Wu Liu,HaiXin Duan,Ping Ren,Jianping Wu

DOI: https://doi.org/10.1109/ICGCS.2010.5543034

2010-01-01

Abstract:As the rapid development of Internet and information technology, more and more people now access Internet via Wireless Local Area Network (WLAN) with many features such as: mobility, convenience and low-cost, but the security flaws existed in RC4, WEP and WPA lead to security issues in WLAN. In this paper, we present several serious security flaws in these protocols, stemming from misapplication of cryptographic primitives and discuss in detail each of the flaws, the underlying security principle violations, and implement relative attacks to show the weakness of WLAN protocols. © 2010 IEEE.

LI Yong-li,ZHAO Yu,LI Yan-wen,LIU Yan-heng

DOI: https://doi.org/10.3321/j.issn:1000-1832.2006.03.010

2006-01-01

Abstract:With the widely utilize of wireless network,the security becomes a very important issue in wireless LAN technclogy.The paper analyses wireless security technologies:encryption,authentication,key management strategies,and intrusion detection.In encryption,authentication,and key management strategies more attentions are pained to 802.11i and our country's wireless LAN protocols standard WAPI.In intrusion avoidance field,some famous attacks against wireless LAN are introduced.Last,an intrusion detection architecture for wireless LAN is put forward.

邢新景,张朝阳,王匡

DOI: https://doi.org/10.3969/j.issn.1003-8329.2003.04.009

2003-01-01

Wireless Communication Technology

Abstract:The WEP security algorithm used in IEEE 802.11 wireless LAN is introduced. Under the basis of a systematical analysis, flaws embedded in WEP are pointed out, and correspondingly, several attacking methods are provided to prove the weakness of WEP. The upgraded version of WEP algorithm-TKIP was also introduced and analyzed. At last, some potential solutions to the security problems are also proposed in using existing IEEE 802.11 equipments.

白珅,王轶骏,薛质

DOI: https://doi.org/10.3969/j.issn.1009-8054.2012.01.060

2012-01-01

Abstract:With the development of mobile communications, wireless network security becomes an attractive hot issue. Nowadays, WPA/WPA2, based on the WEP and by overcoming its shortcomings, is the most important wireless encryption scheme. WPA/WPA2 adopts various advanced security mechanisms, including encryption, authentication and message integrity check, etc, and thus could effectively protects the wireless communication security. However, WPA/WPA2 still has some flaws. Attackers could, with brute force crack or hash table crack, obtain the password in case a weak password is set. As a whole, WPA/WPA2 has high security, and is very difficult to crack.

吴越,史小红,曹秀英,毕光国

DOI: https://doi.org/10.3969/j.issn.0255-8297.2003.02.018

2003-01-01

Journal of Applied Sciences

Abstract:This paper describes the vulnerability of the wired equivalent privacy(WEP) protocol in current IEEE802. 11 WLAN standard, such as key sequence reuse, key management and refreshment, message authentication and integrity, etc. It also presents a security solution for WLAN based on IP Security (IPSec) and discusses the fundamental principles of data origin authentication, integrity protection, anti-replay protection and key exchange, Finally it describes their software implementations, makes a security analysis of the solution and looks into the future research.

刘虹,翁惠玉

DOI: https://doi.org/10.3969/j.issn.1000-3428.2004.z1.118

2004-01-01

Abstract:The paper analyses the security limitation of the first generation wirless LAN.And it provides the security solution based on 802.1x technology for the next generation wirless LAN.The solution has stronger security at authentication and key management.

WU Yi-chen

DOI: https://doi.org/10.3969/j.issn.1006-2475.2013.01.043

2013-01-01

Abstract:In order to overcome the vulnerability of WEP itself,Wi-Fi Alliance puts forward WPA/WPA2 security solutions.But in actual applications,WPA/WPA2 still exist some defects which can be attacked.Especially in WPA/WPA2-PSK mode,user passphrase can be acquired through the dictionary attack after capturing several specific wireless packets.Through the analysis of the dictionary attack principle,an improved method of dynamic key negotiation in WPA/WPA2-PSK mode is developed.The improved method is based on symmetric key encryption technology and could avoid user passphrase suffering from dictionary attack.The improved method strengthens the safety of WPA/WPA2-PSK mode.

