an analysis of wireless
play

An Analysis of Wireless Security at U of M Dearborn: Found Problems - PowerPoint PPT Presentation

Sep 19, 2022 •48 likes •288 views

An Analysis of Wireless Security at U of M Dearborn: Found Problems and Proposed Solutions (CASL Only) Summary Basic Networking Concepts Description of vulnerabilities Demonstration Possible solutions Networking Addresses 3

  1. An Analysis of Wireless Security at U of M Dearborn: Found Problems and Proposed Solutions (CASL Only)

  2. Summary • Basic Networking Concepts • Description of vulnerabilities • Demonstration • Possible solutions

  3. Networking Addresses 3 types of addresses • DNS address, ex. www.aol.com • IP address, ex 64.12.89.242 • MAC address, ex. 00:05:2E:8D:C7:B2

  4. Translating Network Addresses • DNS  IP  MAC • www.aol.com  64.12.89.242  00:05:2E:8D:C7:B2

  5. Port Explanation Port All incoming and outgoing data is 1 filtered through 2 ports in the router 3 4 … Imagine toll booth lanes on a highway …

  6. Vulnerability #1 : Non-filtered outgoing traffic on port 53 • Should allow outgoing DNS information • Should not allow all outgoing information • Allows complete bypass of firewall by anyone

  7. Unfiltered Port Port Attacker 51 HTTP 52 SSH 53 FTP Telnet 54 etc… 55 56

  8. Solution • Reconfigure firewall • Only allow outgoing DNS on port 53

  9. Vulnerability #2: Firewall only uses MAC address to determine identity • MAC addresses are publicly broadcasted • MAC addresses are easily changed, or spoofed • Spoofing = impersonating, forging, etc…

  10. Solutions • Many appoaches • Need earlier authentication • Wireless encryption

  11. Vulnerability #3: Client and server MAC tables changable • Reroutes traffic • Allows for more advanced attacks like recording sessions encrypted by SSH or HTTPS

  12. ARP Poisoning Client Firewal l 141.215.4.97 141.215.4.1 MAC IP 00:2F:CD:8E:9A 141.215.4.97 ….. ….. MAC IP ….. ….. 00:2F:CD:8E:9A 141.215.4.1 ….. ….. ….. ….. Attacker

  13. Solution • Many approaches • Need earlier authentication • Wireless encryption

  14. Vulnerability # 4: Rogue Access Points • BYO-AP! • Tricks people into connecting to your AP • Get to client before the firewall does

  15. Rogue Access Point Client School Router Sure, why not? Rogue Access Point “I’m the school router. Connect to my stronger signal.”

  16. Solution • Wireless Encryption • Wireless Intrusion Detection System or WIDS

  17. Wireless Networks • No physical security like wired networks • Accessible from far away • Multiplies dangers of vulnerabilities

  18. High Power Antenna

  22. Scope of Project • Only a month long • Wireless network not completely evaluated • More problems then we can present

  23. Conclusion • A lot of changes needed • Little work to make changes • Until then, assume all traffic is being watched

  24. Q and A

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Wireless Privacy: Analysis of 802.11 Security Nikita Borisov UC Berkeley

Wireless Privacy: Analysis of 802.11 Security Nikita Borisov UC Berkeley

Wireless Privacy: Analysis of 802.11 Security Nikita Borisov UC Berkeley nikitab@cs.berkeley.edu Wireless Networking is Here Internet 802.11 wireless networking is on the rise installed base: ~ 15 million users currently a $1

803 views • 37 slides
Localization Error Analysis in Wireless Sensor Networks Uday Kiran Pulleti What is a Wireless

Localization Error Analysis in Wireless Sensor Networks Uday Kiran Pulleti What is a Wireless

Localization Error Analysis in Wireless Sensor Networks Uday Kiran Pulleti What is a Wireless Sensor Network ? Entities Sensor Nodes Beacon Nodes Gateway Nodes Function Sample Process Communicate

847 views • 42 slides
Flow Analysis in a Wireless Environment with short DHCP Leases Sanket Parikh John McHugh Dept.

Flow Analysis in a Wireless Environment with short DHCP Leases Sanket Parikh John McHugh Dept.

