Detecting Protected Layer-3 Rogue APs
|
|
- Hubert Goodman
- 5 years ago
- Views:
Transcription
1 Detecting Protected Layer-3 Rogue APs Authors: Hongda Yin, Guanling Chen, and Jie Wang Department of Computer Science, University of Massachusetts Lowell Presenter: Bo Yan Department of Computer Science University of Massachusetts Lowell
2 Outline Motivation Approach Network Model Wired Traffic Monitoring Rogue AP Verification Evaluation results Conclusion
3 Motivation What is Rogue AP An unauthorized AP plugged into a corporate network Security threat to the internal network Why Rogue AP is important No.2 threat of critical wireless vulnerability, June 2006, Network Computing Detecting rogue APs Wireless sniffers scanning airwaves for packet analysis A detected AP not on the authorized list is a suspect A suspect maybe a legitimate AP belong to neighboring areas How to automatically verify whether the suspect AP is on the enterprise wired network or not??!
4 Layer-2 rogue APs Poll network switches over SNMP to determine MAC addresses associated with each port on the switch Wireless sniffer observes any of these MAC addresses to detect whether associated AP is on the wired network Layer-3 rogue APs A nearby sniffer associate with the suspect AP Ping a known host inaccessible from outside to detect whether successful However, fails to detect protected associated APs due to the requirement of valid MAC addresses or other authentication methods Our Goal To detect protected rogue APs on both layer-2 and layer-3, focus on layer-3!!
5 Network Model Monitor outbound traffic and send test packets Instruct sniffers to switch to a particular channel during the verification process Sniffer channel switching Test packet size wireless sources classification Wireless workstations Detect the presence of APs Update the verifier about the detected APs and their channels
6 Wired Traffic Monitoring Test every observed internal host: Every observed host on the internal network is potentially a wireless AP. Simple to implement but time consuming. Test those hosts classified as wireless sources: Any source with ratio of inbound and outbound short packet intervals exceeds a threshold is classified as a potential wireless host W. Wei et al s work [6], short packet intervals Maybe inaccurate results and longer delay Obtain high accuracy classification and reduce test traffic
7 Rogue AP Verification The verifier sends test packets to wireless sources and sees whether some wireless sniffer can hear these packets Packet size selection A rogue AP may encrypt traffic and so sniffers cannot rely on special signature embedded in the application layer data. To detect test packet relayed by a rogue AP requires decryption method Use packet size observation to recognize test packets
8 Network trace collected from a WLAN made available to attendees of a four-day academic conference (Sigcomm 2004) Size distribution of downstream data packets Not frequently seen on the suspect APs Small size demanding less bandwidth and unlikely being fragmented by APs so that not be missed by sniffers
9 Binary hypothesis testing To avoid false positives caused by normal packets that happen to have the same size of the test packets, the verifier sends more than one test packet to improve the robustness of detection. But how many?? Sequential Hypothesis Testing A. Wald[9], Sequential Analysis Send packet with rarely-seen size The tradeoff between the desired detection accuracy and the longer delay
10 Sniffer channel scheduling Hear multiple targets if they are in its range, but only listen to one channel at one test round Switch channels to monitor targets in range at another test round To minimize the number of test rounds so that all targets are covered by at least one sniffer
11 Evaluation Results Wired traffic monitoring Two 10-day data sets collected from Dartmouth campus WLAN Long-time trace and only wireless hosts Some hosts remaining untested in the queue Appeared early in the trace, expired in the queue before they could be verified, and were never seen again Length of verification queue
12 In more than 98% of the cases a host could be verified within 5 minutes since its first appearance for the traces In more than 95% and 99% of the cases a host could be verified within 50 seconds since its last update for the traces Verification delay since first request
13 A one-day data set collected from enterprise network Short-time trace, wireless and wired hosts, only one hour data is available from a particular subnet Large Jumped At the 6th hour of the odd-ports The monitor started on an active subnet and 539 hosts were observed during that hour. The queue length would be reduce with longer-time traces Length of verification queue
14 In more than 77% of the cases a host could be verified within 20 minutes since its first appearance for the traces In more than 49% of the cases a host could be verified within 100 seconds since its last update for the traces Verification delay since first request
15 Imitate a rogue AP, using a Web proxy running tcpdump as a sniffer to collect the traffic. Then, all the Web transactions are recorded in the tcpdump trace Classifier achieved 100% accuracy The verifier could reduce its workload by only testing likely wireless sources In about 93% of the cases the classifier could conclude in less than 100 seconds. The distribution of classification time
16 Sniffer channel scheduling The Sniffer/AP ratio increases, the tuning time decreases The working of covering the APs can be shared by more sniffers. With a larger sniffering radius, a sniffer can cover more APs with the same channels so the tuning time also decreases. Number of scheduled rounds for sniffers
17 The number of required sniffers decreases as the sniffer/ap density increases. If the APs run over a larger channel range, more sniffers are needed to cover them. Number of sniffers to be instrumented
18 Network Model Monitor outbound traffic and send test packets Instruct sniffers to switch to a particular channel during the verification process Sniffer channel switching Observed packets size wireless sources classification Wireless workstations Detect the presence of APs Update the verifier about the detected APs and their channels
19 Related Work Associate-and-ping approach False positives to classifying neighboring APs as rogues on the internal network Fails for protected AP Collect information from network devices for classification Need user feedback Must trust user input-data without threat DIAR uses heuristics to reduce false positives A wired component to compare the packets seen on wired and wireless networks. However, give none details on their comparison heuristics require running a wired monitor in each subnet Use Different inter-packet temporal distributions to detect Not consider natural variations of traffic patterns
20 Conclusion A new method to reliably detect protected layer-3 rogue APs Easily combined with other rogue AP detection methods Quickly detected with High accuracy and high robustness
21 Q & A? Welcome to Our group website
Robust Detection of Unauthorized Wireless Access Points
DOI 1.17/s1136-8-19-6 Robust Detection of Unauthorized Wireless Access Points Bo Yan Guanling Chen Jie Wang Hongda Yin Springer Science + Business Media, LLC 28 Abstract Unauthorized 82.11 wireless access
More informationDetecting Protected Layer-3 Rogue APs
Detecting Protected Layer-3 Rogue APs Hongda Yin, Guanling Chen, and Jie Wang Department of Computer Science, University of Massachusetts Lowell {hyin, glchen, wang}@cs.uml.edu Abstract Unauthorized rogue
More informationThe Changing Usage of a Mature Campus-wide Wireless Network
The Changing Usage of a Mature Campus-wide Wireless Network Andrew Stone CS525m Mobile and Ubiquitous Computing Overview Project Goal Data Collection Methods Findings and Data Analysis Conclusions and
More informationManaging Rogue Devices
Information About Rogue Devices, page 1 Configuring Rogue Detection (GUI), page 5 Configuring Rogue Detection (CLI), page 8 Information About Rogue Devices Rogue access points can disrupt wireless LAN
More informationPIE in the Sky : Online Passive Interference Estimation for Enterprise WLANs
WiNGS Labs PIE in the Sky : Online Passive Interference Estimation for Enterprise WLANs * Nokia Research Center, Palo Alto Shravan Rayanchu, Suman Banerjee University of Wisconsin-Madison Konstantina Papagiannaki
More informationWho Is Peeping at Your Passwords at Starbucks? To Catch an Evil Twin Access Point
Who Is Peeping at Your Passwords at Starbucks? To Catch an Evil Twin Access Point Yimin Song, Chao Yang, and Guofei Gu Texas A&M University Success Lab, Texas A&M University July 1th, 2010 Pre-question
More informationDWS-4000 Series DWL-3600AP DWL-6600AP
Unified Wired & Wireless Access System Configuration Guide Product Model: Release 1.0 DWS-4000 Series DWL-8600AP DWL-6600AP DWL-3600AP Page 1 Table of Contents 1. Scenario 1 - Basic L2 Edge Setup: 1 Unified
More informationNetwork Security. Dr. Ihsan Ullah. Department of Computer Science & IT University of Balochistan, Quetta Pakistan. June 18, 2015
