Download paper

The Security Issues In Wireless Networking Computer Science Essay

In the clip span of merely a few old ages, radio networking has emerged from a singularity to revolution. The velocity with which radio networking has caught on is non surprising owing to big bandwidth and scope of several hundred pess. Furthermore multiple radio entree points can be easy installed on same web to cover more countries. Our chief challenge in design of these webs is their exposure to security onslaughts. The radio web is a web which connects without any overseas telegrams or wires ; it is based on radio signal frequence to pass on among computing machines and other web devices.

With the quickly turning universe, mundane some innovations can alter the manner of human life manner. The modern engineering of radio has overcome the traditional method that is by utilizing overseas telegram wires. Because of radio networking legion advantages, it is going more and more popular these yearss. These advantages include mobility ( which leads to clip salvaging – users are non required to travel to a specific topographic point to utilize the service ) and room salvaging since they do non necessitate overseas telegrams.

Wireless engineering used in many Fieldss like public, private and corporate topographic points. Wireless networking makes the life easier as comparison to wired web. Now a twenty-four hours ‘s people can be in touch with their household and friends while they are off from the place and offices. This new tendency is known as hot spots. These are available at most of the public topographic points like java store, hotels, and airdromes and so on.

Top Experts
Professor P
Verified expert
4.9 (345)
Prof. Clara
Verified expert
5 (345)
Dr. Karlyna PhD
Verified expert
4.7 (235)
hire verified expert

Motivation: –

As, every engineering have some negative facets, radio engineering has besides some cringle holes which we can non avoid while sing the importance of radio engineering. If the hacker come to cognize about these failing user has to confront unsafe effects. If a user logs on to the unbarred web, anyone can see their personal designation information which leads to the loss of privateness and security in the radio web. Therefore, security plays an of import function in wireless web.

Requirements: –

Use of encoding in every measure, from the beginning of the login procedure to the service in radio hot spot, as this encoding helps avoid the Evil Twin onslaught.

Encoding can besides be avoided if the user is to utilize an individuality hallmark system that requires common individuality hallmark.

Deploy an intelligent, software-based client on all laptops that has the ability to formalize the genuineness of a public Wi-Fi hot spot web.

New policies are necessitating an end-user to come in Wi-Fi hallmark certificates into an intelligent software-based client that encrypts both the user name and watchword, versus leting the user to come in their certificates into whatever HTML page happens to be presented to them when they connect.

Service suppliers are motivated to concentrate on the security of their users ‘ systems. The first and first concern for suppliers is to protect their ain substructure and systems. They guarantee these systems are useable to their clients by using firewalls, rate-limiting devices, and some monitoring. They may barricade incoming connexions from the Internet to wireless clients in an attempt to maintain worms and malware from impacting their clients. While this keeps malicious histrions from assailing users ‘ machines, it besides helps continue the webs of the service suppliers by minimising the sum of traffic they deal with and the potency for malicious activity.

SSL certification: – The echt webs ever use the secure socket bed ( SSL ) to code the sensitive information. we can verify these SSL certifications from the padlock icon on the cyberspace browser to conform the user is connected to the authorized web

Administration should besides keep the entree control list by giving the authorization to the user whether he can entree the peculiar protocols or non. This entree control list contains the TCP, UDP, HTTP and FTP.


Security Issues: –

Security is an of import issue for wireless webs, particularly for the security sensitive applications like if the user is making on-line dealing in the unsecure radio web. Wireless web chiefly consist of four basic constituents that is, [ 32 ]

The transmittal of informations utilizing wireless frequences

Access point that provides connexion to the web

Client devices ( laptops and PDA ‘s etc ) .


Figure 9: – Components of Wireless

Security Menaces: –

Despite the productiveness, convenience and cost advantage that radio offers, the wireless moving ridges used in wireless webs create a hazard where the web can be hacked. So following are the chief menaces in wireless webs as: – [ 41 ]

Denial of Service: –

In this onslaught, the aggressor floods the web with either valid or invalid messages impacting the handiness of the web resources. Due to the nature of the wireless transmittal, the radio LAN is really vulnerable against denial of service onslaughts.

