Security Analysis of Application Layer Protocols on Wireless Local Area Networks 被引量：1

Security Analysis of Application Layer Protocols on Wireless Local Area Networks

导出

摘要 This paper aims at analyzing the security issues that lie in the application layer (AL) protocols when users connect to the Internet via a wireless local area network (WLAN) through an access point. When adversaries launch deauthentication flood attacks cutting users' connection, the connection managers will automatically research the last access point's extended service set identifier (ESSID) and then re-establish connection. However, such re-connection can lead the users to a fake access point with the same ESSID set by attackers. As the attackers hide behind users' access points, they can pass AL's authentication and security schemes, e.g. secure socket layer (SSL). We have proved that they can even spy on users' account details, passwords, data and privacy. This paper aims at analyzing the security issues that lie in the application layer （AL） protocols when users connect to the Internet via a wireless local area network （WLAN） through an access point. When adversaries launch deauthentication flood attacks cutting users＇ connection, the connection managers will automatically research the last access point＇s extended service set identifier （ESSID） and then re-establish connection. However, such re-connection can lead the users to a fake access point with the same ESSID set by attackers. As the attackers hide behind users＇ access points, they can pass AL＇s authentication and security schemes, e.g. secure socket layer （SSL）. We have proved that they can even spy on users＇ account details, passwords, data and privacy.

作者杨明豪

机构地区 Department of Information & Computer Engineering

出处《Journal of Shanghai Jiaotong university(Science)》 EI 2011年第5期586-592,共7页 上海交通大学学报（英文版）

基金 the National Science Council (No. NSC-99-2219-E-033-001) the Foundation of the Chung Yuan Christian University (1004) (No. CYCU-EECS.9801)

关键词 man-in-the-middle (MITM) attacks session hijacking wireless local area network (WLAN) man-in-the-middle （MITM） attacks, session hijacking, wireless local area network （WLAN）

分类号 TP393.1 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献18

1Nessus. Tenable passive vulnerability scanner [EB/OL]. (2011-2-9). http://www.nessus.org/pro- ducts/tenable-passive-vulnerability-scanner. 被引量：1
2GORDEN A L, LOEB P M, LUCYSHYN M, et al. Com- puter crime and security survey JR]. USA: CSI/FBI, 2006. 被引量：1
3NIST SP800-48, Wireless network security: 802.11, bluetooth, and handheld devices IS]. 被引量：1
4GAO. Information security: Federal agencies need to improve controls over wireless networks [R]. USA: Gov- ernment Accountability Office, 2005. 被引量：1
5SHIEH Shiuh-pyng. Security and privacy on wireless networks [J1. Science Monthly, 2005, 36(2): 444-447. 被引量：1
6WALKER J. 802.11, security series part III: AES- based encapsulations of 802.11 data [EB/OL]. (2011- 2-27). http://jcbserver.uwaterloo.ca/cs436/nandouts/ miscellaneous/Intel Wireless 3.pdf. 被引量：1
7CAM-WINGET C, HOUSLEY R, WAGNER D, et al. Se- curity flaws in 802.11 data link protocols [J]. Commu- nications of the ACM, 2003, 46(5): 35-39. 被引量：1
8BAEK K H, SMITH S W, KOTZ D. A survey of WPA and 802.11i RSN authentication protocols [R]. USA: Dartmouth College Computer Science, 2004. 被引量：1
9CHOU Hung-Lin. Analysis of WPA security [EB/OL]. (2011-3-5). http://lee- 1.com/hlchou/WLANWPA. html. 被引量：1
10Wi-Fi Alliance. Wi-Fi is everywhere [EB/OL]. (2011- 4-10). http://www.wifialliance.org/OpenSection/pdf/ WPA_NI_2003-Pres.pdf. 被引量：1