Network Security Dr. Ihsan Ullah Department of Computer Science & IT University of Balochistan, Quetta Pakistan June 18, 2015 1 / 19 ARP (Address resolution protocol) poisoning ARP is used to resolve 32-bit
More informationConfiguring Security Solutions
3 CHAPTER This chapter describes the security solutions for wireless LANs. It contains the following sections: Cisco Unified Wireless Network Solution Security, page 3-1 Interpreting the Security Tab,
More informationDESIGN AND DEVELOPMENT OF MAC LAYER BASED DEFENSE ARCHITECTURE FOR ROQ ATTACKS IN WLAN
------------------- CHAPTER 4 DESIGN AND DEVELOPMENT OF MAC LAYER BASED DEFENSE ARCHITECTURE FOR ROQ ATTACKS IN WLAN In this chapter, MAC layer based defense architecture for RoQ attacks in Wireless LAN
More informationHP0-Y39. Managing and Troubleshooting Enterprise Wireless Networks. Download Full Version :
HP HP0-Y39 Managing and Troubleshooting Enterprise Wireless Networks Download Full Version : https://killexams.com/pass4sure/exam-detail/hp0-y39 QUESTION: 37 RF Manager has determined that a Rogue access
More informationManaging Rogue Devices
Finding Feature Information, page 1 Information About Rogue Devices, page 1 How to Configure Rogue Detection, page 6 Monitoring Rogue Detection, page 8 Examples: Rogue Detection Configuration, page 9 Additional
More informationConfiguring the EAPs Globally via Omada Controller
Configuring the EAPs Globally via Omada Controller CHAPTERS 1. Wireless Network 2. Access Control 3. 4. Free Authentication Policy 5. MAC Filter 6. Scheduler 7. QoS 8. System This guide applies to: Omada
More informationA Passive Approach to Wireless NIC Identification
A Passive Approach to Wireless NIC Identification Cherita Corbett Georgia Institute of Technology IEEE ICC 2006 June 13, 2006 Presentation Outline Motivation & Background Objective NIC Identification using
More informationRuckus ZoneDirector 3450 WLAN Controller (up to 500 ZoneFlex Access Points)
Product Name: Manufacturer: - Model Number: 901-3450-UK00 Ruckus ZoneDirector 3450 supporting up to 500 ZoneFlex APs (901-3450-UK00) The Ruckus ZoneDirector 3450, The First Simple and Powerful Enterprise
More informationPassive Online Rogue Access Point Detection Using Sequential Hypothesis Testing with TCP ACK-Pairs
Passive Online Rogue Access Point Detection Using Sequential Hypothesis Testing with TCP ACK-Pairs Wei Wei, Kyoungwon Suh, Bing Wang, Yu Gu, Jim Kurose, Don Towsley Department of Computer Science University
More informationWIDS Technology White Paper
Technical white paper WIDS Technology White Paper Table of contents Overview... 2 Background... 2 Functions... 2 Rogue detection implementation... 2 Concepts... 2 Operating mechanism... 2 Operating modes...
More informationSecuring Your Airspace with WatchGuard s Wireless Intrusion Prevention (WIPS)
Securing Your Airspace with WatchGuard s Wireless Intrusion Prevention (WIPS) Introduction The proliferation of Wi-Fi across the globe has created an attractive opportunity for cyber attackers to snoop,
More informationSecurity Setup CHAPTER
CHAPTER 8 This chapter describes how to set up your bridge s security features. This chapter contains the following sections: Security Overview, page 8-2 Setting Up WEP, page 8-7 Enabling Additional WEP
More informationThe Challenges of Measuring Wireless Networks. David Kotz Dartmouth College August 2005
The Challenges of Measuring Wireless Networks David Kotz Dartmouth College August 2005 Why measure? For better management Large WLANs need scalable management To manage you must monitor To monitor you
More informationWireless g AP. User s Manual
Wireless 802.11g AP User s Manual Version 1.8 User s Guide 0 Copyright Statement No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form or by any means,
More informationPassive Online Rogue Access Point Detection Using Sequential Hypothesis Testing with TCP ACK-Pairs
Passive Online Rogue Access Point Detection Using Sequential Hypothesis Testing with TCP ACK-Pairs Wei Wei United Technologies Research Center Yu Gu University of Massachusetts, Amherst Kyoungwon Suh Illinois
More informationTable of Contents 1 QoS Overview QoS Policy Configuration Priority Mapping Configuration 3-1
Table of Contents 1 QoS Overview 1-1 Introduction to QoS 1-1 Introduction to QoS Service Models 1-1 Best-Effort Service Model 1-1 IntServ Service Model 1-2 DiffServ Service Model 1-2 QoS Techniques Overview
More information802.11a g Dual Band Wireless Access Point. User s Manual
802.11a+802.11g Dual Band Wireless Access Point User s Manual 0 Chapter 1 Introduction 1.1 Feature Fully interoperable with IEEE 802.11b compliant products. High-Speed data transfer rate up to 11Mbps.
