Lars Almon, Arno Manfred Krause, Oliver Fietze, M. Hollick
{"title":"基于OpenNAN的邻居感知网络的去同步和MitM攻击","authors":"Lars Almon, Arno Manfred Krause, Oliver Fietze, M. Hollick","doi":"10.1145/3479241.3486689","DOIUrl":null,"url":null,"abstract":"The Neighbor Awareness Networking (NAN) specification, also known as Wi-Fi Aware, offers a quick and energy efficient way of forming wireless ad-hoc networks. It includes ranging capabilities based on Fine Timing Measurements (FTM) and can sustain connectivity to a Wi-Fi network while participating in a NAN cluster. Android is currently the only operating system to support it, offering a limited and proprietary interface. NAN shares many fundamental properties with Apple's Wireless Direct Link protocol, which is used by millions of devices today. To facilitate research in this area, we present OpenNAN: the first open source NAN stack. It supports Linux and requires just common and cheap off-the-shelf Wi-Fi hardware. Using OpenNAN we perform a security analysis of NAN and identify three attacks. First, any malicious node can manipulate the Anchor Master Selection to become the Anchor Master. Second, a malicious Anchor Master can desynchronize individual nodes by sending synchronization beacons as unicast. And finally, we show a Machine-in-the-Middle (MitM) on the NAN Service Discovery Protocol. We successfully perform all attacks against different Android versions and NAN stacks.","PeriodicalId":349943,"journal":{"name":"Proceedings of the 19th ACM International Symposium on Mobility Management and Wireless Access","volume":"86 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Desynchronization and MitM Attacks Against Neighbor Awareness Networking Using OpenNAN\",\"authors\":\"Lars Almon, Arno Manfred Krause, Oliver Fietze, M. Hollick\",\"doi\":\"10.1145/3479241.3486689\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The Neighbor Awareness Networking (NAN) specification, also known as Wi-Fi Aware, offers a quick and energy efficient way of forming wireless ad-hoc networks. It includes ranging capabilities based on Fine Timing Measurements (FTM) and can sustain connectivity to a Wi-Fi network while participating in a NAN cluster. Android is currently the only operating system to support it, offering a limited and proprietary interface. NAN shares many fundamental properties with Apple's Wireless Direct Link protocol, which is used by millions of devices today. To facilitate research in this area, we present OpenNAN: the first open source NAN stack. It supports Linux and requires just common and cheap off-the-shelf Wi-Fi hardware. Using OpenNAN we perform a security analysis of NAN and identify three attacks. First, any malicious node can manipulate the Anchor Master Selection to become the Anchor Master. Second, a malicious Anchor Master can desynchronize individual nodes by sending synchronization beacons as unicast. And finally, we show a Machine-in-the-Middle (MitM) on the NAN Service Discovery Protocol. We successfully perform all attacks against different Android versions and NAN stacks.\",\"PeriodicalId\":349943,\"journal\":{\"name\":\"Proceedings of the 19th ACM International Symposium on Mobility Management and Wireless Access\",\"volume\":\"86 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-11-22\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 19th ACM International Symposium on Mobility Management and Wireless Access\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3479241.3486689\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 19th ACM International Symposium on Mobility Management and Wireless Access","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3479241.3486689","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
摘要
邻居感知网络(NAN)规范,也称为Wi-Fi感知,提供了一种快速和节能的方式来形成无线自组织网络。它包括基于精细定时测量(FTM)的测距功能,并且可以在参与NAN集群时保持与Wi-Fi网络的连接。Android是目前唯一支持它的操作系统,提供了一个有限的专有界面。NAN与苹果的无线直连协议(Wireless Direct Link protocol)共享许多基本属性,后者目前被数百万台设备所使用。为了促进这一领域的研究,我们提出了OpenNAN:第一个开源NAN堆栈。它支持Linux,只需要普通且便宜的现成Wi-Fi硬件。使用OpenNAN,我们对NAN进行了安全分析,并确定了三种攻击。首先,任何恶意节点都可以操纵锚主选择成为锚主。其次,恶意的锚主可以通过发送单播同步信标来取消单个节点的同步。最后,我们展示了NAN服务发现协议上的中间机器(Machine-in-the-Middle, MitM)。我们成功地执行了针对不同Android版本和NAN堆栈的所有攻击。
Desynchronization and MitM Attacks Against Neighbor Awareness Networking Using OpenNAN
The Neighbor Awareness Networking (NAN) specification, also known as Wi-Fi Aware, offers a quick and energy efficient way of forming wireless ad-hoc networks. It includes ranging capabilities based on Fine Timing Measurements (FTM) and can sustain connectivity to a Wi-Fi network while participating in a NAN cluster. Android is currently the only operating system to support it, offering a limited and proprietary interface. NAN shares many fundamental properties with Apple's Wireless Direct Link protocol, which is used by millions of devices today. To facilitate research in this area, we present OpenNAN: the first open source NAN stack. It supports Linux and requires just common and cheap off-the-shelf Wi-Fi hardware. Using OpenNAN we perform a security analysis of NAN and identify three attacks. First, any malicious node can manipulate the Anchor Master Selection to become the Anchor Master. Second, a malicious Anchor Master can desynchronize individual nodes by sending synchronization beacons as unicast. And finally, we show a Machine-in-the-Middle (MitM) on the NAN Service Discovery Protocol. We successfully perform all attacks against different Android versions and NAN stacks.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
