A Lightweight Solution for Defending Against Deauthentication/Disassociation Attacks on 802.11 Networks

Author

Nguyen, Thuc D. ; Nguyen, Duc H M ; Tran, Bao N. ; Vu, Hai ; Mittal, Neeraj

Author_Institution

Vietnam Nat. Univ., Ho Chi Minh City

fYear

2008

fDate

3-7 Aug. 2008

Firstpage

1

Lastpage

6

Abstract

In this paper we investigate a special type of denial of service (DoS) attack on 802.11-based networks, namely deauthentication/disassociation attack. In the current IEEE 802.11 standards, whenever a wireless station wants to leave the network, it sends a deauthentication or disassociation frame to the access point. These two frames, however, are sent unencrypted and are not authenticated by the access point. Therefore, an attacker can launch a DoS attack by spoofing these messages and thus disabling the communication between a wireless device and its access point. We propose an efficient solution based on a one way hard function to verify that a deauthentication/disassociation frame is from a legitimate station. We implement our solution on some 802.11 devices and the experimental results show that our protocol is highly effective against this DoS attack.

Keywords

message authentication; telecommunication security; wireless LAN; 802.11-based networks; DoS; IEEE 802.11 standards; access point; deauthentication attack; denial-of-service attack; disassociation attack; wireless device; Access protocols; Authentication; Cities and towns; Communication system security; Computer crime; Cryptography; Hardware; Resource management; USA Councils; Wireless communication;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Communications and Networks, 2008. ICCCN '08. Proceedings of 17th International Conference on

Conference_Location

St. Thomas, US Virgin Islands

ISSN

1095-2055

Print_ISBN

978-1-4244-2389-7

Electronic_ISBN

1095-2055

Type

conf

DOI

10.1109/ICCCN.2008.ECP.51

Filename

4674211