrypted networks.

show abstract

Security in an Insecure WLAN Network

Cited by 15 publications

References 1 publication

Rogue Access Point Detection: Taxonomy, Challenges, and Future Directions

Rogue Access Point Detection: Taxonomy, Challenges, and Future Directions

On the IEEE 802.11i security: a denial‐of‐service perspective

Detection of De-authentication Denial of Service attack in 802.11 networks

Contact Info

Product

Resources

About