This paper aims at improving one of the most important vulnerabilities of IEEE 802.11x wireless networks that is sending the management packets on unencrypted channels. Adversaries exploit this weakness for executing attacks such as Man-In-The-Middle (MITM) and Evil Twin. We propose a novel Wireless Intrusion Response Scheme (WIRS) that called Rashnu to deal with these attacks. Rashnu is a third party WIRS and is capable of rescuing the victim(s) i.e. AP’s clients. In particular, our proposed scheme can eliminate or decrease the consequences of these attacks without any user notification. Note that, this approach is very interesting when attacks are detected in Wi-Fi cells by a third party IDS. Since, enforcement of security policies is not always possible for all public Wi-Fi users, so, using third party IDSs and IRSs is very helpful. Rashnu assumes the intrusion detection issues are solved abstractly and just focuses on the intrusion response in public Wi-Fi networks which are established in hotels, restaurants, hypermarkets, airports and etc. The proposed response approach is simulated in Omnet++ environment to appraise its effectiveness. Simulation results show that Rashnu can respond to these attacks with more than 65% success rate. Changing the AP selection strategy in the agent layer of the victim's wireless NIC, 35% attacker’s success rate is reduced to 8%. Eventually, improving Rashnu by tuning the Response Rate (RR) factor can modify this value by only 2.7%.
کلید واژگان :Wireless network, IEEE 802.11x, Intrusion Response, MITM, Evil Twin.
ارزش ریالی : 600000 ریال
با پرداخت الکترونیک