Preventing wireless deauthentication attacks over 802.11 Networks
This addresses a security vulnerability in wireless networks, but the solution appears incremental as it builds on existing session management concepts.
The paper tackles the problem of deauthentication/disassociation DoS attacks in 802.11 wireless networks, where attackers can forge frames to disconnect clients, and proposes an efficient solution using a session management system to verify these frames.
The objective of this paper is to investigate a special Denial of Service (DoS) attack against 802.11 wireless networks. This attack is known as the Deauthentication / Disassociation attack which is launched against 802.11-based wireless networks. When a client needs to disconnect from the wireless access point, it sends special frames known as deauthentication or disassociation frames. Due to being encrypted, these frames do not require an authenticated user. Hence, an attacker can craft these frames and send them to the access point in such a way that the access point assumes the frames to be coming from the client and not the attacker. In this paper, an efficient solution is proposed to prevent deauthentication attack by using a session management system used to then verify deauthentication frames.