Using metrics from multiple layers to detect attacks in wireless networks

The IEEE 802.11 networks are vulnerable to numerous wireless-specific attacks. Attackers can implement MAC address spoofing techniques to launch these attacks, while masquerading themselves behind a false MAC address. The implementation of Intrusion Detection Systems has become fundamental in the de...

Full description

Saved in:
Bibliographic Details
Main Author: Francisco J. Aparicio-Navarro
Format: Default Thesis
Published: 2014
Subjects:
Online Access:https://hdl.handle.net/2134/16309
Tags: Add Tag
No Tags, Be the first to tag this record!
id rr-article-9543788
record_format Figshare
spelling rr-article-95437882014-01-01T00:00:00Z Using metrics from multiple layers to detect attacks in wireless networks Francisco J. Aparicio-Navarro (7204022) Mechanical engineering not elsewhere classified IEEE 802.11 Wireless security Dempster-Shafer Basic probability assignment Data fusion Multi-layer measurements Intrusion Detection Systems Mechanical Engineering not elsewhere classified The IEEE 802.11 networks are vulnerable to numerous wireless-specific attacks. Attackers can implement MAC address spoofing techniques to launch these attacks, while masquerading themselves behind a false MAC address. The implementation of Intrusion Detection Systems has become fundamental in the development of security infrastructures for wireless networks. This thesis proposes the designing a novel security system that makes use of metrics from multiple layers of observation to produce a collective decision on whether an attack is taking place. The Dempster-Shafer Theory of Evidence is the data fusion technique used to combine the evidences from the different layers. A novel, unsupervised and self- adaptive Basic Probability Assignment (BPA) approach able to automatically adapt its beliefs assignment to the current characteristics of the wireless network is proposed. This BPA approach is composed of three different and independent statistical techniques, which are capable to identify the presence of attacks in real time. Despite the lightweight processing requirements, the proposed security system produces outstanding detection results, generating high intrusion detection accuracy and very low number of false alarms. A thorough description of the generated results, for all the considered datasets is presented in this thesis. The effectiveness of the proposed system is evaluated using different types of injection attacks. Regarding one of these attacks, to the best of the author knowledge, the security system presented in this thesis is the first one able to efficiently identify the Airpwn attack. 2014-01-01T00:00:00Z Text Thesis 2134/16309 https://figshare.com/articles/thesis/Using_metrics_from_multiple_layers_to_detect_attacks_in_wireless_networks/9543788 CC BY-NC-ND 4.0
institution Loughborough University
collection Figshare
topic Mechanical engineering not elsewhere classified
IEEE 802.11
Wireless security
Dempster-Shafer
Basic probability assignment
Data fusion
Multi-layer measurements
Intrusion Detection Systems
Mechanical Engineering not elsewhere classified
spellingShingle Mechanical engineering not elsewhere classified
IEEE 802.11
Wireless security
Dempster-Shafer
Basic probability assignment
Data fusion
Multi-layer measurements
Intrusion Detection Systems
Mechanical Engineering not elsewhere classified
Francisco J. Aparicio-Navarro
Using metrics from multiple layers to detect attacks in wireless networks
description The IEEE 802.11 networks are vulnerable to numerous wireless-specific attacks. Attackers can implement MAC address spoofing techniques to launch these attacks, while masquerading themselves behind a false MAC address. The implementation of Intrusion Detection Systems has become fundamental in the development of security infrastructures for wireless networks. This thesis proposes the designing a novel security system that makes use of metrics from multiple layers of observation to produce a collective decision on whether an attack is taking place. The Dempster-Shafer Theory of Evidence is the data fusion technique used to combine the evidences from the different layers. A novel, unsupervised and self- adaptive Basic Probability Assignment (BPA) approach able to automatically adapt its beliefs assignment to the current characteristics of the wireless network is proposed. This BPA approach is composed of three different and independent statistical techniques, which are capable to identify the presence of attacks in real time. Despite the lightweight processing requirements, the proposed security system produces outstanding detection results, generating high intrusion detection accuracy and very low number of false alarms. A thorough description of the generated results, for all the considered datasets is presented in this thesis. The effectiveness of the proposed system is evaluated using different types of injection attacks. Regarding one of these attacks, to the best of the author knowledge, the security system presented in this thesis is the first one able to efficiently identify the Airpwn attack.
format Default
Thesis
author Francisco J. Aparicio-Navarro
author_facet Francisco J. Aparicio-Navarro
author_sort Francisco J. Aparicio-Navarro (7204022)
title Using metrics from multiple layers to detect attacks in wireless networks
title_short Using metrics from multiple layers to detect attacks in wireless networks
title_full Using metrics from multiple layers to detect attacks in wireless networks
title_fullStr Using metrics from multiple layers to detect attacks in wireless networks
title_full_unstemmed Using metrics from multiple layers to detect attacks in wireless networks
title_sort using metrics from multiple layers to detect attacks in wireless networks
publishDate 2014
url https://hdl.handle.net/2134/16309
_version_ 1794842159476637696