Wireless LAN (WLAN) Spoofing Attack- A Proposed Detection Method in Victim Silent Case

Abstract: Spoofing makes the task of identification and tracking back of the perpetrator / initiator in Cyber Crimes very difficult, e.g. those relating to denial of service, session hijacking, and address masquerading attacks by changing its network identifiers in WLANs. In such a scenario, spoof detection methods have gain wide attention. One way to prevent from spoofing is to authenticate the frames. However, in 802.11 WLANs, authentication and encryption for management and control frames is not provided. Further, present MAC spoofing detection techniques bring out large number of false positives. This paper presents the proposed method of WLAN MAC spoofing attack in Victim Silent Case. One way hash function method is used along with an extra field named claimed identity field. The proposed method can detect the MAC spoofed packet having arrival time close to genuine packet. The method is analysed in false positive and false negative situation. By way of analysis of results, an outline of future work is also suggested in the concluding remarks.

Keywords: 802.11 Wireless LAN, SNRA, Sequence number, MAC address, spoofing, false positives / negatives, transmission rate analysis, FRR, forge resistance relationship (FRR-RA) rate analysis.