SELECT LEARNING_CENTER_DOCUMENT.DOC_ID, LEARNING_CENTER_DOCUMENT.TITLE, DATE_FORMAT(LEARNING_CENTER_DOCUMENT.PUBLICATION_DATE, '%M %e, %Y') PUBLICATION_DATE, LEARNING_CENTER_DOCUMENT_TYPE.DESCRIPTION DOC_TYPE, LEARNING_CENTER_DOCUMENT_FORMAT.DESCRIPTION DOC_FORMAT, LEARNING_CENTER_DOCUMENT.TYPE DOC_TYPE_ID, LEARNING_CENTER_DOCUMENT.URL, LEARNING_CENTER_DOCUMENT.ABSTRACT, LEARNING_CENTER_DOCUMENT.COMPANY, LEARNING_CENTER_DOCUMENT.COMPANY_URL, LEARNING_CENTER_DOCUMENT.PAGES, LEARNING_CENTER_DOCUMENT.SIZE, LEARNING_CENTER_DOCUMENT.VENDOR_REGISTRATION_REQUIRED, LEARNING_CENTER_DOCUMENT.AUTHORS, LEARNING_CENTER_DOCUMENT.COMPANY_LOGO, LEARNING_CENTER_COMPANY_LOGO.IMAGE_PATH FROM LEARNING_CENTER_DOCUMENT LEFT JOIN LEARNING_CENTER_COMPANY_LOGO ON LEARNING_CENTER_DOCUMENT.COMPANY_LOGO = LEARNING_CENTER_COMPANY_LOGO.COMPANY_ID LEFT JOIN LEARNING_CENTER_DOCUMENT_TYPE ON LEARNING_CENTER_DOCUMENT.TYPE = LEARNING_CENTER_DOCUMENT_TYPE.TYPE LEFT JOIN LEARNING_CENTER_DOCUMENT_FORMAT ON LEARNING_CENTER_DOCUMENT.FORMAT = LEARNING_CENTER_DOCUMENT_FORMAT.TYPE WHERE DOC_ID = 'ph77ONio'

Layer 2 Analysis of WLAN Discovery Applications for Intrusion Detection





Title:
Layer 2 Analysis of WLAN Discovery Applications for Intrusion Detection
View this document 
Published: November 1, 2002
Published by: Johnson & Wales University
View All Publisher's Documents 
Format: PDF
Type: White Paper
Length: 13 page(s)
Vendor
Registration:		 Required

Wireless LAN discovery through the use of applications such as NetStumbler, DStumbler, Wellenreiter and others is an increasingly popular technique for network penetration. The discoveryof a wireless LAN might be used for seemingly innocuous Internet access, or to be used as a "backdoor" into a network to stage an attack.

This paper reviews some of the tactics used in wireless LAN network discovery and attempts to identify some of the fingerprints left by wirelessLAN discovery applications, focusing on the MAC and LLC layers. This fingerprint information can then be incorporated into intrusion detection tools capable of analyzing data-link layer traffic.