Flow Analysis in a Wireless Environment with short DHCP Leases Sanket Parikh John McHugh Dept. of Computer Science Dalhousie University FlowCon 2008 Project Objectives Analysis of Wireless Network Data from University of Dartmouth

428 views • 14 slides
Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading,

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading,

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading, interference, hidden terminal problem IEEE 802.11 ( wi-fi ) CSMA/CA reflects wireless channel characteristics DIFS, SIFS,

1.43k views • 83 slides
1 Wireless standards Path Loss Phenomena Wireless standards Path Loss Phenomena Open

1 Wireless standards Path Loss Phenomena Wireless standards Path Loss Phenomena Open

Outline Outline What is wireless? Overview Wireless parameters Cellular architecture Wireless Networks Wireless Networks Media multiple access Wireless LAN 802.11 MANET Mobile Ad-hoc NETworks Amnon Jonas

525 views • 13 slides
Network analysis for context and content oriented wireless networking Katia Jaffrs-Runser

Network analysis for context and content oriented wireless networking Katia Jaffrs-Runser

Network analysis for context and content oriented wireless networking Katia Jaffrs-Runser University of Toulouse, INPT-ENSEEIHT, IRIT lab, IRT Team Ecole des sciences avances de Luchon Network analysis and applications July 3 rd , 2014 The

772 views • 49 slides
Analysis of Mobile IP Analysis of Mobile IP in in Wireless LANs Wireless LANs

Analysis of Mobile IP Analysis of Mobile IP in in Wireless LANs Wireless LANs

ENSC 835: COMMUNICATION NETWORKS ENSC 835: COMMUNICATION NETWORKS FINAL PROJECT PRESENTATIONS FINAL PROJECT PRESENTATIONS Spring 2011 Spring 2011 Analysis of Mobile IP Analysis of Mobile IP in in Wireless LANs Wireless LANs

627 views • 26 slides
Wireless networks 1 Overview Wireless networks basics IEEE 802.11 (Wi-Fi) a/b/g/n ad

Wireless networks 1 Overview Wireless networks basics IEEE 802.11 (Wi-Fi) a/b/g/n ad

Wireless networks 1 Overview Wireless networks basics IEEE 802.11 (Wi-Fi) a/b/g/n ad Hoc MAC protocols ad Hoc routing DSR AODV 2 Wireless Networks Autonomous systems of mobile hosts connected by wireless links Nodes are

1.3k views • 102 slides
Wireless LAN Setup & Optimizing Wireless Client in Linux Hacking and Cracking Wireless

Wireless LAN Setup & Optimizing Wireless Client in Linux Hacking and Cracking Wireless

Wireless LAN Setup & Optimizing Wireless Client in Linux Hacking and Cracking Wireless LAN Setup Host Based AP ( hostap ) in Linux & freeBSD Securing & Managing Wireless LAN : Implementing 802.1x EAP-TLS PEAP-MSCHAPv2

278 views • 14 slides
Performance analysis in wireless communications and large deviations of extreme eigenvalues of

Performance analysis in wireless communications and large deviations of extreme eigenvalues of

Performance analysis in wireless communications and large deviations of extreme eigenvalues of deformed random matrices Myl` ene Ma da LM Orsay, Universit e Paris-Sud Joint work with P. Bianchi, M. Debbah, J. Najim and F.

1.23k views • 79 slides
Timothy R. Newman, Ph.D. Wireless @ VT Wireless @ Virginia Tech Wireless Umbrella Group

Timothy R. Newman, Ph.D. Wireless @ VT Wireless @ Virginia Tech Wireless Umbrella Group

Timothy R. Newman, Ph.D. Wireless @ VT Wireless @ Virginia Tech Wireless Umbrella Group MPRG, CWT, VTVT, WML, Antenna Group, Time Domain Lab, DSPRL Officially rolled out June 2006 Currently 32 tenure track faculty and more

304 views • 19 slides
Analysis and Optimization of Caching for Content Delivery in Wireless Networks Ying Cui

Analysis and Optimization of Caching for Content Delivery in Wireless Networks Ying Cui

1896 1920 1987 2006 Analysis and Optimization of Caching for Content Delivery in Wireless Networks Ying Cui Department of Electronic Engineering Shanghai Jiao Tong University, China 1 Outline Introduction Caching at BSs joint

767 views • 66 slides
From Outage Probability to ALOHA MAC Layer Performance Analysis in Distributed Wireless Sensor

From Outage Probability to ALOHA MAC Layer Performance Analysis in Distributed Wireless Sensor

From Outage Probability to ALOHA MAC Layer Performance Analysis in Distributed Wireless Sensor Networks MEA. Seddik 1 , 2 , V. Toldov 2 , 3 , L. Clavier 1 , 3 , N. Mitton 2 1 IMT Lille-Douai, 2 Inria, 3 IRCICA USR CNRS 3380 WCNC18, 16 Apr,

481 views • 27 slides
I In recent years, regarding to basic progresses in design of integrated orbits, wireless

I In recent years, regarding to basic progresses in design of integrated orbits, wireless

Vol. 1(3), Oct. 2015, pp. 227-233 Presentation of an Optimum Routing Template in Wireless Sensor Networks (WSNs) Based on Imperialist Competitive Algorithm Mohammad Gharary, Javad Vahidi Computer MSc student, PHD analysis of algorithms Phone

686 views • 7 slides
The Challenge of Legacy Assets Richard Lucas, BSc(Eng) MBA MD of ASH Wireless ASH Wireless is an

