On detecting CTS duration attacks using K-means clustering in WLANs

2012 IEEE International Conference on Advanced Networks and Telecommunciations Systems (ANTS) Pub Date : 2012-12-01 DOI:10.1109/ANTS.2012.6524235

Vishal Rajyaguru, T. B. Reddy, B. S. Manoj, M. Sarkar

{"title":"On detecting CTS duration attacks using K-means clustering in WLANs","authors":"Vishal Rajyaguru, T. B. Reddy, B. S. Manoj, M. Sarkar","doi":"10.1109/ANTS.2012.6524235","DOIUrl":null,"url":null,"abstract":"IEEE 802.11 based Wireless LAN (WLAN) standard has been one of the most successful wireless technology standards with total expected sales rising to a staggering $6.1Billion by 2015. The proliferation of 802.11 based WLANs highlights the need to focus on development of new solutions for security as enterprises and campuses increasingly being covered by WLANs. Denial of Service (DoS) is one of the popular attacks that prevents WLAN users from accessing the wireless network resources. Most DoS attacks such as the Clear-to-Send (CTS) duration attack is easy to carry out by an attacker. This work focuses on the use of clustering techniques on wireless traffic datasets for detecting CTS-based DoS attacks on 802.11 WLANs. Performance evaluation shows that, under the cases of naïve CTS duration attacker as well as the sophisticated CTS duration attacker, the k-means clustering technique is able to achieve high detection rates and low false positive rates with relatively small values of k (i.e., number of clusters).","PeriodicalId":340711,"journal":{"name":"2012 IEEE International Conference on Advanced Networks and Telecommunciations Systems (ANTS)","volume":"269 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 IEEE International Conference on Advanced Networks and Telecommunciations Systems (ANTS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ANTS.2012.6524235","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

IEEE 802.11 based Wireless LAN (WLAN) standard has been one of the most successful wireless technology standards with total expected sales rising to a staggering $6.1Billion by 2015. The proliferation of 802.11 based WLANs highlights the need to focus on development of new solutions for security as enterprises and campuses increasingly being covered by WLANs. Denial of Service (DoS) is one of the popular attacks that prevents WLAN users from accessing the wireless network resources. Most DoS attacks such as the Clear-to-Send (CTS) duration attack is easy to carry out by an attacker. This work focuses on the use of clustering techniques on wireless traffic datasets for detecting CTS-based DoS attacks on 802.11 WLANs. Performance evaluation shows that, under the cases of naïve CTS duration attacker as well as the sophisticated CTS duration attacker, the k-means clustering technique is able to achieve high detection rates and low false positive rates with relatively small values of k (i.e., number of clusters).

查看原文本刊更多论文

基于k -均值聚类的无线局域网CTS持续攻击检测

基于IEEE 802.11的无线局域网(WLAN)标准是最成功的无线技术标准之一，预计到2015年总销售额将达到惊人的61亿美元。随着企业和校园越来越多地被无线局域网覆盖，基于802.11的无线局域网的普及凸显了关注开发新的安全解决方案的必要性。拒绝服务攻击(DoS)是阻止WLAN用户访问无线网络资源的常见攻击之一。大多数DoS攻击很容易被攻击者实施，例如CTS (Clear-to-Send)持续时间攻击。这项工作的重点是在无线流量数据集上使用聚类技术来检测802.11 wlan上基于cts的DoS攻击。性能评估表明，在naïve CTS持续攻击者和复杂的CTS持续攻击者的情况下，k-means聚类技术能够在k(即聚类数)值相对较小的情况下实现高检测率和低假阳性率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2012 IEEE International Conference on Advanced Networks and Telecommunciations Systems (ANTS)

自引率

0.00%

发文量