Wireless Network Intrusion Prevention System (2006)

Designing and implementing a wireless intrusion prevention system. With the explosive adoption of wireless networking, wireless security became an issue of paramount importance. With the physical medium (air) providing no restriction to unauthorized users and encryption protocols failing to achieve their claimed security requirements, wireless security is a challenging research area. In this work, we examine in detail possible wireless security threats and countermeasures while focusing on phising attacks and internet worms. We have implemented a prototype using low-cost, off-the-self thechnology: a PC and commodity wireless access points. The PC acts as a controller that inspects all the traffic that is received from the access points. Our prototype is capable of preventing DNS spoofing attacks and effectively blocking novel worms that exploit unknown vulnerabilities.