Title :
Exploring wireless device driver vulnerabilities
Author :
Agapov, Victor ; Rahman, Syed (Shawon) M
Author_Institution :
Dept. of Comput. Sci. & Software Eng., Univ. of Wisconsin-Platteville, Platteville, WI
Abstract :
IEEE 802.11 set of standards grew from a highly obscured and unsecured technology to a robust and reliable solution for many of us. Broad acceptance and relatively simple implementation also made 802.11 a perfect target for possible exploitation. Recently discovered wireless driver vulnerabilities exposed a new critical threat that legitimate users community is facing. What makes this vulnerability so dangerous to many of us is the fact that the actual exploitation cannot be prevented by commonly used tools such as firewalls, antivirus, and intrusion detection system´s programs. Access to the victims machine is gained through a flawed third-party wireless driver, giving full kernel level access rights to the attacker. While kernel-level exploitation domain covers everything running beneath the operating systems, this paper describes wireless device drivers vulnerability and proposes methods for vulnerability mitigations. This paper would assist IT professionals in evaluating, creating, and assessing security requirements associated with wireless networks connectivity.
Keywords :
device drivers; operating system kernels; telecommunication security; wireless LAN; IEEE 802.11 standard; kernel-level exploitation domain; network security; operating system; wireless device driver vulnerability; Communication system security; Computer science; Distributed computing; Information security; Internet; Knowledge management; Protection; Resource management; Spread spectrum communication; Wireless sensor networks; 802.11; security; vulnerability; wireless driver;
Conference_Titel :
Computer and Information Technology, 2008. ICCIT 2008. 11th International Conference on
Conference_Location :
Khulna
Print_ISBN :
978-1-4244-2135-0
Electronic_ISBN :
978-1-4244-2136-7
DOI :
10.1109/ICCITECHN.2008.4803130