More informationA Review of Online Rogue Access Point Detection
K.Tejaswi et al IJCSET May 2013 Vol 3, Issue 5, 177-182 A Review of Online Rogue Access Point Detection K.Tejaswi, Dr.Syed Umar, K.Bhavana Department of ECM, KL University, A.P., INDIA Abstract A rogue
More informationDetecting & Eliminating Rogue Access Point in IEEE WLAN
Detecting & Eliminating Rogue Access Point in IEEE 802.11 WLAN S.B.Vanjale, Amol K. Kadam, Pramod A. Jadhav Department of Computer Engg Bharati Vidyapeeth Deemed University College of Engineering Pune.
More informationRuckus ZoneDirector 1106 WLAN Controller (up to 6 ZoneFlex Access Points)
Product Name: Manufacturer: - Model Number: 901-1106-UK00 Please Note: The Ruckus ZoneDirector 1106 has been discontinued. For an alternative, we recommend the Ruckus ZoneDirector 1205. Ruckus ZoneDirector
More informationConfiguring Security Solutions
3 CHAPTER This chapter describes the security solutions for wireless LANs. It contains the following sections: Cisco Unified Wireless Network Solution Security, page 3-1 Interpreting the Security Dashboard,
More informationWireless Network Security Spring 2011
Wireless Network Security 14-814 Spring 2011 Patrick Tague Jan 18, 2011 Class #3 Wireless vulnerabilities and threats Announcement: Agenda 6 remaining survey slots, 12 students yet to sign up Vulnerabilities,
More informationBIG-IP Local Traffic Management: Basics. Version 12.1
BIG-IP Local Traffic Management: Basics Version 12.1 Table of Contents Table of Contents Introduction to Local Traffic Management...7 About local traffic management...7 About the network map...7 Viewing
More informationChapter 1 Introduction
Copyright Statement is the registered trademark of Zonet Technology Inc. All the products and product names mentioned herein are the trademarks or registered trademarks of their respective holders. Copyright
More informationTrusted AP Policies on a Wireless LAN Controller
Trusted AP Policies on a Wireless LAN Controller Document ID: 100368 Contents Introduction Prerequisites Requirements Conventions Trusted AP Policies What is a Trusted AP? How to Configure an AP as a Trusted
More informationWhat is Eavedropping?
WLAN Security What is Eavedropping? War Driving War Driving refers to someone driving around with a laptop and an 802.11 client card looking for an 802.11 system to exploit. War Walking Someone walks
More informationNetwork Traffic Characteristics of Data Centers in the Wild. Proceedings of the 10th annual conference on Internet measurement, ACM
Network Traffic Characteristics of Data Centers in the Wild Proceedings of the 10th annual conference on Internet measurement, ACM Outline Introduction Traffic Data Collection Applications in Data Centers
More information1. Which network design consideration would be more important to a large corporation than to a small business?
CCNA 1 Chapter 11 v5.0 Exam Answers 2015 (100%) 1. Which network design consideration would be more important to a large corporation than to a small business? Internet router firewall low port density
More informationRAWDAD : A Wireless Data Archive for Researchers
RAWDAD : A Wireless Data Archive for Researchers Jihwang Yeo November 2007 Outline The Challenges of Measuring Wireless Network Dartmouth campus measurement Measurement Challenges Modeling CRAWDAD: A Wireless
More informationWireless LAN Security (RM12/2002)
Information Technology in Education Project Reference Materials Wireless LAN Security (RM12/2002) Infrastructure Division Education Department The Government of HKSAR www.ited.ed.gov.hk December 2002 For
More informationConfigure Controller and AP Settings
Configure SNMP Credentials for Rogue AP Tracing, on page 1 Configure Protocols for CLI Sessions, on page 2 Enable Unified AP Ping Reachability Settings on the Prime Infrastructure, on page 2 Refresh Controllers
More informationNetwork Security: Broadcast and Multicast. Tuomas Aura T Network security Aalto University, Nov-Dec 2011
Network Security: Broadcast and Multicast Tuomas Aura T-110.5241 Network security Aalto University, Nov-Dec 2011 Outline 1. Broadcast and multicast 2. Receiver access control (i.e. data confidentiality)
More informationBuilding a Secure Wireless Network. Use i and WPA to Protect the Channel and Authenticate Users. May, 2007
Agenda: Securing Wireless Networks Building a Secure Wireless Network Joel M Snyder Senior Partner Opus One jms@opus1.com Using encryption and authentication Handling unauthenticated users Managing RF
More informationSubject: Adhoc Networks
ISSUES IN AD HOC WIRELESS NETWORKS The major issues that affect the design, deployment, & performance of an ad hoc wireless network system are: Medium Access Scheme. Transport Layer Protocol. Routing.
