Skip to main content

Capable of Classifying the Tuples with Wireless Attacks Detection Using Machine Learning

  • Conference paper
  • First Online:
Intelligent Computing Systems (ISICS 2022)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 1569))

Included in the following conference series:

  • 214 Accesses

Abstract

A wireless attack is a malicious action against wireless systems and wireless networks. In the last decade of years, wireless attacks are increasing day by day and it is now a very big problem for modern wireless communication systems. In this paper, the author’s used the Aegean Wi-Fi Intrusion Dataset (AWID3). There are two versions of this dataset, one is over 200 million tuples of full data and one is 1.8 million tuples of reduced data. As our dataset has millions of tuples and over 100 columns, it is easy to become overwhelmed because of its size. The authors used the reduced version and predicted if an attack was one of four types using the k-nearest-neighbors classifier. All of the attack types we used had a distribution that highly favored the non-attack class. Our best results were for the attack “arp” type where we attained the best accuracy with recall. The author’s primary goal of the paper was to attain the highest accuracy possible when creating a model that is capable of classifying the 4 attack types and detecting and classifying wireless attacks using Machine Learning models on the AWID3 dataset. One of the goals that supported this main objective was determining a way to avoid the curse of dimensionality.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 54.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 69.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Ranga, A., Venkatesh, L.H., Venkanna, V.: Design and implementation of AMBA-AXI protocol using VHDL for Soc integration. Int. J. Eng. Res. Appl. (IJERA) 2, 1102–1106 (2012)

    Google Scholar 

  2. Bisht, P.: Notamper: automatic BlackBox detection of parameter tampering opportunities in web applications. In: Proceedings of the 17th ACM Conference on Computer and Communications Security (2010)

    Google Scholar 

  3. Soleimani, H., Hadavi, M.A., Bagherdaei, A.: WAVE: black-box detection of XSS, CSRF and information leakage vulnerabilities. In: 2017 14th International ISC (Iranian Society of Cryptology) Conference on Information Security and Cryptology (ISCISC). IEEE (2017)

    Google Scholar 

  4. Takamatsu, Y., Kosuga, Y., Kono, K.: Automated detection of session management vulnerabilities in web applications. In: 2012 Tenth Annual International Conference on Privacy, Security, and Trust. IEEE (2012)

    Google Scholar 

  5. Kumar, R., Goel, A.K.: Automated session fixation vulnerability detection in web applications using the set-cookie HTTP response header in cookies. In: Proceedings of the 7th International Conference on Security of Information and Networks (2014)

    Google Scholar 

  6. Nadar, V.M., Chatterjee, M., Jacob, L.: A defensive approach for CSRF and broken authentication and session management attack. In: Perez, G., Tiwari, S., Trivedi, M., Mishra, K. (eds.) Ambient Communications and Computer Systems, pp. 577–588. Springer, Singapore (2018).https://doi.org/10.1007/978-981-10-7386-1_49

  7. Dahse, J., Holz, T.: Static detection of second-order vulnerabilities in web applications. In: 23rd {USENIX} Security Symposium ({USENIX} Security 14) (2014)

    Google Scholar 

  8. Aliero, M.S., et al.: Detection of structure query language injection vulnerability in a with target web-driven database application. Concurr. Comput.: Pract. Exp. e5936 (2020)

    Google Scholar 

  9. Ze, W.: Design and implementation of core modules of WEB application vulnerability detection model. In: 2019 11th International Conference on Measuring Technology and Mechatronics Automation (ICMTMA). IEEE (2019)

    Google Scholar 

  10. Jovanovic, N., Kruegel, C., Kirda, E.: Pixy: a static analysis tool for detecting web application vulnerabilities. In: 2006 IEEE Symposium on Security and Privacy (S&P’06). IEEE (2006)

    Google Scholar 

  11. Marashdih, A.W., Zaaba, Z.F.: Detection and removing cross-site scripting vulnerability in PHP web application. In: 2017 International Conference on Promising Electronic Technologies (ICPET). IEEE (2017)

    Google Scholar 

  12. Medeiros, I., Neves, N.: Effect of coding styles in detection of web application vulnerabilities. In: 2020 16th European Dependable Computing Conference (EDCC). IEEE (2020)

    Google Scholar 

  13. Lukanta, R., Asnar, Y., Imam Kistijantoro, A.: A vulnerability scanning tool for session management vulnerabilities. In: 2014 International Conference on Data and Software Engineering (ICODSE). IEEE (2014)

