|
|||
|---|---|---|---|
Vulnerability Analysis of Extensible Authentication Protocol (EAP) DoS Attack over Wireless Networks Mina Malekzadeh, Abdul Azim Abdul Ghani, Jalil Desa, and Shamala Subramaniam Department of Communication Technology and Networks, Faculty of Computer Science and Information Technology, University of Putra Malaysia
Abstract
IEEE 802.11 supports
802.1x to provide strong authentication mechanism for
Wireless networks. 802.1x utilizes Extensible
Authentication Protocol (EAP) as a framework for
authentication, allowing for a number of authentication
methods to be used. Unfortunately, 802.1x includes some
unprotected EAP packets during authentication process
which can be easily exploited by an attacker to start
different types of Denial of Service (DoS) attacks over
wireless networks. In this paper we developed an
experimental framework to demonstrate and quantify
possible flooding attacks using unprotected EAP frames
against wireless communications. First we setup a
testbed wireless network in order to demonstrate how EAP
flooding attacks take very little effort to bring a
protected wireless network to a complete halt. Then via
measurements and analyses we evaluate the impact and
consequence of these attacks against performance of
wireless network in terms of network drop rate and
throughput. Results show that such attacks can easily
launch, and cause serious service disruption to
compromise network availability.
Keywords EAP flooding attack, wireless network, DoS attacks, WLAN security, WLAN throughput, WLAN drop rate.
(
BibTex: @ARTICLE{P1140912684,
AUTHOR = {Mina Malekzadeh and Abdul Azim Abdul
Ghani and Jalil Desa and Shamala Subramaniam},
TITLE = {Vulnerability Analysis of Extensible Authentication Protocol (EAP) DoS Attack over Wireless Networks}, JOURNAL = {ICGST International Journal on Computer Network and Internet Research, CNIR}, YEAR = {2009}, VOLUME = {09}, ISSUE = {I},
PAGES= {39--46}
}
( |
|||
|
Full
Paper
