Skip to main content
SpringerLink
Log in

802.11 De-authentication Attack Detection Using Genetic Programming

  • Conference paper
Genetic Programming (EuroGP 2006)

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 3905))

Included in the following conference series:

Abstract

This paper presents a genetic programming approach to detect deauthentication attacks on wireless networks based on the 802.11 protocol. To do so we focus on developing an appropriate fitness function and feature set. Results show that the intrusion system developed not only performs incredibly well – 100 percent detection rate and 0.5 percent false positive rate – but also developed a solution that is general enough to detect similar attacks, such as disassociation attacks, that were not present in the training data.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Lundin, E., Jonsson, E.: Survey of intrusion detection research (2002)

    Google Scholar 

  2. Mukkamala, S., Sung, A.: A comparative study of techniques for intrusion detection. In: 15th IEEE International Conference on Tools with Artificial Intelligence – ICTAI, pp. 570–577 (2003)

    Google Scholar 

  3. Xia, T., Qu, G., Hariri, S., Yousif, M.: An efficient network intrusion detection method based on information theory and genetic algorithm. In: Performance, Computing, and Communications Conference, 2005. IPCCC 2005, pp. 11–17 (2005)

    Google Scholar 

  4. Sinclair, C., Pierce, L., Matzner, S.: An application of machine learning to network intrusion detection. In: Computer Security Applications Conference, ACSAC 1999, pp. 371–377 (1999)

    Google Scholar 

  5. Gong, R.H., Zulkernine, M., Abolmaesumi, P.: A software implementation of a genetic algorithm based approach to network intrusion detection. In: Sixth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing - SNPD/SAWN 2005, pp. 246–253 (2005)

    Google Scholar 

  6. Li, W.: Using genetic algorithm for network intrusion detection, Kansas City, Kansas. In: United States Department of Energy Cyber Security Group 2004 Training Conference (2004)

    Google Scholar 

  7. Song, D., Heywood, M.I., Zincir-Heywood, A.N.: Training genetic programming on half a million patterns: an example from anomaly detection. IEEE Transactions on Evolutionary Computation 9(3), 225–239 (2005)

    Article  Google Scholar 

  8. Lu, W., Traore, I.: Detecting new forms of network intrusion using genetic programming. In: Sarker, R., Reynolds, R., Abbass, H., Tan, K.C., McKay, B., Essam, D., Gedeon, T. (eds.) Proceedings of the 2003 Congress on Evolutionary Computation CEC 2003, Canberra, pp. 2165–2172. IEEE Press, Los Alamitos (2003)

    Chapter  Google Scholar 

  9. Crosbie, M., Spafford, E.H.: Applying genetic programming to intrusion detection. In: Siegel, E.V., Koza, J.R. (eds.) Working Notes for the AAAI Symposium on Genetic Programming, pp. 1–8. MIT, Cambridge (1995)

    Google Scholar 

  10. Bellardo, J., Savage, S.: 802.11 denial-of-service attacks: real vulnerabilities and practical solutions. In: USENIX Security Symposium, pp. 15–28 (2003)

    Google Scholar 

  11. IEEE-SA Standards Board: ANSI/IEEE Std 802.11, 1999 Edition (R2003). IEEE, New York (1999)

    Google Scholar 

  12. Fluhrer, S., Mantin, I., Shamir, A.: Weaknesses in the key scheduling algorithm of RC4. In: Vaudenay, S., Youssef, A.M. (eds.) SAC 2001. LNCS, vol. 2259, pp. 1–24. Springer, Heidelberg (2001)

    Chapter  Google Scholar 

  13. Borisov, N., Goldberg, I., Wagner, D.: Intercepting mobile communications: The insecurity of 802.11 (2001), http://www.isaac.cs.berkeley.edu/isaac/wep-faq.html

  14. Kershaw, M.: Kismet (2005), http://www.kismetwireless.net/

  15. Schmoyer, T., Lim, Y.X., Owen, H.: Wireless Intrusion Detection and Response: A case study using the classic man-in-the-middle attack. In: IEEE Wireless Communications and Networking Conference, Atlanta Ga (2004)

    Google Scholar 

  16. Heywood, M.I., Zincir-Heywood, A.N.: Dynamic page based crossover in linear genetic programming. IEEE Transactions on Systems, Man, and Cybernetics: Part B - Cybernetics 32(3), 380–388 (2002)

    Article  Google Scholar 

  17. Gathercole, C., Ross, P.: Dynamic training subset selection for supervised learning in genetic programming. In: Davidor, Y., Männer, R., Schwefel, H.-P. (eds.) PPSN 1994. LNCS, vol. 866, pp. 312–321. Springer, Heidelberg (1994)

    Chapter  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Faculty of Computer Science, Dalhousie University, Halifax, Nova Scotia, B3H 1W5, Canada

    Patrick LaRoche & A. Nur Zincir-Heywood

Authors
  1. Patrick LaRoche
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. A. Nur Zincir-Heywood
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Université Louis Pasteur, LSIIT, FDBT, Pôle API,, F-67400, Illkirch, France

    Pierre Collet

  2. Institut des Systèmes d’Information (ISI), Université de Lausanne, Hautes Etudes Commerciales (HEC),, Switzerland

    Marco Tomassini

  3. Lehrstuhl für Informatik II, Universität Würzburg, Am Hubland,, 97074, Würzburg, Germany

    Marc Ebner

  4. GE Global Research, Niskayuna,, NY, USA

    Steven Gustafson

  5. Aston University, Birmingham, UK

    Anikó Ekárt

Rights and permissions

Reprints and permissions

Copyright information

© 2006 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

LaRoche, P., Zincir-Heywood, A.N. (2006). 802.11 De-authentication Attack Detection Using Genetic Programming. In: Collet, P., Tomassini, M., Ebner, M., Gustafson, S., Ekárt, A. (eds) Genetic Programming. EuroGP 2006. Lecture Notes in Computer Science, vol 3905. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11729976_1

Download citation

  • DOI: https://doi.org/10.1007/11729976_1

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-33143-8

  • Online ISBN: 978-3-540-33144-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation