Advertisement

Lightweight Wireless Intrusion Detection Systems Against DDoS Attack

  • Hyung-Woo Lee
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3984)

Abstract

Wireless intrusion detection systems are important to the security of wireless local area networks (WLANs). Wireless networks are not only susceptible to TCP/IP-based attacks native to wired networks, they are also subject to a wide array of 802.11-specific threats. To aid in the defense and detection of these potential threats, WLANs should employ a security solution that includes an intrusion detection system(IDS). Intrusion detection systems attempt to identify computer system and network intrusions and misuse by gathering and analyzing data. IDS has traditionally been developed to detect intrusions and misuse for wired systems and networks. In this paper, we suggest lightweight wireless IDS module on AP with network monitoring, analysis and filtering module against malicious DDoS attacks. Suggested system provides good performance on wireless LAN environments.

Keywords

Wireless Network Intrusion Detection Wireless Local Area Network Intrusion Detection System Policy Enforcement 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Yang, H., Xie, L., Sun, J.: Intrusion Detection Solution to WLANs. In: IEEE 6th CAS Symp. on Emerging Technologies: Mobile and Wireless Comm., Shanghai, China, May 31-June 2, pp. 553–556 (2004)Google Scholar
  2. 2.
    Yangla, H., Xie, L., Sun, J.: Intrusion Detection for Wireless Local Area Network. In: CCECE 2004- CCGEI 2004, pp. 1949–1952 (May 2004)Google Scholar
  3. 3.
    Schmoyer, T.R., Lim, Y.X., Owen, H.L.: Wireless Intrusion Detection and Response, A case study using the classic man-in-the-middle attack. In: WCNC 2004, pp. 883–888. IEEE, Los Alamitos (2004)Google Scholar
  4. 4.
    Bellado, J.: 802.11 Denial-of-Service Attacks: Real Vulneratilites and Practical Solutions. In: Proceedings of the USENIX Security Symposium, pp. 15–28 (August 2003)Google Scholar
  5. 5.
    Lim, Y.X., Schmoyer, T., Levine, J., Owen, H.: Wireless intrusion detection and response. In: IEEE 4th Annual Information Assurance Workshop, West Point N.Y, pp. 68–75 (June 2003)Google Scholar
  6. 6.
    Farshchi, J.: Wireless Intrusion Detection Systems. Security Focus, Article (November 5, 2003), http://www.securityfocus.com/infocus/1742
  7. 7.
    Airdefense Inc. wireless LAN Security: Enterprise Rouge Detection? (2002)Google Scholar
  8. 8.
    Helmer, G., Wong, J., Honavar, V., Miller, L.: Lightweight agents for intrusion detection, Technical Report, Dept. of Computer Science, Iowa State University (2000)Google Scholar
  9. 9.
    Kismet 802.11 Wireless Sniffer, http://www.kismetwireless.net/
  10. 10.
    Accurate Wireless Intrusion Protection & Monitoring AirDefense (2005), http://www.airdefense.net
  11. 11.
    RealSecure Server Internet Security System (2005), http://www.iss.net
  12. 12.
    Snort Wireless, Snort-Wireless (2005), http://snort-wireless.org
  13. 13.
    WIDZ Wireless Intrusion Detection System, http://www.loud-fat-bloke.co.uk/articles/widz_design.pdf
  14. 14.
    Menezed, A.J., van Oorschot, P.C., Vanstone, S.A. (eds.): Handbook of Applied Cryptography. CRC Press, Boca Raton (1996), http://www.cacr.math.uwaterloo.ca/hac
  15. 15.
    Schneier, B.: Applied Cryptography, 2nd edn. Wiley, Chichester (1996)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Hyung-Woo Lee
    • 1
  1. 1.Div. Computer Information of SoftwareHanshin UniversityGyunggiKorea

Personalised recommendations