Abstract
The security of wireless network devices has received widespread attention, but most existing schemes cannot achieve fine-grained device identification. In practice, the security vulnerabilities of a device are heavily depending on its model and firmware version. Motivated by this issue, we propose a universal, extensible and device-independent framework called SCAFFISD, which can provide fine-grained identification of wireless routers. It can generate access rules to extract effective information from the router admin page automatically and perform quick scans for known device vulnerabilities. Meanwhile, SCAFFISD can identify rogue access points (APs) in combination with existing detection methods, with the purpose of performing a comprehensive security assessment of wireless networks. We implement the prototype of SCAFFISD and verify its effectiveness through security scans of actual products.
Original language | English |
---|---|
Title of host publication | Proceedings of 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications |
Publisher | IEEE |
Publication date | Dec 2020 |
Pages | 1194-1199 |
ISBN (Print) | 9780738143804 |
DOIs | |
Publication status | Published - Dec 2020 |
Event | 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications - Guangzhou, China Duration: 29 Dec 2020 → 1 Jan 2021 Conference number: 19 |
Conference
Conference | 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications |
---|---|
Number | 19 |
Country/Territory | China |
City | Guangzhou |
Period | 29/12/2020 → 01/01/2021 |
Bibliographical note
Funding Information:This work is supported by the Aeronautical Science Foundation of China under Grant 20165515001, the National Natural Science Foundation of China under Grant No.61402225, State Key Laboratory for smart grid protection and operation control Foundation, and the Science and Technology Funds from National State Grid Ltd.(The Research on Key Technologies of Distributed Parallel Database Storage and Processing based on Big Data). Weizhi Meng is also supported by H2020-SUICT- 03-2018: CyberSec4Europe.
Funding Information:
ACKNOWLEDGEMENT This work is supported by the Aeronautical Science Foundation of China under Grant 20165515001, the National Natural Science Foundation of China under Grant No.61402225, State Key Laboratory for smart grid protection and operation control Foundation, and the Science and Technology Funds from National State Grid Ltd.(The Research on Key Technologies of Distributed Parallel Database Storage and Processing based on Big Data). Weizhi Meng is also supported by H2020-SUICT-03-2018: CyberSec4Europe.
Publisher Copyright:
© 2020 IEEE.
Keywords
- Access Point
- Device Identification
- Router
- Vulnerability
- Wireless Network