SCAFFISD: A scalable framework for fine-grained identification and security detection of wireless routers

Fangzhou Zhu, Liang Liu, Weizhi Meng, Ting Lv, Simin Hu, Renjun Ye

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

Abstract

The security of wireless network devices has received widespread attention, but most existing schemes cannot achieve fine-grained device identification. In practice, the security vulnerabilities of a device are heavily depending on its model and firmware version. Motivated by this issue, we propose a universal, extensible and device-independent framework called SCAFFISD, which can provide fine-grained identification of wireless routers. It can generate access rules to extract effective information from the router admin page automatically and perform quick scans for known device vulnerabilities. Meanwhile, SCAFFISD can identify rogue access points (APs) in combination with existing detection methods, with the purpose of performing a comprehensive security assessment of wireless networks. We implement the prototype of SCAFFISD and verify its effectiveness through security scans of actual products.

Original languageEnglish
Title of host publicationProceedings of 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications
PublisherIEEE
Publication dateDec 2020
Pages1194-1199
ISBN (Print)9780738143804
DOIs
Publication statusPublished - Dec 2020
Event19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications - Guangzhou, China
Duration: 29 Dec 20201 Jan 2021
Conference number: 19

Conference

Conference19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications
Number19
Country/TerritoryChina
CityGuangzhou
Period29/12/202001/01/2021

Bibliographical note

Funding Information:
This work is supported by the Aeronautical Science Foundation of China under Grant 20165515001, the National Natural Science Foundation of China under Grant No.61402225, State Key Laboratory for smart grid protection and operation control Foundation, and the Science and Technology Funds from National State Grid Ltd.(The Research on Key Technologies of Distributed Parallel Database Storage and Processing based on Big Data). Weizhi Meng is also supported by H2020-SUICT- 03-2018: CyberSec4Europe.

Funding Information:
ACKNOWLEDGEMENT This work is supported by the Aeronautical Science Foundation of China under Grant 20165515001, the National Natural Science Foundation of China under Grant No.61402225, State Key Laboratory for smart grid protection and operation control Foundation, and the Science and Technology Funds from National State Grid Ltd.(The Research on Key Technologies of Distributed Parallel Database Storage and Processing based on Big Data). Weizhi Meng is also supported by H2020-SUICT-03-2018: CyberSec4Europe.

Publisher Copyright:
© 2020 IEEE.

Keywords

  • Access Point
  • Device Identification
  • Router
  • Vulnerability
  • Wireless Network

Fingerprint

Dive into the research topics of 'SCAFFISD: A scalable framework for fine-grained identification and security detection of wireless routers'. Together they form a unique fingerprint.

Cite this