WNV-Detector: automated and scalable detection of wireless network vulnerabilities

Huang, Yanxi; Zhu, Fengsen; Liu, Liang; Meng, Wezhi; Hu, Simin; Ye, Renjun; Lv, Ting

doi:10.1186/s13638-021-01978-4

Cited by 4 publications

(10 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Yang et al [36] collect information from the Internet to build a complete product database of IoT devices and combine rules to label network devices. WNV-Detector [37] designs general rules for accessing device webpages and parse out fine-grained information. However, the response data of network devices often contain only partial information, limiting the effectiveness and coverage of the identification.…”

Section: Rule-based Device Identificationmentioning

confidence: 99%

“…We assume that the adversaries conduct attacks in the WLAN, and the specific behaviors can be (1) connecting unauthorized devices to the wireless network such as hidden cameras and bugs [24,47]; (2) using IoT honeypots or virtual machines to forge legitimate real devices [48,49]; (3) utilizing software to counterfeit the wireless AP, which has the same SSID and MAC address as the legitimate one, deceiving the user to connect and further performing malicious attacks [17][18][19][20]; (4) exploiting the device vulnerabilities that have been disclosed on the Internet to endanger the security of user devices and the entire platform [37,50].…”

Section: Reat Modelmentioning

confidence: 99%

“…Furthermore, targeted security policies can be applied to protect the security of connected devices and the entire network. For example, we can configure firewall rules for different device types contrapuntally and scan the known security vulnerabilities of the devices by searching the Internet vulnerability database with the concrete device model information [37].…”

Section: Network Administratormentioning

confidence: 99%

“…Rule-based device identification aims to make full use of the natural language features in the device-info-related protocol packets to specifically label the device. Previous works use banner grabbing [21,[31][32][33][34] and rules [35][36][37] to extract textual information from devices. However, these solutions need to actively send detections to the device and collect response data for analysis, which is easily blocked by firewall rules.…”

Section: Rule-based Device Identificationmentioning

confidence: 99%

“…In addition, the above methods cannot provide concrete device information, resulting in limited application scenarios. By contrast, rulebased identification schemes [21,[31][32][33][34][35][36][37] extract specific identification information (e.g., device vendor and product model) from the response data in the application layer to label network devices. However, the above solutions need to send requests actively, which can be easily blocked by firewall rules.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

WND-Identifier: Automated and Efficient Identification of Wireless Network Devices

Zhu

Liu

et al. 2021

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

The widespread application of wireless communication technology brings great convenience to people, but security and privacy problems also arise. To assess and guarantee the security of wireless networks and user devices, discovering and identifying wireless devices become a foremost task. Currently, effective device identification is still a challenging issue, as device fingerprinting requires huge training datasets and is difficult to expand, and rule-based identification is not accurate and reliable enough. In this paper, we propose WND-Identifier, a universal and extensible framework for the identification of wireless devices, which can generate high-precision device labels (vendor, type, and product model) efficiently without user interaction. We first introduce the concept of device-info-related network protocols. WND-Identifier makes full use of the natural language features in such protocol messages and combines with the device description in the welcome page, thereby utilizing extraction rules to generate concrete device labels. Considering that the device information in the protocol messages may be incomplete or forged, we further take advantage of the application logic independence and stability of the device-info-related protocol, so as to build a multiprotocol text classification model, which maps the device to a known label. We conduct experiments in homes and public networks and present three application scenarios to verify the effectiveness of WND-Identifier.

show abstract

Section: Rule-based Device Identificationmentioning

confidence: 99%

Section: Reat Modelmentioning

confidence: 99%

Section: Network Administratormentioning

confidence: 99%

Section: Rule-based Device Identificationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

WND-Identifier: Automated and Efficient Identification of Wireless Network Devices

Zhu

Liu

et al. 2021

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

show abstract

RW-Fuzzer: A Fuzzing Method for Vulnerability Mining on Router Web Interface

Wang

Cao

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

As the main routing device of the network, most routers can be set up and managed through their web enabled admin portal. This paper proposes a new method for router admin portal vulnerability mining fuzzing test (RW-fuzzer: Router Web fuzzer). The mutation samples that generated by Boofuzz are used to construct the test sample set for fuzzy testing. The constructed mutation test cases are more suitable for the attack load or critical value of the router’s Web interface. They can cause unexpected errors for the devices more easily, which achieves the goal of discover potential vulnerabilities, and the practicality is excellent. Based on the proposed RW-fuzzer method, this work conducted fuzzing tests on 4 widely sold router models from manufacturers. Four nday vulnerabilities and one 0day vulnerability have been found. Experiment results show that the proposed RW-fuzzer method is effective.

show abstract

Security Of the Internet of Things: Home Network Security Review and Evaluation

KANDIR

YOLAÇAN

Işık

2022

UUJFE

View full text Add to dashboard Cite

Evrensel Tak ve Çalıştır (Universal Plug and Play, UPnP) ve IoT iletişim protokolleri sayesinde cihazların birbirleriyle ve ağ ile bağlantıları çok daha kolay ve hızlı yapılabildiğinden ev ağındaki bağlantı sayısı da artmıştır. Akıllı televizyonlar ve temizlik robotları gibi akıllı cihazlar, yaşam konforumuzu artırmakta ve ev ağı üzerinden tüm dünyaya bağlantı sağlar hale gelmiştir. Bu nedenle, ev ağının internete bağlı olduğu gerçeği ağdaki akıllı cihazların güvenlik durumlarının sorgulanması ihtiyacını ortaya çıkarmıştır. Bu çalışmada, ev ağı içerisindeki popüler cihazların güvenlik seviyelerinin analiz edilmesi sağlanmıştır. Ev Ağı içerisinde UPnP zafiyetine sahip cihazların varlığını tespit etmek için Python yazılım dili kullanılarak uygulama geliştirilmiştir. Geliştirilen uygulama kullanılarak ev ağı içerisindeki 15 adet cihazdan 3 adet cihazın UPnP açıklığına sahip olduğu görülmüştür. Bir senaryo içerisinde UpNP açıklığı kullanılarak saldırı uygulaması gerçekleştirilmiştir. Bu çalışma ile evdeki ağ ve iletişim yöntemleri güvenliğinin yanında her bir IoT cihazın güvenliğinin sağlanmasının gerekliliği ayrıntılı olarak sunulmuştur.

show abstract

WNV-Detector: automated and scalable detection of wireless network vulnerabilities

Cited by 4 publications

References 13 publications

WND-Identifier: Automated and Efficient Identification of Wireless Network Devices

WND-Identifier: Automated and Efficient Identification of Wireless Network Devices

RW-Fuzzer: A Fuzzing Method for Vulnerability Mining on Router Web Interface

Security Of the Internet of Things: Home Network Security Review and Evaluation

Contact Info

Product

Resources

About