The Challenge of Legacy Assets Richard Lucas, BSc(Eng) MBA MD of ASH Wireless ASH Wireless is an

The Impact of the Internet of Things on our Lives. The Challenge of Legacy Assets Richard Lucas, BSc(Eng) MBA MD of ASH Wireless ASH Wireless is an electronics design consultancy Specialising in wireless and sensors An Ofgem funded Network

1.7k views • 26 slides
Further Properties of Wireless Channel Capacity Fengyou Sun and Yuming Jiang Norwegian University

Further Properties of Wireless Channel Capacity Fengyou Sun and Yuming Jiang Norwegian University

Wireless Channel Capacity Analysis of Cumulative Capacity Analysis of Maximum and Minimum Cumulative Capacity Further Properties of Wireless Channel Capacity Fengyou Sun and Yuming Jiang Norwegian University of Science and Technology (NTNU)

260 views • 22 slides
Worksheet S-10 Here To Stay: A First Look at MAC S-10 Audits May 30, 2019 Jonathan Mason, Senior

Worksheet S-10 Here To Stay: A First Look at MAC S-10 Audits May 30, 2019 Jonathan Mason, Senior

Worksheet S-10 Here To Stay: A First Look at MAC S-10 Audits May 30, 2019 Jonathan Mason, Senior Operations Manager Kyle Pennington, Client Relations Manager SC HFMA Annual Institute OUTLINE Overview of FY 2020 IPPS Proposed Rule as it

732 views • 56 slides
2 0 1 6 I N V E S T O R P R E S E N TAT I O N J U N E 1 5 , 2 0 1 6 R Y E R S O N I N V E S

2 0 1 6 I N V E S T O R P R E S E N TAT I O N J U N E 1 5 , 2 0 1 6 R Y E R S O N I N V E S

2 0 1 6 I N V E S T O R P R E S E N TAT I O N J U N E 1 5 , 2 0 1 6 R Y E R S O N I N V E S T O R P R E S E N T A T I O N IMPORTANT INFORMATION ABOUT RYERSON HOLDING CORPORATION These materials do not constitute an offer or solicitation to

858 views • 39 slides
2013 Undergraduate Student Technology Survey Creighton University Ryan Cameron Tobias Nownes

2013 Undergraduate Student Technology Survey Creighton University Ryan Cameron Tobias Nownes

2013 Undergraduate Student Technology Survey Creighton University Ryan Cameron Tobias Nownes About the Survey Questions from the ECAR National Study of Undergraduate Students and Technology, 2012 Survey* Undergraduate Students only

642 views • 29 slides
Multicenter comparison of genotypic tropism testing: results from viral RNA and proviral DNA M.

Multicenter comparison of genotypic tropism testing: results from viral RNA and proviral DNA M.

HIV Genotypischer Resistenzalgorithmus Deutschland Multicenter comparison of genotypic tropism testing: results from viral RNA and proviral DNA M. Obermeier 5/2012 Aims of the study Genotypic tropism testing from viral RNA is widely

259 views • 24 slides
Pocket informers: Privacy problems with portable communication objects Mathieu Cunche

Pocket informers: Privacy problems with portable communication objects Mathieu Cunche

Pocket informers: Privacy problems with portable communication objects Mathieu Cunche mathieu.cunche@inria.fr @Cunchem INSA-Lyon CITI, Inria Privatics 10th European e-Accessibility Forum e-Accessibility in a connected world 30 May 2016,

347 views • 18 slides
Mobile Location Analytics Mobile Location Analytics (MLA): Aggregated Insights about

Mobile Location Analytics Mobile Location Analytics (MLA): Aggregated Insights about

Mobile Location Analytics Mobile Location Analytics (MLA): Aggregated Insights about consumer behavior for retailers, based on technology using Wi-Fi or Bluetooth signals. Technology Overview Mobile devices with Wi-Fi or Bluetooth

1.68k views • 5 slides
Roundtable Seeking your opinion on future OLI objectives Andre Anderko, OLI Systems & Pat

Roundtable Seeking your opinion on future OLI objectives Andre Anderko, OLI Systems & Pat

Roundtable Seeking your opinion on future OLI objectives Andre Anderko, OLI Systems & Pat Mckenzie, AQSIm OL OLI I Simul ulation ation Conf onferen erence ce 2016 Conference organization by Topics Different ways to access OLI

445 views • 8 slides
smart data mobility smart data mobility smart data mobility grass coal oil data data

smart data mobility smart data mobility smart data mobility grass coal oil data data

smart data mobility smart data mobility smart data mobility grass coal oil data data + Cell tower triangulation MAC address (WiFi) GPS (GNSS) Automatic image recognition (video) Mobile telecom Facial recognition/tracking cell

828 views • 59 slides

More recommend