Friday | 10 July, 2009
CSO
Technology identifies invisible intruders on wireless LANs
System is a window into an invisible world
Sandra Rossi (Computerworld) 30/11/2007 06:15:57

Groundbreaking research undertaken by the Queensland University of Technology has led to the creation of systems that can detect invisible intruders on wireless local area networks.

QUT Information Security Institute co-researcher Dr Jason Smith said he and a colleague had invented an effective system to detect unwanted presence on wireless networks.

"Unlike a building, there are no clearly defined boundaries to wireless networks. The perimeter of a network is defined by the quality of the receiving antenna," Dr Smith said.

"Intruders can easily gain access to wireless networks by either eavesdropping on unencrypted networks or actively hijacking computer sessions when a legitimate user logged onto the network leaves the connection."

Dr Smith said the system was a window into an invisible world that let network administrators see whether unexpected or undesirable things had occurred on their networks.

"We've created a series of monitoring techniques that when used together can effectively watch for both attackers and configuration mistakes in devices on the network," he said.

"The monitor is independent of the network, yet uses information accumulated by the network. This makes the system cheap and easy for businesses to incorporate.

"The strength of the signal travelling in a wireless network and the round trip time of the signal are both monitored because they will change if an intruder enters the network.

"Separately monitoring the signal and round trip time is unreliable, but correlating them against each other makes the system accurate."

Dr Smith said when an intruder was detected a number of steps could then be taken.

"Depending on how sensitive the network is, armed security guards could be deployed, or the wireless network may be turned off. The security protection might alter to avert the intrusion or the intruder may simply be monitored to see what they get up to," he said.

"Another application is to use the monitoring to search for security vulnerabilities in devices legitimately connected to the network. When a compromising security configuration is detected, the mistake could be corrected."

Dr Smith said he created the system with PhD researcher Rupinder Gill, who was now employed by a wireless network vendor in the US to create security products.

He said the valuable commodity at greatest risk on local area networks was information.

More about Queensland University of Technology, Queensland University of Technology, Avert

Comments

Post new comment

Login or register to link comments to your user profile, or you may also post a comment without being logged in.
The content of this field is kept private and will not be shown publicly.
Enter the fully qualified URL, eg. http://www.example.com/
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

More information about formatting options

Add to Google
Additional Resources
Newsletter Subscription
Sign up for our CSO Online newsletters!
RSS Feeds
Syndicate content Syndicate content
 
Get a job Careerone
Whitepaper


Read Whitepaper

LANPlanner | Ensuring High Performance WLAN Networks

Learn how the Motorola LANPlanner facilitates prompt and precise planning and the design and measurement of robust 802.11a/b/g/n networks. Download this paper now to discover how to take wireless network performance to the next level.

Sponsored Links