More information@IJMTER-2016, All rights Reserved ,2 Department of Computer Science, G.H. Raisoni College of Engineering Nagpur, India
Secure and Flexible Communication Technique: Implementation Using MAC Filter in WLAN and MANET for IP Spoofing Detection Ashwini R. Vaidya 1, Siddhant Jaiswal 2 1,2 Department of Computer Science, G.H.
More informationWireless LAN Controller (WLC) Mobility Groups FAQ
Wireless LAN Controller (WLC) Mobility Groups FAQ Document ID: 107188 Contents Introduction What is a Mobility Group? What are the prerequisites for a Mobility Group? How do I configure a Mobility Group
More informationPowerStation2 LiteStation2 LiteStation5 User s Guide
PowerStation2 LiteStation2 LiteStation5 User s Guide Copyright 2007 Ubiquiti Networks Inc. All rights reserved. Contents INTRODUCTION...2 QUICK SETUP GUIDE...3 CONFIGURATION GUIDE...7 Main Settings...8
More informationCisco Exam Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]
s@lm@n Cisco Exam 642-737 Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ] Cisco 642-737 : Practice Test Question No : 1 RADIUS is set up with multiple servers
More informationNetwork Security and Cryptography. 2 September Marking Scheme
Network Security and Cryptography 2 September 2015 Marking Scheme This marking scheme has been prepared as a guide only to markers. This is not a set of model answers, or the exclusive answers to the questions,
More informationNetwork Configuration Example
Network Configuration Example Configuring Authentication and Enforcement Using SRX Series Services Gateways and Aruba ClearPass Policy Manager Modified: 2016-08-01 Juniper Networks, Inc. 1133 Innovation
More informationWireless Controller DWC-1000
Network Architecture Manage up to 6 wireless APs, upgradable to 24 APs 1 per controller Control up to 24 wireless APs, maximum 96 APs 1 per cluster Robust Network Security Wireless Instruction Detection
More informationImproved Detection of Low-Profile Probes and Denial-of-Service Attacks*
Improved Detection of Low-Profile Probes and Denial-of-Service Attacks* William W. Streilein Rob K. Cunningham, Seth E. Webster Workshop on Statistical and Machine Learning Techniques in Computer Intrusion
More informationTable of Contents 1 WLAN Service Configuration 1-1
Table of Contents 1 WLAN Service Configuration 1-1 WLAN Service Overview 1-1 Terminology 1-1 Wireless Client Access 1-2 802.11 Overview 1-4 WLAN Topologies 1-5 Single BSS 1-5 Multi-ESS 1-5 Single ESS Multiple
More informationGregSowell.com MikrotikUniversity.com. Rogue Access Point Detectoin and Mitigation MUM 2011
Rogue Access Point Detectoin and Mitigation MUM 2011 Define Rogue Access Point A rogue in this instance is any access point connected to your network without permission. Why Should I Care? Limited 802.11spectrum.
More informationUser Guide. For TP-Link Auranet Access Points
User Guide For TP-Link Auranet Access Points EAP110 / EAP115 / EAP225 / EAP245 / EAP320 / EAP330 / EAP115-Wall / EAP110-Outdoor 1910012276 REV 2.0.2 October 2017 CONTENTS About this User Guide... 1 Overview...