严宏,何晨

DOI: https://doi.org/10.3321/j.issn:1006-2467.2004.05.008

2004-01-01

Shanghai Jiaotong Daxue Xuebao/Journal of Shanghai Jiaotong University

Abstract:The essential causes of wired equivalent privacy (WEP) vulnerability in standard 802.11 for wireless LAN were analyzed. Based on it, an efficient improvement was proposed, which introduces synchronized per-packet encryption keys and Michael keys into the original WEP algorithm. The analysis and simulation show that this improvement can correct the design flaws of WEP stated in some previous papers and promote significantly the security performance of wireless LAN.

Fan Sun,Hong Wen,Yanxu Zhu,Xinchen Xu

DOI: https://doi.org/10.1109/CCPQT56151.2022.00035

2022-01-01

Abstract:Due to wireless LAN is closed to our daily life and our terminals, the malicious attack actions are easily to be launched to the open wireless broadcast channel. WAPI (Wireless LAN Authentication and Privacy Infrastructure) is one of influential standards for wireless LAN. To understand and strengthen WAPI protocol, this paper studies the security performance of WAPI protocol, analyzes the defects of WAPI protocol and the possible security threats and losses caused by the defects. A security performance evaluation strategy based on CVSS standard is also proposed, and quantitatively evaluates the security performance of WAPI protocol. According to our quantitative evaluation, it is possible to know which part of the WAPI is the security weak part, and improvement and enhanced measurement should be paid more attention in the future.

Tao Xiao

2004-01-01

Abstract:With the more deployment and understanding of wireless LAN, significant problems have been exposed. A number of security concerns have been raised. Several organizations have implemented solutions that provide extra security. The 802.11 TGi group is working on new ways to produce a series of IEEE 802.1x and IEEE 802.11i. This paper analyzes security protocol of IEEE 802.1x and Chinese WAPI. The secure characters of wireless LAN are presented and discussed in detail. At the same time, the virtues of 802.1x and WAPI on WLAN are introduced.

Xian-Shi Zhang,Ge-Wen Kang,Xin-Heng Wang

2009-01-01

Abstract:An analysis of WLAN security mechanisms of wired equivalent privacy (WEP) and Wi-Fi protected access (WPA) discovers that the current literature is not totally creditable in its judgment on the security value of WEP and WPA. Based on the respective performances of WEP and WPA under certain typical attacks, this paper substantiates the judgment that WEP has quite a few vulnerabilities concerning confidentiality and integrity, but at the same time challenges the judgment on WPA with that WPA is robust enough to confront potential typical attacks and is not so unreliable as the current literature believes, although it has some vulnerabilities in its message integrity code (MIC).

吴丽华,史烈

DOI: https://doi.org/10.3969/j.issn.1000-3428.2005.04.061

2005-01-01

Abstract:Security is a crucial problem in design and deployment of wireless LAN. The security technology used in nowadays 802.11 equipment WEP and 802.11x, has security flaws in design and can't protect the security of WLAN. This paper presents a network deployment scenario using VPN technology in WLAN, and discusses the design of VPN gateway in it.

Zhang Liang,Liu Jianwei

DOI: https://doi.org/10.3969/j.issn.2095-1000.2010.02.014

2010-01-01

Abstract:The wireless Mesh network is composed of self-organizing mobile nodes.It is particularly vulnerable due to its features of shared wireless transmission medium and dynamic changing topology.The recent progress of wireless Mesh network security research is introduced in this paper.Firstly,the security weaknesses of wireless Mesh network are analyzed in terms of transmission channel,authentication mechanism,physical protection,dynamic topology and routing protocol.Secondly,the representative solutions are illustrated in terms of authentication,secure routing,intrusion detection and other secure technologies.At the same time,the respective merits and faults of these solutions are indicated and a comprehensive comparison is made.Some problems of the present protocols are clarified and the direction of future research is indicated.