Eavesdropping: –

This involves attack against the confidentiality of the information that is being transmitted across the web. By their nature, radio LANs deliberately radiates web traffic into infinite. This makes it impossible to command who can have the signals in any radio LAN installing. In the radio web, eavesdropping by the 3rd parties is the most important menace because the aggressor can stop the transmittal over the air from a distance, off from the premiss of the company.

Man-In-Middle: –

A man-in-the-middle onslaught is a type of onslaught where the user gets between the transmitter and receiving system of information and whiff any information being sent. In some instances users may be directing unencrypted informations which means the man-in-the-middle can easy obtain any unencrypted information. In other instances, the onslaught could be used to interrupt the encoding key.

Evil -twin: –

Evil Twin onslaught is a common manner of assailing WLANs. The aggressor here replicates another WLAN ‘s SSID. For the user, they would non detect that there is a alteration, or that they are connected to a knave AP they search for a specific SSID, and they find it. Another factor is that most of the radio networking cards gets connected to the web with stronger signal. The aggressor, on the manus, can capture all their traffic picking these packages incorporating sensitive informations such as watchwords, confidential paperss, recognition card information, etc.

Wi-Phishing: –

The Evil Twin onslaught is broader in definition and refers to the caricature of a sure web to set up a wireless connexion. Once the radio connexion has been established the Evil Twin can be used for Wi-Phishing. Wi-Phishing is the act of covertly puting up a wireless-enabled laptop or AP ( such as an Evil Twin ) but for the exclusive intent of acquiring wireless laptops to tie in and track key strokes, leting the hacker to capture watchwords and recognition card information.

Security hazard of public WiFi: –

There are a few obvious security hazards for the Wi-Fi public hot spot user:

Open Area: – Hot spot are found easy in every public topographic points, where everyone can entree with some regulations and ordinance, while utilizing the hot spot in public topographic points user should be cognizant it is unfastened country where anyone can be sniff the of import information like watchword and bank item either by physical eavesdropping ( ex. Packet sniffer ) , or digital eavesdropping ( ex. Packet sniffer ) .

Unfamiliar Environment: – As hot spot are situated in all the public topographic points where user can entree easy, but in public topographic points are largely unfamiliar environment for some people for are utilizing the hot spot is whether they are good cats or non like hackers.

Fully Automatic: – Largely the free hot spot are to the full automatic, and if the user is utilizing the Wi-Fi enable devices that will automatic connect with that free hot spot. So this type of services does non necessitate any user intercession ( ex. Just exchanging ON at a hot spot will automatically acquire user is connected )

Not even Basic Security- Usually the free hot spot do non supply any type of security that leads to really high hazard because the user are incognizant about the hazard associated with the unsecure connexion. So the some of the hot spots does non incorporate the basic security like WEP ( ex. WEP disabled for Zero-Configuration )

Different Risk Level – While utilizing a hot spot in public topographic points have to different type of hazard with different strength degrees, because if user trade with e-commerce sites in public topographic points so it might hold hazard that the hacker can steal all the bank information like Short Term ( ex. Prepaid Card ) or Long Term ex. Credit Card.


In the old chapter we have learned about how wireless engineering developed from the little radius and today it cover the whole metropolis and continent utilizing the Wi-Fi. The growing of incredible engineering leads to supply free services in public topographic points. Wireless hot spots are going popular in public avenues like airdromes, shopping promenade, hotel and a java store places etc. Hotpots provide high-performance radio Internet entree connexions in public topographic points.

Evil twin onslaught: –

One of the most popular menace to Wi-Fi users is the Evil Twin It ‘s a rogue entree point that replicates another web name, such as that of a hot-spot or a secure web. “ The Evil Twin waits for a user to erroneously subscribe into the incorrect entree point and captures the user ‘s web informations or attacks the computing machine, ” [ 34 ]

In a hot spot user connects to the Evil Twin wireless Access Point ( AP ) , believing it to be a legitimate commercial hot spot.

Figure 16: – Wireless Evil Twin onslaught mechanism

Beginning: Wireless protection for the nomadic endeavor, White Paper, by AirDefense

Main Issues: –

In this crowded environment, it can be tough to distinguish between friend and enemy, even the dividing line is non that simple. The chief issues for the happening of Evil-Twin onslaught are as follows: –

Access points: Access points can be insecure, due to the improper constellations and design defects. Access points are more insecure if they pre-configured with a default watchword, they broadcast Service Set Identifier ( SSID ) and frequently require no encoding or hallmark. If deployed with default scenes, they become the loop hole for the hackers to utilize to entree the radio web.

SSID ( SERVICE SET IDENTIFIER ) : SSID it works like a shared watchword between base station and clients. This allows merely those clients to pass on with base station which are configured with the same SSID as that of base station. Most APs broadcast their SSID as portion of the beacon frames to denote their presence The SSID is used to stipulate the name of a web section related to a set of wireless entree points. [ 52 ] The SSID is used as a simple hallmark item for a wireless entree point. However the SSID has limited value as a security step. Largely in public radio web, the administration broadcast their SSID and their names which resemble to their administration sphere name which normally confuse the user about the sham and the authorised web.

Tools used in Evil twin: –

Internets tumbler can utilize for gaining control the informations packages to happen out the SSID and so aggressor can utilize the valid SSID over the false AP to flim-flam the clients to link to it. Efficaciously SSID does non protect Wireless LAN against the onslaughts ; it is simply a mechanism to forestall rolling wireless devices in the country to acquire onto the web [ 52 ] .

Kismet identifies webs by passively roll uping packages and observing criterion named webs, observing ( and given clip, decloaking ) hidden webs, and deducing the presence of nonbeaconing webs via informations traffic [ 51 ] .

In public radio webs, the users merely see the web name ( SSID ) that the public web broadcasts, which means that users should guarantee that the web is what it claims to be ; i.e. , that it is a echt web.

Approachs to work out Evil Twin:

To work out Evil Twin onslaught there are many ways among which the followers are the best ways to work out:

MAC reference filtering: –

To forestall from the evil-twin onslaught we can utilize the entree points that support the characteristic of MAC reference filtrating that allows the users to hive away the names of entree point in the signifier: { AccessPointName, MACAddr } .In instance of window like, if the hacker uses a similar name, the operating system ( OS ) will cognize it ‘s a different entree point because their MAC references do non fit. This will assist the user to avoid acquiring connected to the bogus entree point [ 40 ] .

Using Light Sensor Access Points: –

The other interesting manner for users to authenticate an entree point by following some signifier of short threading confirmation that is required to be implemented in both the user terminus and the entree point [ 43 ] . When the user terminus efforts to partner off up with an entree point, an hallmark channel is established that allows the user to command the sequence of light coloring materials fluctuations on the entree point device.

Using SSL certifications: –

Another effectual attack for forestalling the user from evil twin onslaught is by utilizing the SSL certifications. If a user downloads the transcript of original SSL certifications from waiter when he uses the cyberspace in public hot spot, this will get the better of the evil twin onslaught. By utilizing the alone features of SSL certifications, evil twin onslaught can be avoided really expeditiously. If a user uses a SSL enabled website, he can be in more secure web as the evil twin aggressor can non supply the false digital certification information.

Design of Proposed Solution:

Our end is to supply an easy mechanism to set up an entree point individuality that is convenient for both the clients and entree points. User can entree the cyberspace in every public topographic points, but to link the authenticate web is more than of import to utilizing a free web, which can hold serious effect subsequently to leak privateness and of import information like if hacker can cognize your bank inside informations.

My solution is based implanted on the downloading of SSL certification, I am utilizing the SSL certification it is authorized it is authorized by the sure 3rd party and it creates a set of keys which is used for unafraid communicating between the waiter and web browser. Here I am utilizing a Network IP scanner which scans the IP reference which is being used by the administration. As every entree point is allocated up to 256 IP references, so the web IP scanner checks the IP references of the users to conform whether they are connected to the authorized or non.

For illustration: If a individual is traveling to bank for some work, but he bury the some paperss in place, at the same clip, he saw the free Wi-Fi Zone for accessing the cyberspace and he has a softcopy in his mail, so he thought traveling back to place is time-consuming procedure and he can take the paperss from his electronic mail utilizing the free entree of cyberspace. He went to a store and utilize ain laptop to take the print of paperss. He connected to a web and give print bid for publishing the paperss. But he surprised to see that there is no papers for the pressman machine and he got the message, printing is completed. He shocked and discusses this affair with administration member. After that he noticed, he was connected to a sham web which was organised by some aggressor, and the papers which is really confidential contains the bank item information. So, by seeing this type of effect this solution prevents and alarm the user to look into the web before utilizing.

