Specification-based intrusion detection in WLANs

Gill, Rupinder S., Smith, Jason, & Clark, Andrew J. (2006) Specification-based intrusion detection in WLANs. In Annual Computer Security Applications Conference, Miami Beach, FL.

View at publisher


Wireless networking technologies based on the IEEE 802.11 series of standards fail to authenticate management frames and network card addresses and suffer from serious vulnerabilities that may lead to denial of service, session hijacking, and address masquerading attacks. In this paper, we describe and implement a specification based intrusion detection system for IEEE 802.11 wireless infrastructure networks, which not only provides attack detection but also implements policy compliance monitoring. The specification used by our intrusion detection system is derived from network protocol state transition models and site security policy constraints. We also perform an experimental and comparative analysis of the technique to assess its effectiveness. The results indicate that the approach is superior at successfully detecting a greater variety of attacks than other existing approaches.

Impact and interest:

15 citations in Scopus
4 citations in Web of Science®
Search Google Scholar™

Citation counts are sourced monthly from Scopus and Web of Science® citation databases.

These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.

Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.

Full-text downloads:

821 since deposited on 23 Oct 2006
37 in the past twelve months

Full-text downloads displays the total number of times this work’s files (e.g., a PDF) have been downloaded from QUT ePrints as well as the number of downloads in the previous 365 days. The count includes downloads for all files if a work has more than one.

ID Code: 5281
Item Type: Conference Paper
Refereed: No
DOI: 10.1109/ACSAC.2006.48
ISBN: 0769527167
ISSN: 1063-9527
Divisions: Past > QUT Faculties & Divisions > Faculty of Science and Technology
Copyright Owner: Copyright 2006 IEEE
Copyright Statement: Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
Deposited On: 23 Oct 2006 00:00
Last Modified: 29 Feb 2012 13:20

Export: EndNote | Dublin Core | BibTeX

Repository Staff Only: item control page