loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Yi Li 1 ; Marcos Serrano 1 ; Tommy Chin 2 ; Kaiqi Xiong 1 and Jing Lin 1

Affiliations: 1 Intelligent Computer Networking and Security Lab, University of South Florida, Tampa and U.S.A. ; 2 Department of Computing Security, Rochester Institute of Technology, Rochester and U.S.A.

Keyword(s): KRACK, Software-defined Networking, WPA2, Network Security.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Network Security ; Security and Privacy in Mobile Systems ; Wireless Network Security

Abstract: Most modern Wi-Fi networks are secured by the Wi-Fi Protected Access II (WPA2) protocol that uses a 4-way handshake. Serious weaknesses have been discovered in this 4-way handshake that allows attackers to perform key reinstallation attacks (KRACKs) within the range of an Access Point (AP) to intercept personal information. In this paper, we study KRACK and present a software-defined networking (SDN)-based detection and mitigation framework to defend against KRACK. The proposed framework leverages the characteristic of an SDN controller, a global view of a network, to monitor and manage a Wi-Fi network traffic. It consists of two main components: detection and mitigation modules. Both of them are deployed on the SDN controller. The detection module will monitor network traffic and detect the duplicated message 3 of the 4-way handshake. Once KRACK has been detected, the mitigation module will update the flow table to redirect the attack traffic to a splash portal, which is a place to store attack traffic. Extensive experimental results demonstrate that the proposed framework can efficiently detect and mitigate KRACK. We achieve an average of 170.926 ms to detect KRACK and an average of 10.041 ms to mitigate KRACK in our experiments. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 44.222.225.12

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Li, Y.; Serrano, M.; Chin, T.; Xiong, K. and Lin, J. (2019). A Software-defined Networking-based Detection and Mitigation Approach against KRACK. In Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - SECRYPT; ISBN 978-989-758-378-0; ISSN 2184-3236, SciTePress, pages 244-251. DOI: 10.5220/0007926202440251

@conference{secrypt19,
author={Yi Li. and Marcos Serrano. and Tommy Chin. and Kaiqi Xiong. and Jing Lin.},
title={A Software-defined Networking-based Detection and Mitigation Approach against KRACK},
booktitle={Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - SECRYPT},
year={2019},
pages={244-251},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007926202440251},
isbn={978-989-758-378-0},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - SECRYPT
TI - A Software-defined Networking-based Detection and Mitigation Approach against KRACK
SN - 978-989-758-378-0
IS - 2184-3236
AU - Li, Y.
AU - Serrano, M.
AU - Chin, T.
AU - Xiong, K.
AU - Lin, J.
PY - 2019
SP - 244
EP - 251
DO - 10.5220/0007926202440251
PB - SciTePress