loading
Papers

Research.Publish.Connect.

Paper

Authors: Yi Li 1 ; Marcos Serrano 1 ; Tommy Chin 2 ; Kaiqi Xiong 1 and Jing Lin 1

Affiliations: 1 Intelligent Computer Networking and Security Lab, University of South Florida, Tampa and U.S.A. ; 2 Department of Computing Security, Rochester Institute of Technology, Rochester and U.S.A.

ISBN: 978-989-758-378-0

Keyword(s): KRACK, Software-defined Networking, WPA2, Network Security.

Abstract: Most modern Wi-Fi networks are secured by the Wi-Fi Protected Access II (WPA2) protocol that uses a 4-way handshake. Serious weaknesses have been discovered in this 4-way handshake that allows attackers to perform key reinstallation attacks (KRACKs) within the range of an Access Point (AP) to intercept personal information. In this paper, we study KRACK and present a software-defined networking (SDN)-based detection and mitigation framework to defend against KRACK. The proposed framework leverages the characteristic of an SDN controller, a global view of a network, to monitor and manage a Wi-Fi network traffic. It consists of two main components: detection and mitigation modules. Both of them are deployed on the SDN controller. The detection module will monitor network traffic and detect the duplicated message 3 of the 4-way handshake. Once KRACK has been detected, the mitigation module will update the flow table to redirect the attack traffic to a splash portal, which is a place to s tore attack traffic. Extensive experimental results demonstrate that the proposed framework can efficiently detect and mitigate KRACK. We achieve an average of 170.926 ms to detect KRACK and an average of 10.041 ms to mitigate KRACK in our experiments. (More)

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 34.204.171.108

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Li, Y.; Serrano, M.; Chin, T.; Xiong, K. and Lin, J. (2019). A Software-defined Networking-based Detection and Mitigation Approach against KRACK.In Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT, ISBN 978-989-758-378-0, pages 244-251. DOI: 10.5220/0007926202440251

@conference{secrypt19,
author={Yi Li. and Marcos Serrano. and Tommy Chin. and Kaiqi Xiong. and Jing Lin.},
title={A Software-defined Networking-based Detection and Mitigation Approach against KRACK},
booktitle={Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,},
year={2019},
pages={244-251},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007926202440251},
isbn={978-989-758-378-0},
}

TY - CONF

JO - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,
TI - A Software-defined Networking-based Detection and Mitigation Approach against KRACK
SN - 978-989-758-378-0
AU - Li, Y.
AU - Serrano, M.
AU - Chin, T.
AU - Xiong, K.
AU - Lin, J.
PY - 2019
SP - 244
EP - 251
DO - 10.5220/0007926202440251

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.