Wireless Intrusion Detection System Proof of Concept Leon

Wireless Intrusion Detection System Proof of Concept Leon & Yunhai

Agenda n n n Project Review Info Measurements Data Analysis Sample Experiments Future Works

Project Review

Project Review Internet MIB MIB IDS MIB

Project Review Internet 2. 4 GHz Attacker AP CS AP Client 1 MIB, Attacker Sys. Log IDS Airo. Peek

Info Measurements n Info Resources n SNMP MIB n n System Log n n A collection of objects that can be accessed via a network management protocol Event/Trap Captures Wireless Capture

Info Measurements n Info Collection Tools n Hardware n n n Cisco Access Point Cisco Wireless Card Software n n Visual Studio Net SNMP Airo. Peek Netstumbler

MIB Collection & Storage

Sys. Log

Data Analysis n n Measurement Based Analysis Correlate Parameters w/ Events n n Contention Interference RF Interference Wireless Intrusion Wireless Do. S Attack

Sample Experiments n Contention Interference Chl 9 CS AP Test AP MIB Client 2 Client 1

Contention Interference n MIB n n n n dot 11 ACKFailure. Count. 1 dot 11 Failed. Count. 1 dot 11 FCSError. Count. 1 dot 11 Frame. Duplicate. Count. 1 dot 11 Multicast. Transmitted. Frame. Count. 1 dot 11 Multiple. Retry. Count. 1 dot 11 RTSFailure. Count. 1 dot 11 Transmitted. Frame. Count. 1

Contention Interference

Contention Interference

Contention Interference

Contention Interference

Contention Interference

Sample Experiments n Cordless Phone RF Interference Chl 1 2. 4 GHz Test AP Airo. Peek Client 1

Cordless Phone RF Inter

Cordless Phone RF Inter

Sample Experiments n Intrusion Attack n n Air. Jack Do. S Attack n Void 11

Future Works n n n Real Time Automation Synchronize & Coordinate all info Extend to 802. 16 n n Simulations Measurements

802. 16 Protocol Layering

802. 16 MIB Structure

802. 16 MIB Structure

802. 16 MIB Structure

802. 16 MIB Structure