|
CS590W Fall 2006: Wireless Network Security
| Class Information |
Instructor
Class Schedule
MW, 12:30 - 1:45. If you have a conflict with the time the class is currently scheduled, but you are interested in
the course, please contact the instructor.
Course Description
This course examines security of wireless networks such as
cellular networks, wireless LANs, mobile ad hoc neworks,
wireless mesh networks, and sensor networks. The course
will first present on overview of wireless networks,
then focus on threats, discuss proposed solutions and their limitations.
Topics will include: authentication, secure hand-offs, key
management in wireless networks, attacks on MAC protocols,
selfish and malicious behavior in wireless routing protocols,
secure multicast.
Grade:
The grade will be based on:
- the activity in the class (involvement in discussing the papers) (10%)
- class presentations (25%)
- the quality of the project (65%): 15 % project proposal, 15% project report, 35% presentation and demonstration of the project.
A demonstration session will be scheduled at the end of the class, all students will present and demonstrate their projects for everybody in the class.
Textbooks and reading list
- Check the lecture schedule.
Mailing list
The class mailing list is cs590w. To be added to the list sent an email
to mailer@cs.purdue.edu, with the body containing the text 'add your_email to cs590w'.
Academic Integrity
Academic Honesty and Ethical behavior are required in this course,
as it is in all courses at Purdue University ( here is the
guide for academic integrity). The class will
be conducted according to the
policy
written by Professor Gene Spafford. Please take the time to read it
carefully. This will be followed unless I provide written documentation
of exceptions.
You are encouraged to talk with the professor about any questions
you have about what is permitted on any particular assignment.
|
| Schedule |
| Week |
Monday |
Wednesday |
Friday |
| Aug. 21, Aug. 23 |
Lecture 1 - Introduction: wireless communication characteristics.
|
Lecture 2 - Introduction: wireless networks; security goals and adversarial models.
|
Lecture 3 -
Cellular networks architecture.
|
| Aug. 28, Aug. 30 |
Lecture 4 -
Cellular networks: security aspects.
- Mitigating Attacks on Open Functionality in SMS-Capable Cellular Networks. P. Traynor, W. Enck, P. McDaniel and T. La Porta.
Mobicom 2006.
|
Lecture 5 -
Cellular networks: security aspects.
- Exploiting MMS Vulnerabilities to Stealthily Exhaust Mobile Phone's Battery. R. Racic, D. MA and H. Chen.
|
|
| Sept. 4, Sept. 6 |
LABOR DAY, NO CLASS.
|
Lecture 6 -
Cellular networks: security aspects.
- Security analysis and enhancements of 3GPP authentication and key agreement protocol.
M. Zhang and Y. Fang.
|
Lecture 7 -
Mobile ad hoc network networks, sensor networks and wireless mesh networks.
|
| Sept. 11, Sept. 13 |
Lecture 8 - Data link attacks: WEP, 802.11i
- Intercepting Mobile Communications: The Insecurity of 802.11 Nikita
Borisov, Ian Goldberg, David Wagner, INFOCOM 2001.
- Changhua He, John C. Mitchell. Security analysis and improvements for IEEE
802.11i. The 12th Annual Network and Distributed System Security Symposium
(NDSS'05), pages 90-110. Feb. 2005
|
Lecture 9 - Attacks related to naming and addressing.
|
|
| Sept. 18, Sept. 20 |
Lecture 10 -
Establishing security associations
- A key-management scheme for distributed sensor networks. Laurent
Eschenauer, Virgil D. Gligor. CCS 2002.
- Random Key Predistribution Schemes for Sensor Networks Haowen Chan,
Adrian Perrig, and Dawn Song. Security & Privacy 2003.
|
Lecture 11 -
Establishing security associations.
- Wenliang Du, Jing Deng, Yunghsiang S. Han, and Pramod Varshney. A
Key Predistribution Scheme for Sensor Networks Using Deployment Knowledge. In IEEE Transactions on Dependable and Secure Computing, Volume 3,
Number 2, January-March 2006. Pages 62-77.
|
Lecture 12 -
Attacks against MAC protocols. Class will start at 1:45.
