Malware in IEEE 802.11 Wireless Networks

  • Brett Stone-Gross
  • Christo Wilson
  • Kevin Almeroth
  • Elizabeth Belding
  • Heather Zheng
  • Konstantina Papagiannaki
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4979)

Abstract

Malicious software (malware) is one of the largest threats facing the Internet today. In recent years, malware has proliferated into wireless LANs as these networks have grown in popularity and prevalence. Yet the actual effects of malware-related network traffic in open wireless networks has never been examined. In this paper, we provide the first study to quantify the characteristics of malware on wireless LANs. We use data collected from the large wireless LAN deployment at the 67th IETF meeting in San Diego, California as a case study. The measurements in this paper demonstrate that even a single infected host can have a dramatic impact on the performance of a wireless network.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Balachandran, A., Voelker, G.M., Bahl, P., Rangan, P.V.: Characterizing User Behavior and Network Performance in a Public Wireless LAN. In: Proc. of ACM SIGMETRICS, Marina Del Rey, CA, June 2002, pp. 195–205 (2002)Google Scholar
  2. 2.
    Chandra, R., Padmanabhan, V., Zhang, M.: WiFiProfiler: Cooperative Diagnosis in Wireless LANs. In: Proc. of MobiSys, Uppsala, Sweden (June 2006)Google Scholar
  3. 3.
    Chen, Z., Gao, L., Kwiat, K.: Modeling the Spread of Active Worms. In: Proc. of IEEE INFOCOM, San Francisco, CA (April 2003)Google Scholar
  4. 4.
    Cheng, Y., Afanasyev, M., Verkaik, P., Benko, P., Chiang, J., Snoeren, A., Savage, S., Voelker, G., Kwiat, K.: Automating Cross-Layer Diagnosis of Enterprise Wireless Networks. In: Proc. of ACM SIGCOMM, Kyoto, Japan (August 2007)Google Scholar
  5. 5.
    Gu, G., Porras, P., Yegneswaran, V., Fong, M., Lee, W.: BotHunter: Detecting Malware Infection Through IDS-Driven Dialog Correlation. In: Proc. of Usenix Security Symposium, Boston, MA (August 2007)Google Scholar
  6. 6.
    Heusse, M., Rousseau, F., Berger-Sabbatel, G., Duda, A.: Performance Anomaly of 802.11b. In: Proc. of IEEE INFOCOM, San Francisco, CA (March 2003)Google Scholar
  7. 7.
    Jardosh, A., Ramachandran, K., Almeroth, K., Belding-Royer, E.: Understanding Congestion in IEEE 802.11b wireless networks. In: Proc. of Internet Measurement Conference, Berkeley, CA (October 2005)Google Scholar
  8. 8.
    Kirda, E., Kruegel, C., Banks, G., Vigna, G., Kemmerer, R.: Behavior-based Spyware Detection. In: Proc. of Usenix Security Symposium, Vancouver, Canada (August 2006)Google Scholar
  9. 9.
    Kotz, D., Essien, K.: Analysis of a Campus-wide Wireless Network. In: Proc. of ACM MOBICOM, Atlanta, GA (September 2002)Google Scholar
  10. 10.
    Meng, X., Wong, S., Yuan, Y., Lu, S.: Characterizing Flows in Large Wireless Data Networks. In: Proc. of ACM MOBICOM, Philadelphia, PA (September 2004)Google Scholar
  11. 11.
    Moore, D., Voelker, G.M., Savage, S.: Inferring Internet Denial-of-Service Activity. In: Proc. of Usenix Security Symposium, Washington D.C (August 2001)Google Scholar
  12. 12.
    Rodrig, M., Reis, C., Mahajan, R., Wetherall, D., Zahorjan, J.: Measurement-based Characterization of 802.11 in a Hotspot Setting. In: Proc. of ACM SIGCOMM Workshop on Experimental Approaches to Wireless Network Design and Analysis (E-WIND), Philadelphia, PA (August 2005)Google Scholar
  13. 13.
    Schwab, D., Bunt, R.: Characterizing the Use of a Campus Wireless Network. In: Proc. of IEEE INFOCOM, Hong Kong, China (March 2004)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2008

Authors and Affiliations

  • Brett Stone-Gross
    • 1
  • Christo Wilson
    • 1
  • Kevin Almeroth
    • 1
  • Elizabeth Belding
    • 1
  • Heather Zheng
    • 1
  • Konstantina Papagiannaki
    • 2
  1. 1.Department of Computer ScienceUniversity of CaliforniaSanta Barbara
  2. 2.Intel ResearchPittsburgh

Personalised recommendations