Title :
An ANFIS-IDS against deauthentication DOS attacks for a WLAN
Author :
Mar, Jeich ; Yeh, Yow-Cheng ; Hsiao, I-Fan
Author_Institution :
Dept. of Commun., Yuan-Ze Univ., Taoyuan, Taiwan
Abstract :
In this paper, an intrusion detection system (IDS) based on adaptive neuro-fuzzy inference system (ANFIS) rule is realized to minimize the detection delay for the deauthentication denial-of-service (DOS) attacks on the medium access control (MAC) layer of a wireless local area network (WLAN). Both the average sequence number gap (SNG) between the successive packets and the average statistical value of the de-authentication packets received by an Access Point (AP) are used to detect the deauthentication DoS attack. The proposed ANFIS-IDS experimental platform is implemented and tested against real deauthentication DoS attack to empirically evaluate its average detection delay (ADD) and average false alert rate (FAR). The performance of the IDS using the proposed ANFIS method is compared with non-parametric sequential change point detection (NPSCPD) algorithm in a practical WLAN environment.
Keywords :
access protocols; fuzzy neural nets; security of data; wireless LAN; ANFIS-IDS; WLAN; access point; adaptive neuro-fuzzy inference system; average detection delay; deauthentication DOS attacks; denial-of-service; false alert rate; intrusion detection system; medium access control; nonparametric sequential change point detection; sequence number gap; wireless local area network; Algorithm design and analysis; Computer crime; Detection algorithms; IEEE 802.11 Standards; Intrusion detection; Least squares approximation; Wireless LAN; ANFIS; WLAN; deauthentication denial-of-service attack; non-parametric sequential change point detection;
Conference_Titel :
Information Theory and its Applications (ISITA), 2010 International Symposium on
Conference_Location :
Taichung
Print_ISBN :
978-1-4244-6016-8
Electronic_ISBN :
978-1-4244-6017-5
DOI :
10.1109/ISITA.2010.5654405