-
802.11 Denial-of-Service Attacks: Real Vulnerabilities and Practical Solutions John Bellardo and Stefan Savage. USENIX 2003
-
Selfish MAC Layer Misbehavior in Wireless Networks (PS),
Pradeep Kyasanur and Nitin Vaidya, IEEE Transactions on Mobile Computing (April 2004)
Maxim Raya and Jean-Pierre Hubaux and Imad Aad
|
| Sept. 25, Sept. 27 |
MOBICOM, NO CLASS, class was covered on Aug. 25.
|
MOBICOM , NO CLASS, class was covered on Sept. 8.
|
|
| Oct. 2, Oct. 4 |
Lecture 13 -
Attacks against MAC protocols.
- DOMINO: a system to detect greedy behavior in IEEE 802.11 hotspots,
Maxim Raya and Jean-Pierre Hubaux and Imad Aad
MobiSys '04: Proceedings of the 2nd international conference on Mobile systems, applications, and services
|
GRACE HOPPER, NO CLASS, class was covered on Sept. 22
|
| Oct. 9, Oct. 11 |
OCTOBER BREAK, NO CLASS
|
Lecture 14 - Attacks against routing protocols.
-
Mitigating routing misbehavior in mobile ad hoc networks. Sergio Marti and T. J. Giuli and Kevin Lai and Mary Baker. MOBICOM 2000.
|
Lecture 15 - Attacks against routing protocols
Class will start at 1:45.
-
Ariadne: A Secure On-Demand Routing Protocol for Ad Hoc Networks, Yih-Chun Hu, Adrian Perrig, and David B. Johnson. MobiCom 2002.
|
| Oct. 16, Oct. 18 |
Lecture 16 - Secure multicast in wireless networks
- "Securing MAODV: Attacks & Countermeasures," with S. Roy, V. G. Addada, and S. Jajodia, SECON 05, 2005.
|
Lecture 17 - Security and privacy issues related to RFIDs
- http://www.rfidvirus.org/
Projects related presentations: Dave.
|
| Oct. 23, Oct. 25 |
Lecture 18 - Projects related presentations: Ryan, Jing.
|
Lecture 19 - Projects related presentations: Cristina S., Brett.
|
| Oct. 30, Nov. 1 |
Lecture 20 - Privacy in multi-hop wireless networks.
|
Lecture 21 - Privacy in multi-hop wireless networks
|
| Nov. 6, Nov. 8 |
Lecture 22 - Security and privacy of vehicular networks.
-
The security of vehicular ad hoc networks
Maxim Raya, Jean-Pierre Hubaux. Workshop on Security of ad hoc and Sensor Networks 2005.
- Project progress updates.
|
NO CLASS. Class was covered on Oct. 13.
|
Lecture 23 - Detecting and Correcting Malicious Data in VANETs
P. Golle, D. Greene and J. Staddon, VANET 2004.
|
| Nov. 13, Nov. 15 |
ICNP, no class. Class was covered on Nov. 9.
|
ICNP, no class. Class will be covered on Nov. 28.
|
| Nov. 20, Nov. 22 |
Lecture 24 - Improved Security in Geographic Ad Hoc Routing through Autonomous Position Verification
T. Leinmuller, E. Schoch, F. Kargl, C. Maihfer, Vanet 2006
|
THANKSGIVING, NO CLASS
|
| Nov. 27, Nov. 29 |
Lecture 25 -
A Preliminary Investigation of Worm Infections in a Bluetooth Environment.
Jing Su, Kelvin Chan, Andrew Miklas, Kenneth Po, Ali Akhavan, Stefan Saroiu, Eyal de Lara and Ashvin Goel
WORMS 2006 |
Lecture 26 - An analysis of Bluetooth security vulnerabilities
Hager, C.T. Midkiff, S.F.
Bradley.
|
Lecture 27 - Cracking the Bluetooth PIN. Yaniv Shaked and Avishai Wool.Proceedings of the 3rd international conference on Mobile systems, applications, and services, 2005.
|
| Dec. 4, Dec. 6 |
Lecture 28 - Project Demos
|
Lecture 29 - Project Demos
|
| |
|
| |
Copyright© 2006 Cristina Nita-Rotaru. Send your comments and questions to Cristina Nita-Rotaru
|
|