More informationRogue Access Point Detection using Temporal Traffic Characteristics
Rogue Access Point Detection using Temporal Traffic Characteristics Raheem Beyah, Shantanu Kangude, George Yu, Brian Strickland, and John Copeland Communications Systems Center School of Electrical and
More informationWireless Attacks and Countermeasures
Wireless Attacks and Countermeasures Wireless Network Technology Wireless network refers to any type of computer network which is wireless, and is commonly associated with a network whose interconnections
More informationTable of Contents X Configuration 1-1
Table of Contents 1 802.1X Configuration 1-1 802.1X Overview 1-1 Architecture of 802.1X 1-2 Authentication Modes of 802.1X 1-2 Basic Concepts of 802.1X 1-3 EAP over LAN 1-4 EAP over RADIUS 1-5 802.1X Authentication
More informationWireless Network Security
Wireless Network Security Why wireless? Wifi, which is short for wireless fi something, allows your computer to connect to the Internet using magic. -Motel 6 commercial 2 but it comes at a price Wireless
More informationWireless Integration Overview
Version: 4.1.1 Date: 12/28/2010 Copyright Notice Copyright 2010 by Bradford Networks, Inc. All rights reserved worldwide. Use, duplication, or disclosure by the United States government is subject to the
More informationOmniAccess Instant AP Update
OmniAccess Instant AP Update Pre-Sales Expert November COPYRIGHT 2011 ALCATEL-LUCENT ENTERPRISE. ALL RIGHTS RESERVED. AGENDA 1) OmniAccess Instant AP reminder 2) Instant AP versus Campus AP 3) Virtual
More informationChapter 11: It s a Network. Introduction to Networking
Chapter 11: It s a Network Introduction to Networking Small Network Topologies Typical Small Network Topology IT Essentials v5.0 2 Device Selection for a Small Network Factors to be considered when selecting
More informationCS-MARS Integration for Cisco Unified Wireless
9 CHAPTER A secure unified network, featuring both wired and wireless access, requires an integrated, defense-in-depth approach to security, including cross-network anomaly detection and correlation that
More informationProcedure: You can find the problem sheet on the Desktop of the lab PCs.
University of Jordan Faculty of Engineering & Technology Computer Engineering Department Computer Advance Networks Laboratory 907529 Lab.3 WLAN Security Objectives 1. Configure administrator accounts.
More informationCisco Technologies, Routers, and Switches p. 1 Introduction p. 2 The OSI Model p. 2 The TCP/IP Model, the DoD Model, or the Internet Model p.
Cisco Technologies, Routers, and Switches p. 1 Introduction p. 2 The OSI Model p. 2 The TCP/IP Model, the DoD Model, or the Internet Model p. 6 Networking Basics p. 14 Wireless LANs p. 22 Cisco Hardware
More informationSecBlade Firewall Cards Attack Protection Configuration Example
SecBlade Firewall Cards Attack Protection Configuration Example Keywords: Attack protection, scanning, blacklist Abstract: This document describes the attack protection functions of the SecBlade firewall
More informationCisco Aironet 350 (DS) AP IOS Software
Cisco Aironet 350 (DS) AP IOS Software This document details the specifications for configuring the Cisco Aironet 350 series access points (APs) using the IOS software with NetLink Wireless Telephones.
More informationUsing the Web Graphical User Interface
Prerequisites for Using the Web GUI, page 1 Information About Using The Web GUI, page 1 Connecting the Console Port of the Device, page 3 Logging On to the Web GUI, page 3 Enabling Web and Secure Web Modes,
More informationThe network requirements can vary based on the number of simultaneous users the system will need to support. The most basic requirements are:
NETWORK CONFIGURATION GUIDE Listen EVERYWHERE (LE) was designed to be used on pre-existing wireless networks as a plug-and-play system, however it might be necessary to have an IT/Network Administrator
More informationOverview Intrusion Detection Systems and Practices
Overview Intrusion Detection Systems and Practices Chapter 13 Lecturer: Pei-yih Ting Intrusion Detection Concepts Dealing with Intruders Detecting Intruders Principles of Intrusions and IDS The IDS Taxonomy
More informationChapter 11: Networks
Chapter 11: Networks Devices in a Small Network Small Network A small network can comprise a few users, one router, one switch. A Typical Small Network Topology looks like this: Device Selection Factors
More informationUsing the Web Graphical User Interface
Prerequisites for Using the Web GUI, page 1 Information About Using The Web GUI, page 2 Connecting the Console Port of the Switch, page 3 Logging On to the GUI, page 4 Enabling Web and Secure Web Modes,
More informationMultipot: A More Potent Variant of Evil Twin
