Responding to KRACK: Wi-Fi Security Awareness in Private Households

Freudenreich, Jan; Weidman, Jake; Großklags, Jens

doi:10.1007/978-3-030-57404-8_18

Cited by 7 publications

(5 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Zeng et al [199] (interview, 𝑛 = 15), suggested how users' vulnerability depends on the level of their privacy knowledge, and pointed out a clear mismatch between the awareness and power of the owner/administrator of the smart home in comparison to other home users. Freudenreich et al [58] (interview, 𝑛 = 16), studied security practices of home users related to Wi-Fi security and found that, although they were mostly aware of the vulnerabilities, they found it difficult to address these issues.…”

Section: Periodmentioning

confidence: 99%

“…This is another popular area of research, with 66 papers. Some papers (32) focused majorly on this RQ and others (34) reflected on security and privacy behaviors while discussing other concepts such as privacy concerns, awareness, multi-users issues and related conceptual frameworks [4,47,58,61,63,68,70,84,98,100,103,105,114,116,118,123,126,130,134,135,141,144,146,150,164,167,173,178,181,183,187,188,195,200,202]. Here, we will focus on the 32 papers in the former group.…”

Section: Rq5mentioning

confidence: 99%

“…They observed that the participants became familiar with new devices very soon and were generally happy with sharing data as long as it is properly de-identified (e.g., via aggregation) and they were aware of the purpose of collection. Risks associated with Wi-Fi vulnerabilities in home users were explored by Freudenreich et al [58] (survey and interview, 𝑛 = 16), who found that, although generally aware of the privacy risks, people were not knowledgeable or skilled to address such problems.…”

Section: Rq5mentioning

confidence: 99%

See 2 more Smart Citations

A Survey of User Perspectives on Security and Privacy in a Home Networking Environment

Nandita

Nurse

2023

ACM Comput. Surv.

View full text Add to dashboard Cite

The security and privacy of smart home systems, particularly from a home user’s perspective, have been a very active research area in recent years. However, via a meta-review of 52 review papers covering related topics (published between 2000 and 2021), this paper shows a lack of a more recent literature review on user perspectives of smart home security and privacy since the 2010s. This identified gap motivated us to conduct a systematic literature review (SLR) covering 126 relevant research papers published from 2010 to 2021. Our SLR led to the discovery of a number of important areas where further research is needed; these include holistic methods that consider a more diverse and heterogeneous range of home devices, interactions between multiple home users, complicated data flow between multiple home devices and home users, some less-studied demographic factors, and advanced conceptual frameworks. Based on these findings, we recommended key future research directions, e.g., research for a better understanding of security and privacy aspects in different multi-device and multi-user contexts, and a more comprehensive ontology on the security and privacy of the smart home covering varying types of home devices and behaviors of different types of home users.

show abstract

Section: Periodmentioning

confidence: 99%

Section: Rq5mentioning

confidence: 99%

Section: Rq5mentioning

confidence: 99%

See 1 more Smart Citation

A Survey of User Perspectives on Security and Privacy in a Home Networking Environment

Nandita

Nurse

2023

ACM Comput. Surv.

View full text Add to dashboard Cite

show abstract

“…Although patches are available for both KRACK and FragAttacks, the critical problem is that they are not applicable on every Wi-Fi or IoT device because of factors like resource constraints, deprecated security protocols, expired product support periods, etc. Four years after KRACK first appeared, it is estimated that more than 75 per cent of Wi-Fi enabled devices still remain vulnerable to it [10], [11].…”

mentioning

confidence: 99%

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-the-Middle Attacks Against Protected Wi-Fi Networks

Thankappan,

Rifà-Pous,

Garrigues

2024

IEEE Access

View full text Add to dashboard Cite

One of the advanced Man-in-the-Middle (MitM) attacks is the Multi-Channel MitM (MC-MitM) attack, which is capable of manipulating encrypted wireless frames between clients and the Access Point (AP) in a Wireless LAN (WLAN). MC-MitM attacks are possible on any client no matter how the client authenticates with the AP. Key reinstallation attacks (KRACK) in 2017-18, and the latest FragAttacks in 2021 are frontline MC-MitM attacks that widely impacted millions of Wi-Fi systems, especially those with Internet of Things (IoT) devices. Although there are security patches against some attacks, they are not applicable to every Wi-Fi or IoT device. In addition, existing defense mechanisms to combat MC-MitM attacks are not feasible for two reasons: they either require severe firmware modifications on all the devices in a system, or they require the use of several advanced hardware and software for deployment. On top of that, high technical overhead is imposed on users in terms of network setup and maintenance. This paper presents the first plug-and-play system to detect MC-MitM attacks. Our solution is a lightweight, signaturebased, and centralized online passive intrusion detection system that can be easily integrated into Wi-Fi-based IoT environments without modifying any network settings or existing devices. The evaluation results show that our proposed framework can detect MC-MitM attacks with a maximum detection time of 60 seconds and a minimum TPR (true positive rate) of 90% by short-distance detectors and 85% by long-distance detectors in real Wi-Fi or IoT environments.

show abstract

“…Although patches are available for both KRACK and FragAttacks, the critical problem is that they are not applicable on every Wi-Fi or IoT device because of factors like resource constraints, deprecated security protocols, expired product support periods, etc. Four years after KRACK's appearance, it is estimated that more than 75 percent of Wi-Fi-enabled devices still remain vulnerable to it [10], [11].…”

mentioning

confidence: 99%

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-The-Middle Attacks Against Protected Wi-Fi Networks

Thankappan¹,

Rifà-Pous²,

Garrigues³

2022

SSRN Journal

View full text Add to dashboard Cite

Responding to KRACK: Wi-Fi Security Awareness in Private Households

Cited by 7 publications

References 6 publications

A Survey of User Perspectives on Security and Privacy in a Home Networking Environment

A Survey of User Perspectives on Security and Privacy in a Home Networking Environment

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-the-Middle Attacks Against Protected Wi-Fi Networks

A Signature-Based Wireless Intrusion Detection System Framework for Multi-Channel Man-in-The-Middle Attacks Against Protected Wi-Fi Networks

Contact Info

Product

Resources

About