|
|
|
|
Wireless Attacks
|
|
Hits: 48 |
|
Date added: 12/15/2006 |
|
As more and more home and business users adapt wireless technologies because of their ease of use and affordability, these devices are coming under attack by the malicious who are after your data and by the casual user looking for free bandwidth. In this paper, I will explain how wireless attacks are done on Wired Equivalency Privacy (WEP) networks, other common network attacks and then present several options to defend wireless networks. |
|
|
|
|
|
|
Wireless Network Security
|
|
Hits: 47 |
|
Date added: 04/22/2007 |
|
This volume is an authoritative, clearly-presented guide to key foundation topics and technology frameworks for designing and maintaining secure, reliable operations |
|
|
|
|
|
|
Detecting Wireless LAN MAC Address Spoofing
|
|
Hits: 47 |
|
Date added: 05/04/2007 |
|
An attacker wishing to disrupt a wireless network has a wide arsenal available to them. Many of
these tools rely on using a faked MAC address, masquerading as an authorized wireless access
point or as an authorized client. Using these tools, an attacker can launch denial of service
attacks, bypass access control mechanisms, or falsely advertise services to wireless clients.
This presents unique opportunities for attacks against wireless networks that are difficult to
detect, since the attacker can present himself as an authorized client by using an altered MAC
address. As nearly all wireless NICs permit changing their MAC address to an arbitrary value –
through vendor-supplied drivers, open-source drivers or various application programming
frameworks – it is trivial for an attacker to wreak havoc on a target wireless LAN.
This paper describes some of the techniques attackers utilize to disrupt wireless networks
through MAC address spoofing, demonstrated with captured traffic that was generated by the
AirJack, FakeAP and Wellenreiter tools. Through the analysis of these traces, the author
identifies techniques that can be employed to detect applications that are using spoofed MAC
addresses. With this information, wireless equipment manufacturers could implement anomalybased
intrusion detection systems capable of identifying MAC address spoofing to alert
administrators of attacks against their networks. |
|
|
|
|
|
|
Wireless Data Network Security for Hospitals
|
|
Hits: 40 |
|
Date added: 12/20/2006 |
|
In 1996, the Health Insurance Portability and Accountability Act (HIPAA) was enacted to protect health information by establishing transaction standards for the exchange of health information, security standards, and privacy standards for the use and disclosure of individually identifiable health information. Entities directly impacted by this act are health plans, health clearinghouses and healthcare providers (“TLC HIPAA Overview”, n.d.).
Although there are other rules incorporated in HIPAA, the Security Rule has the most direct impact on hospital technology systems including network infrastructure. This rule addresses security measures such as user authentication, access controls, audit trails, controls of external communication links and access, physical security, systems back up, and disaster recovery. With increasingly more information being stored and transmitted electronically, the Security Rule works to identify and regulate these activities (Gue, n.d.). |
|
|
|