Check IP Address

Figure 18: – Architecture of the proposed solution

The solution consists of two cheque phases for acquiring authenticated to the authorized web. First, when the user enters the hot spot, the tradesman will supply him the watchword and the name of the entree point, so that the user can take organizer ‘s web from the list, after linking to the web, when the user tries to open a web page by utilizing a browser, so the browser will motivate a message for downloading the certifications. If the user gets this prompt so this proves that he is been connected to the authorised web and if the web page opens straight without the prompt, so this implies that he is connected to the sham web. That web might be organise by some hacker or 3rd individual to derive entree of the user information which conatin any senstive information like watchword, Bank item inforamation etc. which will be to a great extent hazard for the user if an unkown individual knows these private and confidential information.

Second, the user can utilize the web IP scanner provided by the java store, where the organizer provides the scope of authorised IP references which is being allocated to the java store. By utilizing this scanner, the user can re-confirm that he is connected to the authorized web. If the user finds IP reference out of that scope, so he can instantly unplug from the current web and can describe to that administration.

So, when the user gets the petition to download the certifications, so this is proved that the user is connected to the legitimate web. This SSL besides contains the information about the sure 3rd party. The administration should besides utilize WPA encoding which helps the users to code all his informations and maintain security.

Execution: –

In the last subdivision we proposed a design to forestall Evil- duplicate onslaught from the hacker that is by downloading the SSL certifications from the waiter every clip the user uses the public hot spot to protect them from linking to the bogus webs. An evil twin onslaught is a possible security menace for the Wi-Fi users particularly in the public hot spot. In this onslaught, a hackers sets a rogue entree point which mimics the features of the authorized web. Users unwittingly connect to the knave entree point alternatively of the authorized web. The evil twin onslaught hijacks the sensitive information of the user like watchwords, history information, recognition card inside informations and etc. SSL certifications are used to observe the Evil-twin onslaught because SSL certifications allows user to grounds that he is connected to the right web, because the SSL certifications protects the information between browser and the waiters by utilizing 128-bit encoding. This 128 spot is the length of the session key generated by encrypted passage so as the key is longer it will be more hard to interrupt this encoding codification. A hacker can non chop or do a extra transcript of the SSL certifications as the hacker can non interrupt the strong encoding codification offered by the SSL certifications. It is ever preferred that the organizer should supply the SSL certifications to supply privateness and security to the users in the populace radio web.

The proposed solution is implanted by downloading certifications by which a user can distinguish between a sham and a legitimate web. In this chapter, I am traveling to show the solution methodically and described the user additions the consciousness about the knave entree point and the authorized entree point. Different motivation of evil-twin onslaughts on the java store can take to following job for end-user like

Attacker can listen or track the information of informations packages without the user let it cognize. This might go on when aggressor merely needs some information for his cruel purpose, or

Attacker can whiff the information and attempt to alter it like user ‘s personal history watchword. If aggressor has successfully changed the user ‘s watchword than aggressor can anytime login to his history and can entree any inside informations with several to user ‘s mail.

Attacker can direct TCP SYN flood onslaught on user ‘s machine or java store ‘s web. This can take to congestion is web which can damage the web.

When the user connects to the peculiar web, he may be confused by seeing the assorted similar looking entree point names. So, to avoid this confusion, I have created a new method in which user have to manually type the name of the entree point which he want to link and can reconfirm the authorized entree point. Harmonizing to the proposed solution, the browser will motivate the user to download the SSL certifications from the waiter. This SSL certifications contain the IP reference of the user which is assigned by the waiter. The user can look into this assigned IP reference from the tally bid in his computing machine and type IPCONFIG to corroborate that the IP reference is the echt 1. The user can besides verify the SSL certifications while shoping the cyberspace with the aid of the padlock icon on the browser, which shows the mandate and cogency of the SSL certifications. The administration besides uses the expressed deny regulation which can barricade anything which is non permitted by a regulation. In this instance, the java store Organstion has besides created a entree list, in which the user to entree merely HTTP protocol to the entree the cyberspace. The user can non utilize the FTP, UDP and TCP under this java store web. so that, the user can avoid the menaces like eavesdropping and adult male in in-between onslaught. So by utilizing these four phases user can cut down or observe the evil twin onslaught.

In the following subdivision, stairss of our proposed solution are being discussed in inside informations. These stairss will travel in deep and explicate the working of our proposed protocol

Step 1 ) Suppose, Martin, a individual, came in to the Rich java store and wants to entree the cyberspace. Martin merely opens his laptop ( radio enabled ) and allow the laptop to lade all the files. Then, Martin wants to entree the cyberspace, When he snap on his wirelsss web connexion, he might see a list of radio available including the Rich Coffee ‘s radio. He tries to entree but asked for the watchword while accessing.

Figure 19: – Choose a radio web

Step 2 ) Martin wants to link his laptop to the Coffee Shop radio web. He will take the watchword from the member of java store. This watchword will link Martin to the Rich Coffee Shop Wireless Network and besides the aid to re-authenticate the user to type that web name which he was connected, because hacker ‘s radio web name will be somewhat different from the echt web. Hacker will seek his degree best to gull the user, so that user can link to his web, non with the echt web.

Figure 20: -Enter watchword to link to the web

When user enters the watchword of the web which can be broadcasted by hacker besides, he will acquire a prompt to come in the name of the affiliated web i.e. Rich WiFi. If the user is connected to genuine radio web than after come ining the radio web name, he is allowed to continue to the following measure.

Suppose, user, by error connected to a sham radio web which is broadcasted by hacker i.e. Rich Wi-Fi and when prompted to come in watchword, he enters it successfully. Then, the 2nd measure takes topographic point where he is prompted to come in the name of the affiliated web. When user enters the name of the affiliated web, the petition will be sent to the waiter. Server will look into and verify it, and in instance where stored radio name and received name are different, server will respond instantly and direct an entree denied message to user. Along with that message user will acquire a prompt that “ the entered web name is non belong to Rich Coffee Shop web. Please look into with any member of Coffee Shop because you might be the victim of Evil Twin Attack ” .

This could assist to halt Evil Twin onslaught with the co-operation of user with the store.

The entree point contains the security for the users, and the organizer uses the WAP encoding in entree point, which encrypt the information packages and non allows any hacker or aggressor to see really what it contains. This is really of import as user might hold confidential information which can take to any harm.

Step 3 ) when Martin ‘s connected to the java store web so the cyberspace adventurer will motivate a message to download certifications. This certification helps the java store and the terminal user to authenticate the individual. These are SSL certifications which we have already discussed in the old chapter. These certifications should be encrypted so that no 1 can see what this information package contains. We will utilize WPA, as discussed, to guarantee that each and every package is good encrypted and achieve genuineness and security.

Figure 21: – The Warning Message from the Internet Explorer.

The above given page that shows the user that he is non still connected to the cyberspace and to entree the web user have to download certifications.

If the user do non acquire this window, and straight open the web page so this implies that user has enter in to the incorrect web. That web might be organised by some hacker or 3rd individual to derive entree of the user information which conatin any senstive information like watchword, Bank item etc. which will be to a great extent hazard for the user if an unkown individual knows these private and confidential information.

Step 4 ) This is a really important measure, because the SSL certifications are created by a sure 3rd party and a hacker can non double the SSL certifications. The SSL certifications are present in every authorized waiter. So, when the user gets the petition to download the certifications, so this is proved that the user is connected to the legitimate web. This SSL besides contains the information about the sure 3rd party.

Below figure can exemplify the illustration of how the SSL certifications can be downloaded. On the right manus side of “ Rich-coffee ” we can see it is demoing that between the user ( Martin ) and server at that place one Encryption waiter which encrypts the informations and procure it from foreigner.

It besides shows the other inside informations like position of the user whether he is active right now or inactive. If inactive, than, users Martin will be logout automatically after some period of clip. It besides displays the IP reference which is assigned to the laptop from the DHCP waiter. From options, we can besides choose the advancement saloon which shows the downloading position of SSL certifications. There are many other options saved in scenes tool saloon. They can modify and alter harmonizing to the user ‘s demands.

Figure 22: -Downloading the transcript of certification.