Sondy Kumajas,Julius Sasukul,Alexander Siwi,Hellena Saruan

DOI: https://doi.org/10.62711/ijite.v1i2.41

2022-03-24

Abstract:This study discusses the security analysis of Wireless Local Area Network (Wireless LAN) in the Community against external attacks on the Wireless Protected Access (WPA), Web Proxy, and Virtual Private Network (VPN) protocols, used to attack LAN. Three types of software are used as attackers, namely, Network Stumbler, Aircrack and Wireshark attackers. The software is used on the laptop at a distance of 5m to 25m from the Wireless LAN access point. From the experimental results, it can be seen that the fastest response time by the WPA Protocol was given by the Network Stumbler attacker, followed by Aircrack and Wireshark.

张恺伦,江全元

2013-01-01

Abstract:With the promotion and application of wide area measurement systems (WAMS) in power system, the security of its communication system is attracting a growing body of research. To analyze the vulnerability of WAMS communication infrastructures when facing network intrusions, an assessing method of vulnerability based on attack tree model is proposed. First, the attack tree model of WAMS communication system is established, which directly reflects the intrusion scenarios when the system is maliciously attacked. Second, a more reasonable assessing method for the vulnerability of passwords and ports is proposed, as well as the vulnerability of the system with all scenarios taken into consideration. Finally, the paper puts forth the concept of vulnerability sensitivity, which can quantitatively evaluate the effect of changes in the leaf vulnerability on the system, so as to find out the critical port.

You He

2007-01-01

Abstract:Wireless LAN,with its characteristics of mobility,conveniences of cabling,flexibility of the networks and low-cost,is of great concern and thus widely used in various fields.With the rapid development of the Internet,as a supplement or substitute for cable networks,wireless LAN has its great market potentials and bright prospects for development.The essay introduces the characteristics of three different extension standards of IEEE 802.11 and five topology structures of wireless LAN.Additionally,techniques of network security are discussed.

Binbin Yu,Liang Hu

DOI: https://doi.org/10.2991/amcce-17.2017.117

2017-01-01

Abstract:As one of the basic technologies for building Internet of Things, wireless sensor networks (WSNs) are a hot research topic at present. In this paper, two basic structures of WSNs are described briefly, and the current security situation and security risks of WSNs are introduced. Then, this paper summarizes several mainstream ways of attacking identity authentication schemes that are applied to WSNs, including smart card theft, wireless sensor node capture, vampire attack and collusion attack, and presents some defensive measures. Finally, attacking principles of these attack methods are summarized, and some improvements are put forward.

WU Yi-chen,YANG Jing

DOI: https://doi.org/10.3969/j.issn.1007-1423-b.2012.19.005

2012-01-01

Abstract:Based on the research on the IEEE 802.11i 4-way handshake,it is found that there exists defects which will lead to denial of service attacks.Aiming at this security vulnerability,studies three improved methods,TPTK,re-Nonce and authentication to the initial message,and analyzes the security of these three methods.It is found that these improved methods will bring new security threats to WLAN.And puts forward the direction of further research.

余华,钱松荣,胡方农

DOI: https://doi.org/10.3969/j.issn.1007-130x.2002.06.010

2002-01-01

Abstract:Based upon SSL and TLS, the security module WTLS in WAP takes into account of the features of wireless communications and makes a modification, but also causes some problems .WAP introduces a new piece of software, the WAP gateway. This programming model can accord well with the existing Internet standards. However, it makes end to end security difficult to implement.

Thomas Stimpson,Lu Liu,Jianjun Zhang,Richard Hill,Weining Liu,Yongzhao Zhan

DOI: https://doi.org/10.1109/FSKD.2012.6233783

2012-01-01

Abstract:Wireless networks are being used in homes far more extensively than ever before. With the growth of the Internet, coupled with wireless devices such as laptops and Wi-Fi enabled phones, their usage has increased greatly. This project discovered the security trends in the home wireless market by collecting data directly from the source. This information, when analysed, provided an overview of wireless local area networks and the lack of security used. The findings were then used to create a set of recommendations and how it is believed the current system is failing to provide the safety measures needed to ensure that users stay secure while utilizing wireless networks within the home.