Title :
Security improvements of IEEE 802.11i 4-way handshake scheme
Author :
Zha, Xiaodong ; Ma, Maode
Author_Institution :
Sch. of Electr. & Electron. Eng., Nanyang Technol. Univ., Singapore, Singapore
Abstract :
One of the key components of IEEE 802.11i authentication protocol to defend against various malicious attacks is its 4-way handshake scheme. However, since Message 1 in the handshake scheme has not been protected by the Message Integrity Code (MIC), the original 4-way handshake scheme specified by the IEEE standard is vulnerable to the Denial of Service (DoS) attacks and DoS flooding attacks. Several countermeasures have been proposed in the literatures to prevent these attacks. However, they have ignored the feasibility of the solutions and the performance of them against the DoS flooding attacks. Motivated by these, in this paper, two security schemes, namely Message 1 Authentication and Supplicant Active Protection are proposed to protect wireless LAN networks free from the DoS attacks. Based on the analysis and formal verification by Colored Petri Nets (CPN), our proposed schemes could provide stronger secure functionality and outperform the existing schemes in the scenario under the Message 1 flooding attacks.
Keywords :
Petri nets; computer network security; protocols; wireless LAN; CPN; Colored Petri Nets; DoS flooding attacks; IEEE 802.11i 4-way handshake scheme; IEEE standard; MIC; authentication protocol; denial-of-service attacks; formal verification; message 1 authentication; message 1 flooding attacks; message integrity code; security improvements; supplicant active protection; wireless LAN networks; Authentication; Computer crime; Floods; Microwave integrated circuits; Proposals; Protocols; Colored Petri Nets; DoS; IEEE802.11i; Security;
Conference_Titel :
Communication Systems (ICCS), 2010 IEEE International Conference on
Conference_Location :
Singapore
Print_ISBN :
978-1-4244-7004-4
DOI :
10.1109/ICCS.2010.5686489
