Title :
Detecting and reducing the denial of Service attacks in WLANs
Author :
Singh, Rajeev ; Sharma, Teek Parval
Author_Institution :
Dept. of Comput. Eng., GB Pant Univ., Pantnagar, India
Abstract :
Wireless LANs are susceptible to Denial of Service (DoS) attacks. None of the existing wireless security protocols considers protection against them. We propose a novel scheme that detects and reduce DoS attacks in the WLANs. The scheme is based on random number rate control mechanism. It utilizes delegation concept for authentication at the Access Point (AP). Under flooding DoS, AP is unable to verify large number of client authentication requests. It hence, forwards optional message containing hash to the Authentication Server (AS). AS verifies the hash and sends response back to AP, thereby detecting DoS attack. The attack impact at the AP is reduced by dropping the attack packets while selecting the legitimate one. The scheme protects AS from DoS as hash calculations for detection of DoS are done once only. Scheme also prevents against legacy authentication/association and deauthentication/disassociation flooding DoS attacks.
Keywords :
access protocols; authorisation; client-server systems; computer network security; cryptographic protocols; message passing; wireless LAN; DoS attack detection; DoS attack reduction; WLAN; access point; authentication server; client authentication requests; deauthentication; denial of service attacks; hash calculations; legacy association; legacy authentication; message forwarding; random number rate control mechanism; wireless LAN; wireless security protocols; Authentication; Computer crime; Floods; IEEE 802.11 Standards; Microwave integrated circuits; Public key; 802.11i; Denial of Service; WLAN Security; authentication;
Conference_Titel :
Information and Communication Technologies (WICT), 2011 World Congress on
Conference_Location :
Mumbai
Print_ISBN :
978-1-4673-0127-5
DOI :
10.1109/WICT.2011.6141379
