Detecting rogue access points using client-side bottleneck bandwidth analysis |
| |
Authors: | Kuo-Fong Kao I-En Liao Yueh-Chia Li |
| |
Affiliation: | 1. Department of Information Networking Technology, Hsiuping Institute of Technology, No.11, Gongye Rd., Dali City, Taichung County, Taiwan;2. Department of Computer Science and Engineering, National Chung Hsing University, 250, Kuo Kuang Road, Taichung, Taiwan |
| |
Abstract: | A rogue access point (AP) is an unauthorized AP plugged into a network. This poses a serious security threat. To detect an AP, a network manager traditionally takes the electric wave sensor across an entire protected place. This task is very labor-intensive and inefficient. This study presents a new AP detection method without extra hardware or hard work. This new method determines whether the network packets of an IP address are routed from APs, according to client-side bottleneck bandwidth. The network manager can perform his job from his office by monitoring the packets passing through the core switch. The accuracies remain above 99% when the parameter, sliding window size, of the proposed algorithm is larger than 20, according to experimental results. The proposed method effectively reduces the network manager's workload, and increases network security. |
| |
Keywords: | |
本文献已被 ScienceDirect 等数据库收录! |
|