I=
Pakistan Research Repository Home
 

Title of Thesis

Robust and Low Latency Security Framework for IEEE 802.11 Wireless Network

Author(s)

Muhammad Junaid

Institute/University/Department Details
Faculty of Information Security / National Universit of Science And Technology, Ismamabad
Session
2009
Subject
Information Security
Number of Pages
117
Keywords (Extracted from title, table of contents and abstract of thesis)
Integrity, Wireless, Latency, Robust, Security, Network, Equivalent, Framework, Low, Authentication, Protocol

Abstract
Wireless Networks call for enhanced confidentiality, integrity and authentication services because of their inherent weakness. ‘Counter Mode Cipher Block Chaining Message Authentication Code Protocol’ (CCMP) has recently been employed to replace flawed ‘Wired Equivalent Privacy’ (WEP) Protocol for the provision of security to IEEE 802.11 wireless local area networks (WLAN).Meanwhile, IEEE 802.11s – draft standard for wireless mesh networks (WMN) – has also proposed to use CCMP. CCMP, a two pass process, introduces considerable latency in multi-hop wireless networks, such as WMN.Increase in latency leads to a decrease in the quality of service for delay sensitive real-time multimedia applications.
This research exposes the vulnerability of CCMP against precomputation time memory trade-off (TMTO) attack and proposes a framework to strengthen the security of WLAN packets using Per-Packet security mechanism.Furthermore, a novel, robust and low latency framework for WMN is also proposed.The architecture of security framework involves introduction of piggyback challenge response protocol for providing data confidentiality and data integrity. Piggyback challenge response protocol offers fresh encryption key for every packet, per-packet authentication and use of secret nonceAuthentication of every packet offers prompt defense against unauthorized access.It is also demonstrated that the security framework is robust against a variety of security attacks.Encrypted and unique nonce provides unpredictability and freshness.Unpredictability prevents pre-computation attack and freshness ensures successful defense against replay attacks.Proposed framework is simulated and its performance is compared with IEEE 802.11i in terms of latency introduced by the security components.For single hop, latency due to the proposed protocol is less than half as compared to CCMP.The improvement in latency becomes more pronounced as the number of hops increase.This novel framework addresses the CCMP deficiencies of high latency and vulnerability against TMTO attack, without compromising any of the security measures implemented in the standard.

Download Full Thesis
617 KB
S. No. Chapter Title of the Chapters Page Size (KB)
1 0 CONTENTS

 

vii
103 KB
2

1

INTRODUCTION

1.1 Introduction
1.2 Area of Research
1.3 Research Milestones
1.4 Organization of Thesis

1
114 KB
3 2 VULNERABILITIES OF IEEE 802.11 WLAN

2.1 Introduction
2.2 Related Work
2.3 Vulnerabilities of IEEE 802.11 WLAN
2.4 Ccmp Security Mechanism

8
232 KB
4 3 PROPOSED VULNERABILITIES IN CCMP PROTOCOL OF IEEE 802.11 WLAN

3.1 Introduction
3.2 Reconstruction of Nonce
3.3 Reconstruction of Initial Counter
3.4 TMTO Pre-computation Attack
3.5 Conclusion

19
155 KB
5 4 PROPOSED SECURITY MECHANISM TO DEFEND TMTO ATTACK

4.1 Introduction
4.2 Proposed Per-Packet Authentication Mechanism
4.3 Per-Packet Authentication Mechanism without MIC
4.4 Robustness Against Attacks
4.5 Per-Packet Authentication Mechanism – Benefits
4.6 Conclusion

28
180 KB
6 5 PROPOSED SECURITY FRAMEWORK FOR WIRELESS MESH NETWORKS

5.1 Introduction
5.2 Background
5.3 Problem Formulation
5.4 Security Framework
5.5 Robustness against Attacks
5.6 Security Robustness Index
5.7 Simulation Results
5.8 Summary of Results – Proposed Security Framework
5.9 Conclusion

37
299 KB
7 6 CONCLUSION

6.1 Introduction
6.2 Thesis Overview
6.3 Achievements
6.4 Contributions
6.5 Suggestions for future work

68
112 KB
8

7

APPENDIX AND REFERENCES

 

74
289 KB