PRAPD: A novel received signal strength–based approach for practical rogue access point detection

Rogue access point attack is one of the most important security threats for wireless local networks and has attracted great attention from both academia and industry. Utilizing received signal strength information is an effective solution to detect rogue access points. However, the received signal strength information is formed by multi-dimensional received signal strength vectors that are collected by multiple sniffers, and these received signal strength vectors are inevitably lacking in some dimensions due to the limited wireless transmission range and link instability. This will result in high false alarm rate for rogue access point detection. To solve this issue, we propose a received signal strength–based practical rogue access point detection approach, considering missing received signal strength values in received signal strength vectors collected in practical environment. First, we present a preprocessing scheme for received signal strength vectors, eliminating missing values by means of data filling, filtering, and averaging. Then, we perform clustering analysis on the received signal strength vectors, where we design a distance measurement method that dynamically uses partial components in received signal strength vectors to minimize the distance deviation due to missing values. Finally, we conduct the experiments to evaluate the performance of the practical rogue access point detection. The results demonstrate that the practical rogue access point detection can significantly reduce the false alarm rate while ensuring a high detection rate.

Download Full-text

Received-Signal-Strength-Based Approach for Detection and 2D Indoor Localization of Evil Twin Rogue Access Point in 802.11

International Journal of Safety and Security Engineering ◽

10.18280/ijsse.110102 ◽

2021 ◽

Vol 11 (1) ◽

pp. 13-20

Author(s):

Roman Y. Korolkov ◽

Serhii V. Kutsak

Keyword(s):

Indoor Localization ◽

Signal Strength ◽

Access Point ◽

Signal Propagation ◽

Received Signal Strength ◽

False Alarms ◽

Access Points ◽

Network Analyzers ◽

Indoor Conditions ◽

Rogue Access Point

The “Evil twin” rogue access point is one of the most serious security threats to wireless LANs. To solve this problem, a practical approach has been proposed for detecting rogue access points using the received signal strength indicator (RSSI). First, a distributed architecture is presented, which consists of three network analyzers. Then, a cluster analysis of the RSSI vectors is performed to determine the attack. The coordinates of the centroids of clusters obtained were converted into the distance by using an empirical model of signal propagation under indoor conditions. The obtained distances are used to determine the localization of a rogue access point (RAP) using the trilateration method. Finally, we are conducting experiments to evaluate the performance of practical RAP detection. The results show that the proposed approach to detecting rogue access points can significantly reduce the frequency of false alarms, while providing an average localization error of 1.5m, which is quite acceptable for RAP localization in real indoor conditions.

Download Full-text

2.4 GHz RF Received Signal Strength Based Node Separation in WSN Monitoring Infrastructure for Millet and Rice Vegetation

IEEE Sensors Journal ◽

10.1109/jsen.2021.3083552 ◽

2021 ◽

pp. 1-1

Author(s):

Pankaj Pal ◽

Rashmi Priya Sharma ◽

Sachin Tripathi ◽

Chiranjeev Kumar ◽

Dharavath Ramesh

Keyword(s):

Signal Strength ◽

Received Signal Strength ◽

Strength Based

Download Full-text

Determining the best location for indoor access point based on received signal strength

IOP Conference Series Materials Science and Engineering ◽

10.1088/1757-899x/1105/1/012028 ◽

2021 ◽

Vol 1105 (1) ◽

pp. 012028

Author(s):

Hassanein H Salman ◽

Mahmood F Mosleh ◽

Ammar Hussein Mutlag

Keyword(s):

Signal Strength ◽

Access Point ◽

Received Signal Strength

Download Full-text

A Generative Method for Indoor Localization Using Wi-Fi Fingerprinting

Sensors ◽

10.3390/s21072392 ◽

2021 ◽

Vol 21 (7) ◽

pp. 2392

Author(s):

Óscar Belmonte-Fernández ◽

Emilio Sansano-Sansano ◽

Antonio Caballer-Miedes ◽

Raúl Montoliu ◽

Rubén García-Vidal ◽

...

Keyword(s):

Markov Model ◽

Hidden Markov Model ◽

Indoor Localization ◽

Hidden Markov ◽

Signal Strength ◽

Access Point ◽

Received Signal Strength ◽

Machine Learning Algorithms ◽

Forward Algorithm ◽

Generative Method

Indoor localization is an enabling technology for pervasive and mobile computing applications. Although different technologies have been proposed for indoor localization, Wi-Fi fingerprinting is one of the most used techniques due to the pervasiveness of Wi-Fi technology. Most Wi-Fi fingerprinting localization methods presented in the literature are discriminative methods. We present a generative method for indoor localization based on Wi-Fi fingerprinting. The Received Signal Strength Indicator received from a Wireless Access Point is modeled by a hidden Markov model. Unlike other algorithms, the use of a hidden Markov model allows ours to take advantage of the temporal autocorrelation present in the Wi-Fi signal. The algorithm estimates the user’s location based on the hidden Markov model, which models the signal and the forward algorithm to determine the likelihood of a given time series of Received Signal Strength Indicators. The proposed method was compared with four other well-known Machine Learning algorithms through extensive experimentation with data collected in real scenarios. The proposed method obtained competitive results in most scenarios tested and was the best method in 17 of 60 experiments performed.

Download Full-text