A Complex Attacks Recognition Method in Wireless Intrusion Detection System

During recent years, the challenge faced by wireless network security is getting severe with the rapid development of internet. However, due to the defects of wireless communication protocol and difference among wired networks, the existing intrusion prevention systems are seldom involved. This paper proposed a method of identifying complicated multistep attacks orienting to wireless intrusion detection system, which includes the submodules of alarm simplification, VTG generator, LAG generator, attack signature database, attack path resolver and complex attack evaluation. By means of introducing logic attack diagram and virtual topological graph, the attach path was excavated. The experimental result showed that this identification method is applicable to the real scene of wireless intrusion detection, which plays certain significance to predict attackers’ ultimate attack intention.

[1]  Helena Rifà-Pous,et al.  A Comparative Study of Anomaly Detection Techniques for Smart City Wireless Sensor Networks , 2016, Sensors.

[2]  Hu Lian A Multi-Stage Attack Scenario Recognition Algorithm Based on Intelligent Planning , 2013 .

[3]  Xiang-Yang Li,et al.  Rejecting the attack: Source authentication for Wi-Fi management frames using CSI Information , 2012, 2013 Proceedings IEEE INFOCOM.

[4]  M. Thangavel,et al.  Efficient Hybrid Network (Wired and Wireless) Intrusion Detection using Statistical Data Streams and Detection of Clustered Alerts , 2011 .

[5]  Thomas H. Morris,et al.  Developing a Hybrid Intrusion Detection System Using Data Mining for Power Systems , 2015, IEEE Transactions on Smart Grid.

[6]  Jun Wang,et al.  K maximum probability attack paths dynamic generation algorithm , 2016, Comput. Sci. Inf. Syst..

[7]  Mohamed Cheriet,et al.  A Defense-Centric Model for Multi-step Attack Damage Cost Evaluation , 2015, 2015 3rd International Conference on Future Internet of Things and Cloud.

[8]  Judith Rossebo,et al.  A Wireless Intrusion Detection System for 802.11 networks , 2016, 2016 International Conference on Wireless Communications, Signal Processing and Networking (WiSPNET).

[9]  Klaus Julisch,et al.  Mining alarm clusters to improve alarm handling efficiency , 2001, Seventeenth Annual Computer Security Applications Conference.

[10]  Konstantinos G. Kyriakopoulos,et al.  An automatic and self-adaptive multi-layer data fusion system for WiFi attack detection , 2013 .