Multipot: A More Potent Variant of Evil Twin K. N. Gopinath Senior Wireless Security Researcher and Senior Engineering Manager AirTight Networks http://www.airtightnetworks.net Email: gopinath.kn@airtightnetworks.net
More informationNETWORK SECURITY. Ch. 3: Network Attacks
NETWORK SECURITY Ch. 3: Network Attacks Contents 3.1 Network Vulnerabilities 3.1.1 Media-Based 3.1.2 Network Device 3.2 Categories of Attacks 3.3 Methods of Network Attacks 03 NETWORK ATTACKS 2 3.1 Network
More informationCSC Network Security
CSC 474 -- Security Topic 9. Firewalls CSC 474 Dr. Peng Ning 1 Outline Overview of Firewalls Filtering Firewalls Proxy Servers CSC 474 Dr. Peng Ning 2 Overview of Firewalls CSC 474 Dr. Peng Ning 3 1 Internet
More informationPRODUCT GUIDE Wireless Intrusion Prevention Systems
PRODUCT GUIDE Wireless Intrusion Prevention Systems The Need for Wireless INTRUSION PREVENTION SYSTEMS A Wireless Intrusion Prevention System (WIPS) is designed to address two classes of challenges facing
More informationLiteStation2 LiteStation5 User s Guide
LiteStation2 LiteStation5 User s Guide Contents Contents... 2 Introduction... 3 Quick Setup Guide... 4 Configuration Guide... 8 Main Settings... 9 Link Setup... 10 Basic Wireless Settings... 10 Wireless
More informationConfiguring WLANs CHAPTER
CHAPTER 6 This chapter describes how to configure up to 16 wireless LANs for your Cisco Wireless LAN Solution. This chapter contains these sections: Wireless LAN Overview, page 6-2 Configuring Wireless
More informationClassifying Rogue Access Points
Finding Feature Information, page 1 Information About, page 1 Restrictions for, page 4 How to Classify Rogue Access Points, page 5 Viewing and Classifying Rogue Devices (GUI), page 9 Examples:, page 11
More informationSWITCH Implementing Cisco IP Switched Networks
Hands-On SWITCH Implementing Cisco IP Switched Networks CCNP Course 2 Course Description Revised CCNP Curriculum and Exams Cisco has redesigned the CCNP courses and exams to reflect the evolving job tasks
More informationRelease Notes for Avaya WLAN 9100 AOS-Lite Operating System WAP9112 Release WAP9114 Release 8.1.0
WLAN 9100 Release Notes Release Notes for Avaya WLAN 9100 AOS-Lite Operating System WAP9112 Release 8.1.0 WAP9114 Release 8.1.0 Avaya Inc - External Distribution 1. Introduction This document provides
More informationMobile Security Fall 2013
Mobile Security 14-829 Fall 2013 Patrick Tague Class #6 More WiFi Security & Privacy Issues WiFi Security Issues A Scenario Internet Open AP SSID Network X Open OpenAP AP SSID Attacker Network X LaptopLaptop
More informationOct 2007 Version 1.01
Oct 2007 Version 1.01 Table of Contents Introduction...4 System Requirement...4 Getting Started...4 Installing the Smart WLAN Manager...5 Discovering the Switch and AP...9 Understanding the Screen Layout...12
More informationClassifying Rogue Access Points
Finding Feature Information, page 1 Information About, page 1 Restrictions on, page 4 How to Classify Rogue Access Points, page 5 Viewing and Classifying Rogue Devices (GUI), page 10 Examples:, page 12
More informationNetwork Defenses 21 JANUARY KAMI VANIEA 1
Network Defenses KAMI VANIEA 21 JANUARY KAMI VANIEA 1 First, the news The Great Cannon of China https://citizenlab.org/2015/04/chinas-great-cannon/ KAMI VANIEA 2 Today Open System Interconnect (OSI) model
More informationComputer Communication III
Computer Communication III Wireless Media Access IEEE 802.11 Wireless LAN Advantages of Wireless LANs Using the license free ISM band at 2.4 GHz no complicated or expensive licenses necessary very cost
More informationWL-5420AP. User s Guide
WL-5420AP User s Guide Table of contents INTRODUCTION... 1 About the Operation Modes...2 LED Indicators...5 Solid...5 Ports on the Rear Panel...7 GETTING CONNECTED... 8 WPA AP -CONFIGURATION VIA WEB...
More informationChapter Topics Part 1. Network Definitions. Behind the Scenes: Networking and Security
Chapter Topics Part 1 Behind the Scenes: Networking and Security CS10001 Computer Literacy Business Networks Network Advantages Client/Server Networks Network Classifications Servers Toplogies Chapter
More informationFAST INTER-AP HANDOFF USING PREDICTIVE AUTHENTICATION SCHEME IN A PUBLIC WIRELESS LAN
FAST INTER-AP HANDOFF USING PREDICTIVE AUTHENTICATION SCHEME IN A PUBLIC WIRELESS LAN SANGHEON PACK AND YANGHEE CHOI School of Computer Science and Engineering, Seoul National University, Seoul, Korea
More informationWireless# Guide to Wireless Communications. Objectives
Wireless# Guide to Wireless Communications Chapter 8 High-Speed WLANs and WLAN Security Objectives Describe how IEEE 802.11a networks function and how they differ from 802.11 networks Outline how 802.11g
More informationCompTIA E2C Security+ (2008 Edition) Exam Exam.
