Beta 1

Title An Anomaly based Wireless Intrusion Detection System
Author Papini, Davide (Department of Informatics and Mathematical Modeling, Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark)
Supervisor Sharp, Robin (Embedded Systems Engineering, Department of Informatics and Mathematical Modeling, Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark)
Institution Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark
Thesis level Master's thesis
Year 2008
Abstract In the last decade we have witnessed the birth and the growth of a technology that has very much changed the way we work and live: the IEEE 802.11 also known as Wi-Fi. There are many features that made this technology very popular, some of them are: immediate and seamless connectivity without wires, faster network deployment, scalability easier than wired networks, dynamic environment. Unfortunately deployment and fast growth did not always match the need for security thus leaving many issues unsolved or not addressed. Although the IEEE 802.11 standard has been modified through the years and extended to include stronger cryptographic mechanisms and security policies, many threats are still there, some of them very severe. These threats are very difficult to mitigate since they are enabled by protocol basics which for the moment can not be changed due to legacy devices support. Moreover dealing with radio waves is not the same as dealing with wires. Radio waves spread out to uncontrolled areas and are difficult to contain thus environment control is not feasible. Hence the demand for a technology to monitor malicious activities and detect attacks arises. Intrusion Detection Systems for wireless networks have been researched from different perspectives some of them focus on network topology monitoring, others on different and independent layers traffic analysis others assuming knowledge of network infrastructure. The reader of this thesis is supposed to know about wireless networks, how they work and which are their basic mechanisms. Appendix C [page 81] provides some informations. The project focuses on Infrastructure networks because they are the most common however nothing precludes to use some of the described techniques with Ad-Hoc networks.
Series IMM-M.Sc.-2008-110
Original PDF ep08_110_net.pdf (1.50 MB)
Admin Creation date: 2008-11-05    Update date: 2009-10-01    Source: dtu    ID: 228353    Original MXD