Title :
User-side Wi-Fi Evil Twin Attack detection using SSL/TCP protocols
Author :
Nakhila, Omar ; Dondyk, Erich ; Amjad, Muhammad Faisal ; Zou, Cliff
Author_Institution :
Dept. of EECS, Univ. of Central Florida, Orlando, FL, USA
Abstract :
Evil Twin Attack (ETA) refers to a rogue Wi-Fi Access Point (AP) that appears to be a legitimate one but actually has been set up to eavesdrop on wireless communications [1]. Most of existing detection techniques assume that the attacker will use the same legitimate wireless network gateway to pass through victim´s wireless data. These detection methods will fail if the attacker uses a different gateway, such as using his own broadband cellular connection through his own smartphone. In this paper, we present a new client-side detection method to detect such an ETA that uses a different gateway from the legitimate one. It relies on SSL/TCP connection to an arbitrary remote web server to avoid attacker´s misleading message, and trying to detect the changing of gateway´s public IP address by switching from one AP to another in the middle of the SSL/TCP connection. The detection method is on the client side which makes it more convenient for users to deploy and ensure their security.
Keywords :
Internet; computer network security; transport protocols; wireless LAN; AP; ETA detection; IP address; SSL/TCP protocol; Wi-Fi access point; client-side detection method; remote Web server; user-side Wi-Fi evil twin attack detection; wireless communication; wireless network gateway; Communication system security; IEEE 802.11 Standards; IP networks; Logic gates; Servers; Wireless networks; Evil Twin Attack; SSL; TCP; Wi-Fi security;
Conference_Titel :
Consumer Communications and Networking Conference (CCNC), 2015 12th Annual IEEE
Conference_Location :
Las Vegas, NV
Print_ISBN :
978-1-4799-6389-8
DOI :
10.1109/CCNC.2015.7157983