同被引文献9

1Cao Jin,Ma Maode,Li Hui,Zhang Y u e y u,Luo Zhenxing.A Survey on Security Aspects for LTE and LTE-A Networks. IEEE Communications Surveys and Tutorials . 2014 被引量：1
2Astély, David,Dahlman, Erik,Furusk?r, Anders,Jading, Ylva,Lindstr?m, Magnus,Parkvall, Stefan.LTE: The evolution of mobile broadband. IEEE Communications Magazine . 2009 被引量：1
3Park Y,Park T.A survey of security threats on 4g networks. IEEE Globecom Workshops . 2007 被引量：1
4Third Generation Partnership Project (3GPP).'Rationale and track of security decisions in Long Term Evolved (LTE) RAN / 3GPP System Architecture Evolution (SAE) (Release 8)'. 3GPP TS 33.821 v8.0.0 . 2009 被引量：1
5SEDDIGH N,NANDY B,MAKKAR R,et al.Security advances and challenges in 4G wireless networks. The 8th Annual International Conference on Privacy,Security and Trust . 2010 被引量：1
6黄秀丽,张涛,王玉斐,华晔.电力系统通信中WWAN安全研究[J].计算机技术与发展,2012,22(5):245-249. 被引量：4
7曹津平,刘建明,李祥珍.面向智能配用电网络的电力无线专网技术方案[J].电力系统自动化,2013,37(11):76-80. 被引量：84
8李金友,闫磊,齐欢,孟繁.基于LTE230系统的电力无线通信专网研究与实践[J].电气技术,2014,15(1):132-134. 被引量：28
9苗健.基于4G通信技术的无线网络安全通信分析[J].电子技术与软件工程,2015(1):43-44. 被引量：21

引证文献1

1李坚,刘昀,安春燕,任建伟.电力4G无线通信网络安全技术[J].电信科学,2015,31(S1):69-73. 被引量：6

二级引证文献6

1张天,苏伟,龚雁峰.基于电力4G专网的变电站实时双向智能巡检[J].山东电力技术,2018,45(10):7-11. 被引量：1
2任鹏飞,谷灵康.基于粒子群进化的输电网络WSN节点定位算法[J].沈阳工业大学学报,2018,40(5):541-546. 被引量：9
3蔡晨晨,王国宝,杨玉强.基于双模射频识别技术的救援器材车管理系统[J].中国工程机械学报,2019,17(6):536-539. 被引量：5
4马鸿娟,涂新奇,贾寅森,颜伟.变电站4G传输安全电磁干扰研究[J].南京师范大学学报（工程技术版）,2019,19(4):38-43. 被引量：1
5李暖暖,陈岑,张铮,蔡军飞,常昊.电力无线终端通信接入网的安全风险分析[J].通信电源技术,2021,38(18):127-130.
6乐健,郎红科,谭甜源,綦淦,王靖,汪维豪.新型配电系统分布式经济调度信息安全问题研究综述[J].电力系统自动化,2024,48(12):177-191.

1吴杰平.WLAN是谁的宠儿?[J].信息系统工程,2003(2):25-26.
2肖跃雷,王育民,庞辽军.Security Analysis and Improvement of TNC IF-T Protocol Binding to TLS[J].China Communications,2013,10(7):85-92. 被引量：1
3Zhu Xiaomin,Liao Jianxin,Chen Junliang,Li Tonghong.Exploring Application Layer Protocol Relationships in SoftSwitch[J].China Communications,2009,6(4):155-167.
4SHI JianHong,ZHANG ShengLi,CHANG ZhengGang.The security analysis of a threshold proxy quantum signature scheme[J].Science China Chemistry,2013,56(3):519-523. 被引量：5
5JIANG Fan FAN Jiu-lun CHANG Zhi-xian.Enhanced cooperative MAC for wireless local area networks[J].The Journal of China Universities of Posts and Telecommunications,2011,18(5):7-14. 被引量：1
6王东.无线局域网的安全策略[J].通信管理与技术,2004(5):14-18.
7李雄伟,赵彦然.无线局域网的安全性及其攻击方法研究[J].无线电通信技术,2005,31(1):14-16. 被引量：14
8彭丹.浅谈无线局域网技术[J].福建电脑,2006,22(8):48-49.
9孙华.WLAN在奥运会中的应用和监管[J].中国无线电,2008(12):31-34.
10林楠,CUI,xia-li.The Security of Wireless Local Area Network[J].电脑知识与技术,2007,2(5):634-635.

Journal of Shanghai Jiaotong university(Science)

2011年第5期

浏览历史

内容加载中请稍等...

Security Analysis of Application Layer Protocols on Wireless Local Area Networks 被引量：1

参考文献18

同被引文献9

引证文献1

二级引证文献6

相关作者

相关机构

相关主题

浏览历史