Security flaws in 802.11 data link protocols

Cam-Winget, Nancy; Housley, Russ; Wagner, David; Walker, Jesse

doi:10.1145/769800.769823

Cited by 121 publications

(52 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Accordingly, there have been numerous attempts to make various wireless platforms secure by migrating traditional network security strategies to the wireless domain. In spite of these efforts, the development of secure wireless protocols has proven to be a very elusive goal-a fact that is supported by numerous papers revealing successful attacks on many wireless security protocols [1][2][3][4][5]. Perhaps one of the most fundamental reasons why wireless systems have been difficult to secure stems from the broadcast nature of the medium itself, which facilitates both eavesdropping and easy network intrusion.…”

Section: Introductionmentioning

confidence: 99%

Securing wireless systems via lower layer enforcements

Zang

Miller

et al. 2006

Proceedings of the 5th ACM Workshop on Wireless Security

157

116

View full text Add to dashboard Cite

Although conventional cryptographic security mechanisms are essential to the overall problem of securing wireless networks, these techniques do not directly leverage the unique properties of the wireless domain to address security threats. The properties of the wireless medium are a powerful source of domain-specific information that can complement and enhance traditional security mechanisms. In this paper, we propose to utilize the fact that the radio channel decorrelates rapidly in space, time and frequency in order to to establish new forms of authentication and confidentiality that operate at the physical layer and can be used to facilitate cross-layer security paradigms. Specifically, for authentication services, we illustrate two channel probing techniques that can be used to verify the authenticity of a transmitter. Similarly, for confidentiality, we examine several strategies for establishing shared secrets/keys between two communicators using the wireless medium. These strategies range from extracting keys from channel state information, to utilizing the channel variability to secretly disseminate keys. We then validate the feasibility of using physical layer techniques for securing wireless systems by presenting results from experiments involving the USRP/GNURadio software defined radio platform.

show abstract

Section: Introductionmentioning

confidence: 99%

Securing wireless systems via lower layer enforcements

Zang

Miller

et al. 2006

Proceedings of the 5th ACM Workshop on Wireless Security

157

116

View full text Add to dashboard Cite

show abstract

“…39(Supl. ):55-60, 2015 consideraron seguros finalmente fueron vulnerados (Bellare, Desai, Pointcheval & Rogaway, 1998; Camp-Winget, Housley, Wagner & Walker, 2003;Shannon, 1949), todas las áreas relacionadas con la seguridad en la información han presentado un gran desarrollo. Este desarrollo incluye la consolidación y surgimiento de nuevas alternativas para el manejo seguro de datos.…”

Section: Introductionunclassified

Protección de datos usando un sistema experimental de encriptación de correlador de transformada conjunta

Torroba

Barrera-Ramírez

2015

Rev. Acad. Colomb. Cienc. Ex. Fis. Nat.

View full text Add to dashboard Cite

ResumenEn esta contribución se presenta la implementación experimental un sistema de protección de información basado en el procesamiento óptico y se analiza la fidelidad de la información recuperada cuando hay pérdida de datos durante la transmisión. La información es encriptada empleando una arquitectura óptica de correlador de transformada conjunta y una técnica de codificación de doble máscara de fase. Un usuario autorizado puede recuperar la información original cuando tiene acceso a la información del dato encriptado y de la llave de seguridad; si un intruso puede interceptar la imagen encriptada, pero no accede la información de la llave de seguridad, no podrá acceder a la información contenida en el dato encriptado. La descripción teórica y los resultados experimentales demuestran la habilidad que tiene el sistema de seguridad para proteger y recuperar información por medio de procesadores ópticos, y su tolerancia a la pérdida de información durante la transmisión.Palabras clave: procesamiento óptico de información, protección de datos, seguridad óptica, correlador de transformada conjunta, encriptación, desencriptación. Data protection using a joint transform correlator experimental system AbstractIn this contribution the implementation of an experimental data protection system based on optical processing is presented, and the reliability of the recovered information when there is data loss during transmission is analyzed. The information is encrypted using an optical joint transform correlation architecture together with a double phase mask encoding technique. An authorized user recovers the original information when accessing the encoded data and the security key; if an intruder intersects the encoded image but does not possess the security key there is no possibility to access to the information contained in the encrypted image. The theoretical description and the experimental results show the ability the security systems exhibits to protect and recover the information by optical means, including the tolerance to data loss during transmission. Key words:Optical information processing, data protection, optical security, joint transform correlator, encryption, decryption. Ciencias físicas IntroducciónDía a día aumenta en forma significativa la cantidad de información pública y privada disponible en el mundo, y en esa misma medida se incrementa el número de personas que intercambian datos (caracteres, archivos binarios, imágenes, videos, etc). Esto implica que se tiene un gran número de personas enviando y recibiendo información que en muchos casos es secreta o sensible. Por lo tanto, hoy en día para muchas personas alrededor del mundo es cotidiano el uso de protocolos y sistemas que garantizan que los datos privados sean accesibles sólo para los usuarios autorizados.Las empresas invierten miles de millones de dólares alrededor del mundo sólo para evitar el fraude en la información. Además, las comunicaciones electrónicas y el almacenamiento de datos en computadores están bajo riesgo dado que las comun...

show abstract

“…But many people are not aware of the Denial of Service (DoS) attacks. Number of studies have been taken to avoid DoS attacks [3,4] and different security protocols were also proposed and implemented over WLAN such as 802.11i [5], Wired Equivalent Privacy (WEP) [1,6], Wi-Fi Protected Access (WPA) [2], 802.11 [7,8], 802.11b [9], 802.1x and 802.1w [10,11]. None of them provide specific solution to avoid DoS attacks [12,13].…”

Section: Introductionmentioning

confidence: 99%

Inhibition of Denial of Service Attack in WLAN using the Integrated Central Manager

Vani¹,

Arockiam²,

Persia³

et al. 2011

IJCA

View full text Add to dashboard Cite

Denial of Service (DoS) attack is a major problem prevalent in Wireless Local Area Network (WLAN). Many security techniques were introduced to prevent the DoS attacks in WLAN. However, there are still many weaknesses which provide interest and way for hackers to do such attacks. This research mainly deals with the two types of DoS attacks, namely EAPOL (Extensible Authentication Protocol over LAN) start and EAPOL logoff frame over Access Point (AP) and wireless client. The experimental test bed is taken and the solutions are simulated using NS-2, a Linux based simulator, to analyze how far it prevents the DoS attacks in WLAN. The Central Manager (CM) along with Intruder Database (IDB) is proposed to defend the two different types of attacks targeted on Access Point and Client. The CM and IDB can be combined together and called as Integrated Central Manager (ICM). It acts as an Authenticated Server (AS) which manages the communication between the client and the Access Point. The proposed solution increases the throughput. When there is a chance of the failure of the ICM, maintaining a duplicate ICM is proposed which secure the client and Access Point from the attacks.

show abstract

Security flaws in 802.11 data link protocols

Abstract: Understanding the difficulties in security protocol design and attempting to relocate the struggle between hacker and defender to a different protocol layer.

Cited by 121 publications

References 5 publications

Securing wireless systems via lower layer enforcements

Securing wireless systems via lower layer enforcements

Protección de datos usando un sistema experimental de encriptación de correlador de transformada conjunta

Inhibition of Denial of Service Attack in WLAN using the Integrated Central Manager

Contact Info

Product

Resources

About