CompTIA JK0-015 CompTIA E2C Security+ (2008 Edition) Exam Exam TYPE: DEMO http://www.examskey.com/jk0-015.html Examskey CompTIA JK0-015 exam demo product is here for you to test the quality of the product.
More informationMobility Groups. Information About Mobility
Information About Mobility, page 1 Information About, page 5 Prerequisites for Configuring, page 10 Configuring (GUI), page 12 Configuring (CLI), page 13 Information About Mobility Mobility, or roaming,
More informationConfiguring the Wireless Parameters (CPE and WBS)
Configuring the Wireless Parameters (CPE and WBS) CHAPTERS 1. Configure Basic Wireless Parameters 2. Configure Wireless Client Parameters 3. Configure Wireless AP Parameters 4. Configure Multi-SSID 5.
More informationClient QoS Association Settings on the WAP371
Article ID: 5091 Client QoS Association Settings on the WAP371 Objective Client Quality of Service (QoS) Association is used to control the wireless clients connected to the network, and allows you to
More informationFortiNAC. Cisco Airespace Wireless Controller Integration. Version: 8.x. Date: 8/28/2018. Rev: B
FortiNAC Cisco Airespace Wireless Controller Integration Version: 8.x Date: 8/28/2018 Rev: B FORTINET DOCUMENT LIBRARY http://docs.fortinet.com FORTINET VIDEO GUIDE http://video.fortinet.com FORTINET KNOWLEDGE
More informationNetwork Security: Broadcast and Multicast. Tuomas Aura T Network security Aalto University, Nov-Dec 2010
Network Security: Broadcast and Multicast Tuomas Aura T-110.5240 Network security Aalto University, Nov-Dec 2010 Outline 1. Broadcast and multicast 2. Receiver access control (i.e. data confidentiality)
More informationDetecting Spam Zombies by Monitoring Outgoing Messages
Detecting Spam Zombies by Monitoring Outgoing Messages Zhenhai Duan, Peng Chen, Fernando Sanchez Florida State University {duan, pchen, sanchez}@cs.fsu.edu Yingfei Dong University of Hawaii yingfei@hawaii.edu
More informationEVIL TWIN ACCESS POINT DETECTION AND PREVENTION IN WIRELESS NETWORK Sandip S. Thite Bharati Vidyapeeth s College of Engineering for Women, Pune, India
EVIL TWIN ACCESS POINT DETECTION AND PREVENTION IN WIRELESS NETWORK Sandip S. Thite Bharati Vidyapeeth s College of Engineering for Women, Pune, India Abstract Now a days wireless access points are widely
More informationRedes de Computadores. Medium Access Control
Redes de Computadores Medium Access Control Manuel P. Ricardo Faculdade de Engenharia da Universidade do Porto 1 » How to control the access of computers to a communication medium?» What is the ideal Medium
More informationCWNP PW Certified Wireless Analysis Professional. Download Full Version :
CWNP PW0-270 Certified Wireless Analysis Professional Download Full Version : http://killexams.com/pass4sure/exam-detail/pw0-270 QUESTION: 50 ABC Company is having VoWiFi latency problems on their 802.11g
More informationNetwork Security. Thierry Sans
Network Security Thierry Sans HTTP SMTP DNS BGP The Protocol Stack Application TCP UDP Transport IPv4 IPv6 ICMP Network ARP Link Ethernet WiFi The attacker is capable of confidentiality integrity availability
More informationProtecting the Platforms. When it comes to the cost of keeping computers in good working order, Chapter10
Chapter10 Protecting the Platforms Painting: The art of protecting flat surfaces from the weather and exposing them to the critic. Ambrose Bierce (1842 1914) When it comes to the cost of keeping computers
More informationConfiguring a VAP on the WAP351, WAP131, and WAP371
Article ID: 5072 Configuring a VAP on the WAP351, WAP131, and WAP371 Objective Virtual Access Points (VAPs) segment the wireless LAN into multiple broadcast domains that are the wireless equivalent of
More information