In Short, The downloading figure shows that the waiter name is Rich-coffee and it is directing the SSL certification to the RICH COFFEE GUARDIAN. It besides gives the IP reference of the waiter and the name of the user. The IP reference is assigned to the user ‘s laptop via DHCP server merely than when its individuality has been approved by waiter. This adds the security prove of the SSL certification and waiter. This shows that the waiter is the authorized 1 and has the valid SSL certifications.

Step 5 ) After downloading the SSL certification user can cognize the IP reference and he can look into by utilizing Run bid and Type the IPCONFIG which shows the assigned IP reference of the user, and user can besides look into the IP reference by utilizing the IP scanner tool provided by the administration. This besides shows that the user is connected to the echt web.

Step 6 ) After Downloading the SSL certification, the secure web page will automatically acquire unfastened user can now entree the cyberspace and can bask the services of the cyberspace, even in the populace radio web. So as the administration Access list policy user can merely entree the Http sites on this hot spot this reduces the occurrence of Eavesdropping or other while reassigning subdivisions. Figure 23: – Access the Internet

Step 8 ) Hence, the user can besides utilize an addtional security cheque for the SSL certifacte for farther verification like he can open a web browser like Google chrome and chink on the right manus site lock, and open the security information and so see the security and SSL cretifcate.For illustration mandate and proof of Certifactes.By this cheque, user can be more assured about the authorized web.

Figure 24: – look into the SSL certification.



Recently, radio networking has become more popular, and it is turning in every sector of the universe. It is going really easy to entree cyberspace from anyplace because of the growing of public radio web like Wi-Fi hot spots. The increasing popularity of public radio web makes it unfastened for security and privateness challenges. To accomplish a security, one has to see genuineness, unity and confidentiality as the cardinal factors. If any system lacks in these three factors, it implies that the system lacks security. The job of Evil-Twin is being concentrated in this paper. In Evil-Twin onslaught, the aggressor creates the bogus entree point and fools the user to link to him and pull out all the confidential information about the user. As hacker ‘s signal may be stronger than the original entree point, the user gets connected to the hacker ‘s entree point. Evil-twin is the most serious onslaught in the populace radio web, since the user is incognizant about the onslaught in his whole session on cyberspace. I have provided a set of indispensable demands in the chapter 2 which can be used to cut down the hazard of the evil-twin onslaught.

The proposed solution is based on the downloading of SSL certifications which shows the assigned IP reference of the user. A user can utilize the IP scanner provided by the administration to look into whether his IP reference falls in the scope of authorise IP addresses or non. If the IP references do non fall in that scope, the user can instantly unplug from that web and can describe to the administration. Here, we are taking the SSL certifications, as it is the hallmark for security in the universe of cyberspace. It is been issued by the sure 3rd party. It encrypts the communicating channel between the client and waiter with strong encoding key, which is about 128 bytes. Because of this ground, hackers can non do a extra SSL certifications nor even can interrupt the encoding. The user can besides look into the SSL certifications from the browser ‘s padlock symbol to reconfirm that they are in secure web.

In undertaking besides contains the execution and the presentation of the proposed solution. I have used the IP scanner tool which scans the IP reference and shows the authorized scope of the IP addresses. I have chosen the entree control list by which an administration can barricade the TCP, UDP and FTP. It merely allows the entree to the HTTP, through which we can understate the hazards associated with the populace radio web.

Future work

The universe is turning with good and bad things. Similarly, new engineerings besides give birth to the assorted menaces for the people. I have few thoughts in my head which can be used in the hereafter to cut down the evil-twin onslaught. The administration should supply more security to entree point such as it should straight link the user ‘s device to the organizational web ‘s entree point and for authenticating to it, the user merely requires the watchword. This technique can avoid the Evil-twin more expeditiously. For procuring the users from the menaces of public radio web, the back terminal should be more secure. The companies should besides supply some substructure in Wi-Fi devices to better them and eliminates the hazards of assorted menaces in Wi-Fi communications.

Finally, the users and the service suppliers should keep the security degrees on their parts to get a unafraid public radio web. One construct remains, perfect security does non be. Attackers will ever seek to detect exposures and work them. Network operators should be cognizant of the existing menaces in order to be able to extenuate the hazards caused by these menaces.

Cite this page

The Security Issues In Wireless Networking Computer Science Essay. (2020, Jun 02). Retrieved from

Are You on a Short Deadline? Let a Professional Expert Help You
Let’s chat?  We're online 24/7