Specification-Based Intrusion Detection in WLANs

14 years 3 months ago

Download www.acsac.org

Wireless networking technologies based on the IEEE 802.11 series of standards fail to authenticate management frames and network card addresses and suffer from serious vulnerabilities that may lead to denial of service, session hijacking, and address masquerading attacks. In this paper, we describe and implement a specification-based intrusion detection system for IEEE 802.11 wireless infrastructure networks, which not only provides attack detection, but also implements policy compliance monitoring. The specification used by our intrusion detection system is derived from network protocol state transition models and site security policy constraints. We also perform an experimental and comparative analysis of the technique to assess its effectiveness. The results indicate that the approach is superior at successfully detecting a greater variety of attacks than other existing approaches.

Rupinder Gill, Jason Smith, Andrew Clark

Real-time Traffic

ACSAC 2006 | IEEE 802.11 | IEEE 802.11 Series | Intrusion Detection System | Security Privacy |

claim paper

Post Info
More Details (n/a)

Added	20 Aug 2010
Updated	20 Aug 2010
Type	Conference
Year	2006
Where	ACSAC
Authors	Rupinder Gill, Jason Smith, Andrew Clark

Comments (0)

Sciweavers

Specification-Based Intrusion Detection in WLANs

ACSAC 2006 | IEEE 802.11 | IEEE 802.11 Series | Intrusion Detection System | Security Privacy |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers