Preamble Injection and Spoofing Attacks in Wi-Fi Networks

Zhang, Z; Krunz, M

Preamble Injection and Spoofing Attacks in Wi-Fi Networks

Zhang, Z Krunz, M

Permalink

Publisher:: IEEE
Publication Type:: Conference Proceeding
Citation:: 2021 IEEE Global Communications Conference, GLOBECOM 2021 - Proceedings, 2022, 00
Issue Date:: 2022-01-01

Closed Access

	Filename	Description	Size
	Preamble_Injection_and_Spoofing_Attacks_in_Wi-Fi_Networks.pdf	Published version	348.25 kB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Zhang, Z
dc.contributor.author	Krunz, M
dc.date	2021-12-07
dc.date.accessioned	2023-04-11T00:11:44Z
dc.date.available	2023-04-11T00:11:44Z
dc.date.issued	2022-01-01
dc.identifier.citation	2021 IEEE Global Communications Conference, GLOBECOM 2021 - Proceedings, 2022, 00
dc.identifier.isbn	9781728181042
dc.identifier.issn	2334-0983
dc.identifier.issn	2576-6813
dc.identifier.uri	http://hdl.handle.net/10453/169463
dc.description.abstract	In Wi-Fi networks, every frame begins with a preamble that is used to support frame detection, synchro-nization, and channel estimation. The preamble also establishes compatibility and interoperability among devices that operate different Wi-Fi versions (e.g., IEEE 802.11a/g/n/ac/ax). Despite the crucial functions of the preamble, no guarantees can be made on its authenticity or confidentiality. Only weak integrity protection is currently possible. In this paper, we introduce novel Preamble Injection and Spoofing (PrInS) attacks that exploit the vulnerabilities of the preamble. Specifically, an adversary can inject forged preambles without any payload for the purpose of disrupting legitimate receptions or forcing legitimate users to de-fer their transmissions. The proposed PrInS attacks are effective irrespective of the Wi-Fi versions used by the adversary and its targets, as the attacks take advantage of the physical (PHY) layer receive state machine and/or capture effect. The efficacy of our attacks are validated experimentally using software-defined radios (SDRs). Our results show that the adversary can almost silence the channel, bringing the throughput of a legitimate user to 2% of its normal throughput. Even at 30 dB less power, the adversary still causes an 87% reduction in the legitimate users' throughput. To mitigate the PrInS attacks, we propose a backward-compatible scheme for preamble authentication.
dc.language	en
dc.publisher	IEEE
dc.relation.ispartof	2021 IEEE Global Communications Conference, GLOBECOM 2021 - Proceedings
dc.relation.ispartof	IEEE Global Communications Conference
dc.relation.ispartofseries	IEEE Global Communications Conference
dc.relation.isbasedon	10.1109/GLOBECOM46510.2021.9685461
dc.rights	info:eu-repo/semantics/closedAccess
dc.title	Preamble Injection and Spoofing Attacks in Wi-Fi Networks
dc.type	Conference Proceeding
utslib.citation.volume	00
utslib.location.activity	Madrid, Spain
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Electrical and Data Engineering
utslib.copyright.status	closed_access	*
pubs.consider-herdc	false
dc.date.updated	2023-04-11T00:11:43Z
pubs.finish-date	2021-12-11
pubs.place-of-publication	Piscataway, USA
pubs.publication-status	Published
pubs.start-date	2021-12-07
pubs.volume	00
dc.location	Piscataway, USA

Abstract:

In Wi-Fi networks, every frame begins with a preamble that is used to support frame detection, synchro-nization, and channel estimation. The preamble also establishes compatibility and interoperability among devices that operate different Wi-Fi versions (e.g., IEEE 802.11a/g/n/ac/ax). Despite the crucial functions of the preamble, no guarantees can be made on its authenticity or confidentiality. Only weak integrity protection is currently possible. In this paper, we introduce novel Preamble Injection and Spoofing (PrInS) attacks that exploit the vulnerabilities of the preamble. Specifically, an adversary can inject forged preambles without any payload for the purpose of disrupting legitimate receptions or forcing legitimate users to de-fer their transmissions. The proposed PrInS attacks are effective irrespective of the Wi-Fi versions used by the adversary and its targets, as the attacks take advantage of the physical (PHY) layer receive state machine and/or capture effect. The efficacy of our attacks are validated experimentally using software-defined radios (SDRs). Our results show that the adversary can almost silence the channel, bringing the throughput of a legitimate user to 2% of its normal throughput. Even at 30 dB less power, the adversary still causes an 87% reduction in the legitimate users' throughput. To mitigate the PrInS attacks, we propose a backward-compatible scheme for preamble authentication.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/169463