Title :
Rogue Access Point Based DoS Attacks against 802.11 WLANs
Author :
Liu, Chibiao ; Yu, James
Author_Institution :
Sch. of CTI, DePaul Univ., Chicago, IL
Abstract :
The growing popularity of the 802.11-based Wireless LAN (WLAN) also increases its risk of security attacks. This paper presents an analysis and solution to two Denial of Service (DoS) attacks: Deauthentication flooding (DeauthF) and disassociation flooding (DisassF) attacks. We conducted experiments to understand the impact of the attacks, and applied the Markov chain model to study the transition probabilities under attacks. We then follow the newly proposed 802.11 w standard and implement a solution to prevent the attacks. Our results show that 802.11 w is effective for low rate deauthentication and disassociation attacks but fails to protect against the flooding attacks because it takes significant resources to authenticate frames. We propose an integrated approach to applying traffic pattern filtering (TPF) over 802.11 w to resolve DeauthF and DisassF DoS attacks. The simulation results yields satisfactory performance for the integrated approach.
Keywords :
Markov processes; message authentication; probability; telecommunication security; telecommunication traffic; wireless LAN; 802.11 WLAN; Markov chain model; deauthentication flooding attack; denial of service; disassociation flooding attack; rogue access point based DOS attacks; telecommunication security; traffic pattern filtering; transition probability; wireless LAN; Access protocols; Authentication; Communication system security; Computer crime; Cryptography; Data security; Floods; Protection; Traffic control; Wireless LAN; 802.11; 802.11w; DoS; WLAN;
Conference_Titel :
Telecommunications, 2008. AICT '08. Fourth Advanced International Conference on
Conference_Location :
Athens
Print_ISBN :
978-0-7695-3162-5
Electronic_ISBN :
978-0-7695-3162-5
DOI :
10.1109/AICT.2008.54
