Detecting Security Threats in Wireless LANs Using Timing and Behavioral Anomalies

File Size Format
50048_1.pdf 233Kb Adobe PDF View
Title Detecting Security Threats in Wireless LANs Using Timing and Behavioral Anomalies
Author Sithirasenan, Elankayer; Muthukkumarasamy, Vallipuram
Publication Title Proceedings of the 2007 15th IEEE International Conference on Networks
Editor Arek Dadej
Year Published 2007
Publisher IEEE
Abstract With the increasing dependence on wireless LANs (WLANs), businesses and educational institutions are in need of a reliable security mechanism. The latest security protocol, the IEEE 802.11i assures rigid security for WLANs with the support of IEEE 802.1x protocol for authentication, authorization and key distribution. Nevertheless, fresh security threats are emerging often to oust these new defense mechanisms. Further, many organizations based on superficial vendor literature, believe their wireless security is sufficient enough to prevent any unauthorized access. Having wide ranging options for security configurations, users are camouflaged into deep uncertainty. This volatile state of affairs has prevented many organizations from fully deploying WLANs for their secure communication needs, though WLANs may be cost effective and flexible. In this paper, we present an anomaly based mechanism to detect both known and emerging security threats in WLANs. Our method uses both timing and behavioral anomalies. We first look for timing and/or behaviour anomalies during the security association process and then use outlier based data association approaches to verify their legitimacy. The proposed concept was tested on our experimental setup and the results obtained from EAP-LEAP and EAP-PEAP authenticated hosts are presented here.
Peer Reviewed Yes
Published Yes
Publisher URI http://www.ieee.org/
Alternative URI http://ieeexplore.ieee.org/xpl/tocresult.jsp?isnumber=4444031&isYear=2007
Copyright Statement Copyright 2007 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
ISBN 1424412307
Conference name 2007 15th IEEE International Conference on Networks
Location Adelaide, Australia
Date From 2007-11-19
Date To 2007-11-21
URI http://hdl.handle.net/10072/17592
Date Accessioned 2008-03-31
Date Available 2008-11-25T05:38:06Z
Language en_AU
Research Centre Institute for Integrated and Intelligent Systems
Faculty Faculty of Science, Environment, Engineering and Technology
Subject Science & Technology
Publication Type Conference Publications (Full Written Paper - Refereed)
Publication Type Code e1

Show simple item record

Griffith University copyright notice