Advanced stealth man-in-the-middle attack in wpa2 encrypted wi-fi networks

Mayank Agarwal; Santosh Biswas; Sukumar Nandi

doi:10.1109/LCOMM.2015.2400443

Advanced stealth man-in-the-middle attack in wpa2 encrypted wi-fi networks

Mayank Agarwal, Santosh Biswas, Sukumar Nandi

Research output: Contribution to journal › Article › peer-review

32 Scopus citations

Abstract

The Hole 196 vulnerability allows malicious insiders to inject spoofed broadcast/multicast frames encrypted with group transient key in the Wi-Fi Protected Access II (WPA2) enabled Wi-Fi networks. In this letter, we propose a novel insider attack-Advanced Stealth Man-in-The-Middle (ASMiTM) that combines Stealth Man-in-The-Middle (SMiTM) and Wireless Denial of Service (WDoS) attacks, both of which occur due to the Hole 196 vulnerability. ASMiTM attack results in an increased duration of attack life, tougher detection, and improved stealthiness as compared to individual SMiTM and WDoS attacks.

Original language	English
Article number	7031876
Pages (from-to)	581-584
Number of pages	4
Journal	IEEE Communications Letters
Volume	19
Issue number	4
DOIs	https://doi.org/10.1109/LCOMM.2015.2400443
State	Published - 1 Apr 2015
Externally published	Yes

Keywords

802.11 Wi-Fi Network
Group Transient Key
Hole 196
Stealth MiTM

ASJC Scopus subject areas

Modeling and Simulation
Computer Science Applications
Electrical and Electronic Engineering

Access to Document

10.1109/LCOMM.2015.2400443

Cite this

@article{34f5efb71f164607bf8381244a203103,

title = "Advanced stealth man-in-the-middle attack in wpa2 encrypted wi-fi networks",

abstract = "The Hole 196 vulnerability allows malicious insiders to inject spoofed broadcast/multicast frames encrypted with group transient key in the Wi-Fi Protected Access II (WPA2) enabled Wi-Fi networks. In this letter, we propose a novel insider attack-Advanced Stealth Man-in-The-Middle (ASMiTM) that combines Stealth Man-in-The-Middle (SMiTM) and Wireless Denial of Service (WDoS) attacks, both of which occur due to the Hole 196 vulnerability. ASMiTM attack results in an increased duration of attack life, tougher detection, and improved stealthiness as compared to individual SMiTM and WDoS attacks.",

keywords = "802.11 Wi-Fi Network, Group Transient Key, Hole 196, Stealth MiTM",

author = "Mayank Agarwal and Santosh Biswas and Sukumar Nandi",

note = "Publisher Copyright: {\textcopyright} 2015 IEEE.",

year = "2015",

month = apr,

day = "1",

doi = "10.1109/LCOMM.2015.2400443",

language = "English",

volume = "19",

pages = "581--584",

journal = "IEEE Communications Letters",

issn = "1089-7798",

publisher = "Institute of Electrical and Electronics Engineers",

number = "4",

}

TY - JOUR

T1 - Advanced stealth man-in-the-middle attack in wpa2 encrypted wi-fi networks

AU - Agarwal, Mayank

AU - Biswas, Santosh

AU - Nandi, Sukumar

PY - 2015/4/1

Y1 - 2015/4/1

N2 - The Hole 196 vulnerability allows malicious insiders to inject spoofed broadcast/multicast frames encrypted with group transient key in the Wi-Fi Protected Access II (WPA2) enabled Wi-Fi networks. In this letter, we propose a novel insider attack-Advanced Stealth Man-in-The-Middle (ASMiTM) that combines Stealth Man-in-The-Middle (SMiTM) and Wireless Denial of Service (WDoS) attacks, both of which occur due to the Hole 196 vulnerability. ASMiTM attack results in an increased duration of attack life, tougher detection, and improved stealthiness as compared to individual SMiTM and WDoS attacks.

AB - The Hole 196 vulnerability allows malicious insiders to inject spoofed broadcast/multicast frames encrypted with group transient key in the Wi-Fi Protected Access II (WPA2) enabled Wi-Fi networks. In this letter, we propose a novel insider attack-Advanced Stealth Man-in-The-Middle (ASMiTM) that combines Stealth Man-in-The-Middle (SMiTM) and Wireless Denial of Service (WDoS) attacks, both of which occur due to the Hole 196 vulnerability. ASMiTM attack results in an increased duration of attack life, tougher detection, and improved stealthiness as compared to individual SMiTM and WDoS attacks.

KW - 802.11 Wi-Fi Network

KW - Group Transient Key

KW - Hole 196

KW - Stealth MiTM

UR - http://www.scopus.com/inward/record.url?scp=84927704185&partnerID=8YFLogxK

U2 - 10.1109/LCOMM.2015.2400443

DO - 10.1109/LCOMM.2015.2400443

M3 - Article

AN - SCOPUS:84927704185

SN - 1089-7798

VL - 19

SP - 581

EP - 584

JO - IEEE Communications Letters

JF - IEEE Communications Letters

IS - 4

M1 - 7031876

ER -

Advanced stealth man-in-the-middle attack in wpa2 encrypted wi-fi networks

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this