A Practical Attack on Broadcast RC4
FSE '01 Revised Papers from the 8th International Workshop on Fast Software Encryption
Real 802.11 Security: Wi-Fi Protected Access and 802.11i
Real 802.11 Security: Wi-Fi Protected Access and 802.11i
802.11 denial-of-service attacks: real vulnerabilities and practical solutions
SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12
Hi-index | 0.00 |
Since the ratification of the IEEE 802.11 standard, 802.11 Wireless LANs (WLANs) have been widely deployed in research, government, military and industrial environments. However, 802.11 WLANs suffer from a number of security problems. In particular, management frames in 802.11 WLANs are not protected. A number of attacks such as denial of service, impersonation and man-in-the-middle can be launched by exploiting unprotected management frames. Even the newly ratified 802.11i security standard does not protect the network against such attacks. We present a per-frame authentication scheme to protect 802.11 management frames. With this scheme, every frame received by the wireless client or access point is first authenticated and then the corresponding management function carried out. Our scheme is compatible with the original 802.11 standard and uses the most of the 802.11 standard resources. We have implemented a prototype of our scheme and built a test bed to launch management frame attacks and to demonstrate how our scheme can prevent such attacks.