A policy-based approach to wireless LAN security management

Lapiotis, G.; Kim, Byungsuk; Das, Saurav; Anjum, Farooq

doi:10.1109/seccmw.2005.1588312

Cited by 14 publications

(16 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, [14] pointed out that new technology like Near Field Communication (NFC) which is based on wireless network technologies could be compromised by a hacker through eavesdropping on the network thereby leading to stealing of payment credentials because NFC is usually used for contactless payments. A potential solution to this was [10], who pointed out that the efforts that have been made to combat unauthorized wireless access is mainly focused on outsiders thereby neglecting breaches from insiders of an organization itself and hence, adopted a policy based wireless security management solution to address organizations on how to solve the existing issues.…”

Section: Wireless Network Users and Policiesmentioning

confidence: 99%

Research on Wireless Network Security Awareness of Average Users

Ochang¹,

Irving²,

Ofem³

2016

IJWMT

View full text Add to dashboard Cite

Network insecurity has become an increasing problem in the world of computer networks. Technical experts have tried to combat this by improving the technical awareness of the threats and technical solutions involved in Wireless Local Networks (WLAN) through technical reports and policy enforcement. The average users' knowledge and awareness of network security, how they react to the warnings and implement security measures is also very important. Current studies on users' awareness of security policies, whether it has been communicated well enough and how aware WLAN users are to the threats and issues involved are still not fully ascertained. To fill this gap it is important to find out the users basic knowledge of the security measures and policies. In this paper, statistical methods were developed and adopted in other to compare the knowledge of Information Technology (IT) related employees and that of non-technical employees on how aware they are of WLAN security threats and security measures. The techniques the paper has adopted revealed the knowledge gap between non-technical and technical users. This revelation is significant and therefore requiring more efficient methods for creating awareness on WLAN threats and countermeasures among average users.

show abstract

Section: Wireless Network Users and Policiesmentioning

confidence: 99%

Research on Wireless Network Security Awareness of Average Users

Ochang¹,

Irving²,

Ofem³

2016

IJWMT

View full text Add to dashboard Cite

show abstract

“…But, the framework considers very simple set of policy constraints. A recent work [2] has been proposed by Lapiotis et al on policy based security management in wireless LAN. They propose a distributed policy based architecture which includes a central policy engine and distributed wireless domain managers with consistent local policy autonomy.…”

Section: Related Workmentioning

confidence: 99%

“…al. [2] has proposed the policybsed management over link layer. This work was extended in our previous work [18].…”

Section: Related Workmentioning

confidence: 99%

“…Always = (1,2,3,4,5,6,7).Day@(<01.hr+00.min>:<23.hr+59.min>) 5. Non-working hours(NWH) = {(2,3,4,5,6).Day@(<1.hr+00.min>:<7.hr+59.min>), (2,3,4,5,6).Day@(<18.hr+00.min>:<23.hr+59.mi n>), (1,7).Day@(<1.hr+00.min>:<23.hr+59.min> )} 6. Roles = {r1<student>, r2<faculty>, r3<administrative staff>, r4<network administrator>, r5<guest>}…”

Section: Example:strbac Model [Strbac Model For Example Policy: ]mentioning

confidence: 99%

“…The background and standards for policy based security management can be found in RFC 3198 [5]. The use of mobile IP to implement the security policy, which increases the performance of the system and gives better results compared to MAC based models as referred in [2] and [18].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Formal Verification Framework for Security Policy Management in Mobile IP Based WLAN

Maity¹,

Bera²,

Ghosh³

et al. 2010

IJNSA

View full text Add to dashboard Cite

show abstract

A WLAN security management framework based on formal spatio‐temporal RBAC model

Bera¹,

Ghosh²,

Dasgupta³

2010

Security Comm Networks

View full text Add to dashboard Cite

In today's organizations, the large scale deployment of wireless networks has opened up new directions in network security management. The organizational security policies aim at protecting the network resources from unauthorized accesses in the wireless local area networks (WLAN). In WLAN security policy management, the standard IP-based access control mechanisms are not sufficient due to dynamic changes in network topology and access control states. The role-based access control (RBAC) models may be appropriate to strengthen the security perimeter over the network resources. However, formalizing the dynamic binding of the access policies to the roles, depending on various control states, is a major challenge. In this paper, we propose a WLAN security policy management framework based on a formal spatio-temporal RBAC (STRBAC) model. The present work primarily focuses on dynamic computation of security policies based on various control states, its formal representation using STRBAC model, and security property verification of the proposed STRBAC model. The proposed policy management framework logically partitions the WLAN topology into various security policy zones. The framework includes a Central Authentication & Role Server (CARS) which authenticates the users (nodes) and access points (AP) and also assigns appropriate roles to the users; a Global Policy Server (GPS) that dynamically computes the global security policy and policy configurations for different policy zones based on local user-role and control state information; a distributed policy zone control architecture. Each policy zone consists of a Policy Zone Controller (WPZCon) which dynamically computes the low-level access configurations. Finally, a SAT based verification procedure has been presented for verifying the security properties of the proposed STRBAC model.

show abstract

A policy-based approach to wireless LAN security management

Cited by 14 publications

References 7 publications

Research on Wireless Network Security Awareness of Average Users

Research on Wireless Network Security Awareness of Average Users

A Formal Verification Framework for Security Policy Management in Mobile IP Based WLAN

A WLAN security management framework based on formal spatio‐temporal RBAC model

Contact Info

Product

Resources

About