Abstract
Any sniffer can see the information sent through unprotected 'probe request messages' and 'probe response messages' in wireless local area networks (WLAN). A station (STA) can send probe requests to trigger probe responses by simply spoofing a genuine media access control (MAC) address to deceive access point (AP) controlled access list. Adversaries exploit these weaknesses to flood APs with probe requests, which can generate a denial of service (DoS) to genuine STAs. The research examines traffic of a WLAN using supervised feed-forward neural network classifier to identify genuine frames from rogue frames. The novel feature of this approach is to capture the genuine user and attacker training data separately and label them prior to training without network administrator's intervention. The model's performance is validated using self-consistency and fivefold cross-validation tests. The simulation is comprehensive and takes into account the real-world environment. The results show that this approach detects probe request attacks extremely well. This solution also detects an attack during an early stage of the communication, so that it can prevent any other attacks when an adversary contemplates to start breaking into the network.
Original language | English |
---|---|
Pages (from-to) | 1-14 |
Number of pages | 15 |
Journal | Neural Computing and Applications |
Volume | 25 |
Issue number | 1 |
DOIs | |
Publication status | Published - 2014 |
Keywords
- DoS attacks
- Feed-forward neural networks
- IEEE 802.11
- Intrusion detection
- Real-time systems
- Wireless LAN