    Google Scholar 

  14. Yuan, H., et al.: Research and implementation of security vulnerability detection in application system of WEB static source code analysis based on JAVA. In: Xu, Z., Choo, K.K., Dehghantanha, A., Parizi, R., Hammoudeh, M. (eds.) The International Conference on Cyber Security Intelligence and Analytics, 444–452. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-15235-2_66

  15. Anbiya, D.R., Purwarianti, A., Asnar, Y.: Vulnerability detection in PHP web application using lexical analysis approach with machine learning. In: 2018 5th International Conference on Data and Software Engineering (ICoDSE). IEEE (2018)

    Google Scholar 

  16. Jeevitha, R., Sudha Bhuvaneswari, N.: Malicious node detection in VANET session hijacking attack. In: 2019 IEEE International Conference on Electrical, Computer and Communication Technologies (ICECCT). IEEE (2019)

    Google Scholar 

  17. Pan, J., Mao, X.: Detecting DOM-sourced cross-site scripting in browser extensions. In: 2017 IEEE International Conference on Software Maintenance and Evolution (ICSME). IEEE (2017)

    Google Scholar 

  18. Mokbal, F.M.M., et al.: MLPXSS: an integrated XSS-based attack detection scheme in web applications using multilayer perceptron technique. IEEE Access 7, 100567–100580 (2019)

    Google Scholar 

  19. Kao, D.-Y., Lai, C.-J., Su, C.-W.: A framework for SQL injection investigations: detection, investigation, and forensics. In: 2018 IEEE International Conference on Systems, Man, and Cybernetics (SMC). IEEE (2018)

    Google Scholar 

  20. Moustafa, N., Misra, G., Slay, J.: Generalized outlier Gaussian mixture technique based on automated association features for simulating and detecting web application attacks. IEEE Trans. Sustain. Comput. (2018)

    Google Scholar 

  21. Alswailem, A., et al.: Detecting phishing websites using machine learning. In: 2019 2nd International Conference on Computer Applications & Information Security (ICCAIS). IEEE (2019)

    Google Scholar 

  22. Wang, Q., et al.: Access control vulnerabilities detection for web application components. In: 2020 IEEE 6th International Conference on Big Data Security on Cloud (BigDataSecurity), IEEE International Conference on High Performance and Smart Computing, (HPSC), and IEEE International Conference on Intelligent Data and Security (IDS). IEEE (2020)

    Google Scholar 

  23. Deepa, G., et al.: Black-box detection of XQuery injection and parameter tampering vulnerabilities in web applications. Int. J. Inf. Secur. 17(1), 105–120 (2018)

    Google Scholar 

  24. Kurniawan, A., et al.: Static taint analysis traversal with object-oriented component for web file injection vulnerability pattern detection. Procedia Comput. Sci. 135, 596–605 (2018)

    Google Scholar 

  25. Figueiredo, A., Lide, T., Correia, M.: Multi-language web vulnerability detection. In: 2020 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW). IEEE (2020)

    Google Scholar 

  26. Ibarra-Fiallos, S., et al.: Effective filter for common injection attacks in online web applications. IEEE Access 9, 10378–10391 (2021)

    Google Scholar 

  27. Choi, H., et al.: HXD: Hybrid XSS detection by using a headless browser. In: 2017 4th International Conference on Computer Applications and Information Processing Technology (CAIPT). IEEE (2017)

    Google Scholar 

  28. Chatzoglou, E., Kambourakis, G., Kolias, C.: Empirical evaluation of attacks against IEEE 802.11 enterprise networks: the AWID3 dataset. IEEE Access 9, 34188–34205 (2021)

    Article  Google Scholar 

  29. Address resolution protocol From - Wikipedia, the free encyclopedia. Accessed 27 June 2021. https://en.wikipedia.org/wiki/Address_Resolution_Protocol

  30. University of the Aegean - AWID3 datasets including Krack and Kr00k. It is available in pcap format. Accessed 1 July 2021. https://icsdweb.aegean.gr/awid/download-dataset

Download references

Author information

Authors and Affiliations

Authors

Corresponding authors

Correspondence to Tariqul Islam or Shaikh Muhammad Allayear .

Editor information

Editors and Affiliations

Rights and permissions

Reprints and permissions

Copyright information

© 2022 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Islam, T., Allayear, S.M. (2022). Capable of Classifying the Tuples with Wireless Attacks Detection Using Machine Learning. In: Brito-Loeza, C., Martin-Gonzalez, A., Castañeda-Zeman, V., Safi, A. (eds) Intelligent Computing Systems. ISICS 2022. Communications in Computer and Information Science, vol 1569. Springer, Cham. https://doi.org/10.1007/978-3-030-98457-1_1

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-98457-1_1

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-98456-4

  • Online ISBN: 978-3-030-98457-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics