Implementing Privacy and Security to Wireless Networks

Kavita Dhiman Tarun Sharma

Assistant professor, Department of Computer Application
Department of Computer Application, CSB Chandigarh Group of Colleges
Chandigarh Group of Colleges Jhanjeri, Mohali -140307 (Punjab)
Jhanjeri, Mohali -140307 (Punjab) [email protected]
[email protected]

ABSTRACT
Inherently, wireless networks are more prone to attack than their wired counterparts. Additionally, problems are
created by node mobility and changeable network topology. Additionally, intermittent connectivity whether
brought on by node sleep or mobility presents new difficulties. Direct adoption of current security solutions is
additionally made challenging, if not impossible, by node resource limitations. The areas of wireless networks
and mobile computing are examined in Wireless Communication Network Security and Privacy. Authentication,
access control and authorization, nonrepudiation, privacy and confidentiality, integrity, and auditing are all part
of the security components. Any good or service must include privacy as a feature.

Keywords— Wireless Networks, Technologies, Attacks, Security

WIRELESS COMMUNICATION users have specific needs for cryptography, thus

NETWORKING AND TECHNOLOGIES
The provision of telecommunications services now
includes a very fascinating area known as wireless
communications. They range from straightforward
communication services to applications for unique
and delicate uses including electronic commerce,
healthcare, and digital currency(Thurwachter,
2002).
Wireless communications have gained popularity
as a research topic in recent years due to their low
cost, low power consumption, flexibility, lack of
physical infrastructure, and ease of deployment, as
well as the rapid increase in the number of wireless
users. Many wireless networks, including wireless
local area networks (WLAN), wireless body area
networks (WBANs), wireless personal area
networks (WPANs), and ad-hoc networks, utilize
these short-range wireless technologies(Tachikawa,
2002).
Wi-Fi, commonly known as the IEEE 802.11
standard for wireless local area networks, now
supports a number of over-the-air modulation
techniques with speeds ranging from 11 to 540
Mbit/s in the 2.4 GHz and 5 GHz frequency bands.
(Chen, 2007).
Security will be crucial to information transmission
operations in future wireless protocols and
communication environments (networks). Today's
current and future wireless communication systems
must address these needs.
Examples of Wireless Technologies
Wi-Fi: In order to wirelessly link two devices, we
usually need a Wi-Fi arrangement in which a router
broadcasts a network and our devices which might
be a PC, phone, laptop, or TV all connect to the
router. With Wi-Fi Direct, in contrast to this
traditional method, compatible devices can join
directly by creating their own wireless network.
Cellular Network:Also called a base station or cell
site, a cellular network is a radio network that is
distributed over land areas called cells and is each
served by at least one fixed-location transceiver. To
prevent interference and guarantee bandwidth
inside each cell in a cellular network, each cell
employs a separate set of frequencies from its
nearby cells.
Capableof utilizing practically all public and
private network capabilities and services.
 a bigger capacity.
 decreased energy use
 greater area of coverage
 less signal interference from other sources
In a cellular radio system, a land area is divided
into uniformly shaped cells that can be hexagonal,
square, circular, or any other uniform shape, though
hexagonal cells are typically used. The frequencies
in question can be utilized again in other cells as
long as they are not used again in nearby cells that
are directly adjacent to one another because that
would interfere.
Short-range wireless communications between
desktop and laptop computers, personal digital
assistants (PDAs), cell phones, printers, scanners,
digital cameras, and even home appliances are
made possible by the Bluetooth technology. Short-
range wireless interconnectivity is gradually
replacing current wireline connections as more
people adopt Bluetooth wireless technology.
Numerous intriguing usage scenarios are possible
with Bluetooth, such the ones listed below (Anand,
2003):
 Electronic identification verification by just
putting your phone in your pocket and passing
through a doorway.
 Purchasing electronic tokens or tickets that are
"punched" when you drive or stroll through a
sensor using a multipurpose PDA.
 A clinician can access a patient's information in
a central database by carrying another
Bluetooth capable device because Bluetooth
chips are always on and looking for other
Bluetooth devices.
WiMAX:WiMax (Worldwide Interoperability for
Microwave Access) is a wireless communications
standard intended to deliver data rates of 30 to 40
megabits per second. In order to give last-mile
wireless broadband connectivity as an alternative to
cable and DSL, WiMAX is a wireless technology
based on the IEEE 802.16 specifications
(Mahmoud, 2007):
 Spectrum: can to be used in spectra that are
both licensed and unlicensed.
 Topology: various Radio Access Network
(RAN) topologies are supported.
 Interworking: Independent RAN architecture
to provide smooth integration and interworking
with Wi-Fi, 3GPP and 3GPP2 networks and
current IP operator core network.
 IPConnectivity: allows clients and application
servers to use a combination of IPv4 and IPv6
network interconnects.
 MobilityManagement: Possibility of
expanding fixed access to include delivery of
mobile and broadband multimedia services.
The IEEE 802.16a and HiperMan standards' MAC
and PHY system profiles are being developed by
the WiMAX technical working group. For both
wireless MAN (licensed) and wireless HUMAN,
the MAC profile offers an IP-based variant
(license-exempt). With physical layer
specifications based on the spectrum of use and the
related regulations, IEEE Standard 802.16 was
created to develop as a set of air interfaces
standards for WMAN based on a common MAC
protocol. (Gavrilovska& Prasad, 2006).
Examples of Wireless Networking
Wireless Personal Area Networks (WPAN) are a
type of low-range wireless network that only have a
few dozen meters of coverage. Wireless Local Area
Networks (WLAN): This type uses radio or
infrared signals rather than conventional network
wiring to offer wireless network connectivity
across small distances. A wireless network adapter
that serves the same purpose as a conventional
Ethernet adapter is used by clients to connect to the
AP.(Wang & Poor, 2003):
• Mobility: LAN users can have access to real-
time information wherever in their business
with the help of wireless LAN systems.
• Installation Speed and Simplicity: A wireless
LAN system can be quickly and easily installed,
and it can do away with the need to run cable
through walls and ceilings.
• Reduced Cost-of-Ownership: WirelessLAN
hardware may require a larger initial investment
than conventional LAN hardware, but overall
installation costs and life-cycle costs may be
considerably cheaper.
• Scalability: Peer-to-peer networks suited for a
small number of users can be quickly
configured, while comprehensive infrastructure
networks with thousands of users can enable
roaming over a large area.
Personal area networks (PANs), local area
networks (LANs), campus area networks (CANs),
or metropolitan area networks (MANs) are similar
terms for different sorts of networks that are
typically restricted to a room, building, campus, or
specific metropolitan area (e.g., a city). LANs and
other smaller networks, such as metro area
networks, are frequently connected by WANs
(MANs). WANs often employ different, pricier
networking hardware than do LANs (Comaneci&
Poor, 2005).
Wireless Mesh Networks (WMN): The field of
wireless communication technology is developing
quickly. The following aspects of Wireless Mesh
Networks are attracting attention (Ahmad, 2005):
 Simple and inexpensive network deployment;
 Simple and inexpensive networker
configuration;
 Reduction in wired links;
 Robust communication;
 Effective spectrum reuse;
 Increased network capacity; and so forth.
Mesh routers and mesh clients make up a simple
WMN. Based on their structural design and
deployment arrangement, WMNs can be divided
into three primary categories:
 Infrastructure Mesh: Some mesh routers with
gateway functionality connect to the internet
through access routers (ARs), and the mesh
routers build links that setup and heal
themselves(Agrawal & Zeng, 2003).
 Client Mesh: Peer-to-peer mesh networking
among clients makes up its architecture. In this
architecture, mesh clients handle all routing and
setups independently, negating the need for
mesh routers.
 Hybrid Mesh: Infrastructure and client
meshing are combined in its architecture. With
peer-to-peer connections with other mesh
clients or through the mesh routers, mesh
clients have access to the mesh network.
Utilizing the Cloud Networking: The collection of
components, networks, storage space, solutions,
and connections that make up cloud computing
work together to generate various features of
computing as a service. Cloud computing involves
the internet delivery of software, features, and
storage space. (Al-Omari &Sumari, 2010) They
comprise:
 Versatility and the ability to scale up and down,
 Program development connections (APIs),
 Stipulating and automatic payments, and
 Metering of assistance utilization in a payas-
you-go style.
There are several types of cloud processing,
including (Chen, 2007):
 Public clouds are in accordance with the typical
cloud computing model, in which a business
develops services like software and storage and
makes them accessible to the public online.
 They may be managed internally or by a third
party, and they may be arranged internally or
externally.
 A blend of public and private clouds (hybrid
cloud). Because hybrid clouds are
interconnected, it is simple to move programs
and details from one implementation program
to another. It is possible to use any type of
cloud computing service alone or in conjunction
with others.
The Network
Clouds typically refer to wide area networks
(WANs) like the Internet, but they can also refer to
private clouds, which are networks that belong to
specific businesses. However, as illustrated in
Figure 1, the phrase "cloud computing" almost
typically refers to the public Internet rather than
private networks.
Figure 1. The cloud networking
TECHNIQUES OF WIRELESS
COMMUNICATION NETWORKS
FOR SECURITY AND PRIVACY
Network architecture and design are increasingly
focusing on issues related to security and privacy of
user, application, device, and network resources
and data. Understanding the connections between
security mechanisms and the security architecture
and other component architectures is essential for
the correct operation of security inside a network
(Xiao & Du, 2009).
The protection of networks and the services
they provide against illegal access, alteration,
destruction, or disclosure is referred to as network
security in this context. Network privacy is a subset
of network security that focuses on preventing
unauthorized access to networks and the services
they provide. In this book, whenever the phrase
"network security" is used, it also refers to all
aspects of "network privacy" (Olakanmi, 2012).
However, in order for the network to fulfil user
expectations and for security to offer sufficient
protection, security must now be built into the
network from the start.
 Due to the following factors, interest in
cryptology has increased since the development of
wireless data communications at the turn of the
20th century (Boncella, 2002):
 The development of corporate and military
communications as a result of this technology,
which made it possible to communicate
globally in seconds as opposed to weeks.
 It is clear that wireless communications are just
as simple for an enemy to intercept as they are
for the intended recipient.
As a result, mechanical and electromechanical
cryptographic devices were widely used in the first
half of the 20th century, and cryptanalysis of these
systems became increasingly popular. Because of
the widespread use of the Internet and the World
Wide Web, cryptography is now widely used in e-
commerce and other commercial applications.
Low-cost, quick software cryptography and open
security protocols like TLS (SSL), SSH, and IPsec,
which were launched in the second part of the
1990s, provide the foundation of these
technologies.
The lack of or very poor security offered by the
earliest analogue mobile phones caused great
embarrassment. Even if there are still many flaws
in the European GSM system, which was
developed in the late 1980s, security was already
considerably improved.
As demonstrated in Figure 2, the concepts of
security and privacy are difficult to separate since
they, on the one hand, overlap in some areas and,
on the other, are not always combinable.
(Lashkari&Samadi, 2009).
The following significant security needs for
wireless networks must be taken into account:
 Confidentiality protection is frequently only
applied to the wireless link, despite the fact that
the majority of wireless connections continue
across a fixed network.
 Along with
security from replay, data authentication should
be offered. Authenticated encryption should be
employed in order to achieve data
confidentiality, data authentication, and replay
protection.
 The majority of wireless services demand
access control in order to restrict access to
authorized users and/or for billing
considerations. The mobile terminal, on the
other hand, wants to confirm that it is connected
to a reliable access point(Sklavos&Xinmiao,
2007).
Each security measure should be assessed for the
network it is being used on, taking into account
how much protection it offers, how it affects users'
ability to perform their tasks, how much technical
knowledge is needed for installation and
configuration, how much it costs to buy,
implement, and run, and how much administration
and maintenance it requires(Sklavos&Xinmiao,
2007).
Encryption/Decryption
Encryption and decryption guard information from
being used by the attacker while other security
methods prevent unauthorized access and the
destruction of resources and information
(Elminaam&Hadhoud, 2009). It is encrypted using
cypher algorithms and a secret key as part of the
encryption and decryption process, which makes
data unintelligible if intercepted. Then, data are
decrypted at or close to their final destination. In
Figure 3, this is displayed.
Encryption and decryption thereby improve
other types of security by safeguarding data in the
event that those other methods are unable to
prevent unwanted individuals from accessing that
data. Public key and private key encryptions and
decryptions are the two most popular forms. Public
key encryption and decryption are frequently
implemented in software. Examples include Rivest,
Shamir, and Adleman (RSA) public key
encryption, triple DES private key encryption, and
data encryption standard (DES) private key
encryption. A security architecture that makes use
of both public and private keys is public key
infrastructure (PKI). Information is encrypted using
a public and private cryptographic key pair that is
obtained and shared through a trusted authority in a
system called public key infrastructure, which
combines security mechanisms, policies, and
directives into a system intended for use across
unsecured public networks (such as the Internet).
PKI consists of cryptographic keys and a certificate
management system and is intended for secret,
official, commercial, and legal transactions. This
system's components are:
• Controlling the creation and distribution of
public and private keys
• Publishing certificates with public keys and
UIDs in open directories
• confirming that a certain public key is actually
connected to a pacific private key
• proving who is in possession of a public/private
key pair
Certification Authorities (CA), who act as
trusted third parties for PKI, are one or more of the
trusted systems used by PKI.
A different illustration is the secure sockets
library (SSL). In order to identify a party's digital
identity, the Secure Sockets Library uses RSA-
based authentication, while the accompanying
transaction or communication is encrypted and
decrypted using RC4. Network performance (in
terms of capacity and delay) can be negatively
impacted by 15% to 85% or more depending on the
type of encryption/decryption and where it is
deployed in the network. Despite the fact that this
approach is compatible with other security
mechanisms, trade-offs like these musts to be taken
into account when assessing encryption and
decryption.
Mobile Phone Systems Security
The original generation of mobile phone systems'
only security feature was a secret user identity that
was sent unencrypted over the network, much like
a computer system's user name and password. As a
result, second generation mobile systems (GSM
and IS-95) received advanced security services,
which were then developed for third generation
systems(Gerkis, 2006).
GSM Security
User identity confidentiality, user identity
authentication, user data confidentiality, and
signaling information confidentiality are the
security objectives of the GSM system. Running an
authenticated key agreement (AKA) protocol
between the mobile phone and the base station
enables the achievement of these security
objectives (with the exception of the first one). A
long-term secret or key needed for this protocol is
kept on a smart card known as the Subscriber
Identity Module (SIM)(Xiao, Chen & Du, 2009).
The SIM card computes the key, which is then
transmitted to the mobile device. The phone
encrypts all subsequent communication between
the base station and the phone. The following
issues with this protocol still exist:
 It would not be suitable, from a security
standpoint, to keep the Ki of every user's key in
the base stations or to send these keys to a base
station.
 There is no subscriber identity confidentiality
provided by the protocol. In fact, one can get
the ability to track a mobile phone simply
cutting off the wireless connection.
 The AKA protocol does not authenticate the
user of the mobile phone to the network.
Three categories of GSM security system flaws can
be identified:
 cryptography algorithms' flaws,
 absence of defense against active attacks (a
cryptographic protocol weakness), and
 architectural flaws
Wireless LAN Security
The data confidentiality, data integrity, entity
authentication, and authorization are the security
objectives of the IEEE 802.11 security architecture.
The Wired Equivalent Privacy was the first remedy
incorporated into the 1999 IEEE 802.11 standard
(WEP) WEP was immediately found to have
numerous security weaknesses, which led to the
industry organization Wi-Fi Alliance adopting Wi-
Fi Protected Access (WPA) in 2002 as a temporary
fix.(Olakanmi, 2012).
In order to provide authenticated encryption at
the data link layer, IEEE 802.11 offers the WEP
protocol as an optional security mechanism. A
short key K (40 or 104 bits) is stretched into a large
key stream using the stream cypher RC4 before
being added to the payload. Since no key
management is offered, each access point relies on
a single shared key amongst its users that must be
manually installed and consequently is updated
infrequently.
The cost of retrieving such a key is extremely
low, making the 40-bit key size unacceptably
small. While a 104-bit key provides enough long-
term security, some implementations generate it
from a short password, making security less robust.
If changes are made to the packet headers, the
access point will decrypt the packet and may
redirect it to a machine of the attacker's choosing.
Shared Key Authentication can be used with
WEP to increase protection against authentication
faking (SKA). SKA makes the plaintext challenge
and the cipher text response both exposed, making
it easy to fake authentication to a closed
network(Boncella, 2002).
Wi-Fi Protected Accesses (WPA)
In 2002, WPA, a temporary replacement for
WEP, was created in advance of the 2004
publication of the IEEE 802.11i standard (WPA2).
WPA continued to use RC4 but switched out the
CRC-32 with a more robust MAC algorithm with a
64-bit output called Michael since it needed to be
compatible with the deployed devices with limited
computing capacity.
A way to extract per-packet WEP keys from a
temporal secret key, the device's MAC address, and
the packet sequence number is added by the
Temporal Key Integrity Protocol (TKIP), which
also doubles the IV space to 48 bits with
sequencing restrictions. Even if numerous nodes
share the same secret key, this assures distinct keys.
Every 10,000 packets, the temporal key, which is
obtained from the pair-wise master key (PMK), is
updated.
This framework is based on the Extensible
Authentication Protocol (EAP), which supports a
variety of authentication techniques including
public key authentication, one-time password
tokens, smart cards, and Kerberos. The access point
only opens a port for EAP packets to an
authentication server (like RADIUS or Diameter)
on the fixed network in response to a mobile node's
request for access. (Sen, 2009).
Security for Personal Area Networks
(Bluetooth)
The protocol for Bluetooth authenticated key
agreement is somewhat complicated. The 48-bit
Bluetooth address and a random number are used to
produce the key. Password-based authenticated key
exchange (PAKE) protocols, which prevent off-line
PIN guessing attacks but necessitate public key
operations that are more expensive than the
symmetric cryptographic operations used in
Bluetooth, could significantly increase the security
of the Bluetooth
protocol(Sreedhar&Kasiviswanath, 2010).
ATTACKING METHODS FOR
WIRELESS NETWORKS
Passive Attack Methods
This makes it more challenging to defend
against passive attacks on a wireless network. The
eavesdropper can simply capture network traffic for
examination using readily available tools, such as
Network Monitor in Microsoft products, if they are
equipped with a wireless network adaptor that
supports promiscuous mode.
(Sreedhar&Kasiviswanath, 2010).
The task of a potential eavesdropper has been
made much simpler if the network administrator
has been so nice as to include a hint about the
organization in the SSID or is not using WEP to
encrypt traffic. The attacker can learn the DNS
servers being used, the default home pages set up
on browsers, network names, logon traffic, and
other information by examining the network traffic,
for instance.
This data can be used by the attacker to assess the
network's interest level and decide whether to
launch additional attacks. Furthermore, if the
network is using WEP, the attacker has the ability
to collect enough traffic with enough time to break
the encryption if the network is using WEP.
On networks that are set up as open systems,
Nets tumbler operates. This means that when other
wireless devices transmit a radio beacon with a
"empty set" SSID, the wireless network responds
with the value of its SSID and acknowledges their
presence. Administrators should set up the wireless
network as a closed system to protect against the
usage of Nets tumbler and other tools to detect a
wireless network quickly. This implies that tools
like Nets tumbler, which rely on this method to
detect wireless networks, will not be able to "see"
the AP because it will not reply to "empty set"
SSID beacons. (Padmavathi&Shanmugapriya,
2009).
Aps are half-duplex devices that function
similarly to other half-duplex devices like hubs and
repeaters on the wireless side, it should be noted.
This implies that every device connected to the
network may be able to view all of the traffic
coming from other devices.

Active Attacking Methods
An attacker can conduct an active attack against the
network once they have gathered enough data from
the passive attack. Using MAC filtering to grant
access to the wireless network to only clients with
legitimate MAC addresses is a typical method of
securing a wireless network against illegal access.
However, regardless of the method used to conduct
MAC filtering, it is a relatively simple affair to use
software to modify a wireless device's MAC
address in order to pose as a legitimate station
(Anand, 2003).
The attacker can do port scans, use specialized
tools to dump user lists and passwords, pose as
users, connect to shares, and generally wreak havoc
on the network with DoS and Flooding assaults
once they have authenticated and connected to the
wireless network. These denial-of-service (DoS)
attacks may take the form of more conventional
methods like ping floods, SYN floods, fragment
attacks, or Distributed DoS (DDoS) attacks, or they
may target wireless networks specifically by setting
up and employing rogue access points to obstruct
the proper forwarding of wireless traffic.
Man-in-the-Middle Attacks
Wireless customers won't be able to tell if they are
connecting to an illegal AP if the attacker is aware
of the SSID that the network is using and the rogue
AP is powerful enough. An attacker can learn
important details about the wireless network, such
as authentication requests, the secret key that might
be in use, and other information, by using a rogue
AP. Frequently, the attacker will set up a laptop
with two wireless adapters, one of which is used by
the malicious AP and the other of which is used to
route requests to the real AP through a wireless
bridge. The rogue AP need not be situated close to
the legal AP if it has a powerful enough antenna.
(Padmavathi&Shanmugapriya, 2009).
Jamming Attacking Methods
Jamming is a unique type of DoS attack that targets
wireless networks only. The presence of other
devices, such cordless phones, that use the same
frequency as the wireless network can sometimes
result in jamming that is not malicious. When an
attacker examines the spectrum being utilized by
wireless networks and then sends out a strong
signal to disrupt communication on the found
frequencies, jamming is intentional and malevolent.
(akro&etin, 2010).
Access Control Attacking Methods
Through the use of wireless technology or by
avoiding WLAN access control measures such AP
MAC filters and 802.1X port access controls, these
attacks try to break into a
network(Sreedhar&Kasiviswanath, 2010):
• War Driving: locating wireless LANs by
issuing probe requests or listening for beacons,
which can be used as an entry point for
additional attacks.
• Rogue Access Points: placing an untrusted AP
within a firewall, opening a backdoor to a
reliable network.
• Ad Hoc Associations: connecting directly to a
station that is unprotected in order to get around
AP protection or to attack the station.
Confidentiality Attacking Methods
These attacks try to intercept private data delivered
via wireless networks, whether it's encrypted using
802.11 or a higher layer protocol or sent in the
clear (Padmavathi&Shanmugapriya, 2009).
• Eavesdropping: the gathering of potentially
sensitive information by intercepting and
decoding unprotected application traffic.
• WEP Key Cracking: using passive or active
techniques to capture data in order to recover a
WEP key.
• Evil Twin AP: using the WLAN's service set
identifier (SSID) to entice users while posing as
an approved AP.
Integrity Attacking Methods
These attacks use wireless to broadcast faked
control, management, or data frames in an effort to
deceive the recipient or aid another attack (like a
DoS) (Padmavathi&Shanmugapriya, 2009).
• 802.11 Frame Injection: Making and
transmitting fake 802.11 frames.
• 802.11 Data Replay: Replaying 802.11 data
frames after they have been updated.
• 802.1X RADIUS Replay: Replaying captured
RADIUS Access-Accept or Reject messages
Authentication Attacking Methods
Through these assaults, hackers get access to
otherwise private networks and services by stealing
the legitimate user identities and credentials
(Agrawal & Sharma, 2011).
• Shared Key Guessing: Using hacked, vendor
 default, or guessable WEP keys when
attempting 802.11 shared key authentication.
• Application Login Theft: obtaining user
information through clear-text application
protocols, such as their email address and
password.
• Domain Login Cracking: employing a brute-
force or dictionary attack tool to decrypt
NetBIOS password hashes in order to recover
user credentials (such as a Windows login and
password) (Sreedhar&Kasiviswanath, 2010).
Availability Attacking Methods
These attacks prevent legitimate users from
receiving wireless services by restricting their
access to WLAN resources or by disabling those
resources (Padmavathi&Shanmugapriya, 2009).
• AP Theft: Physically removing an AP from a
public space.
• Queensland DoS: Exploiting the CSMA/ CA
Clear Channel Assessment (CCA) mechanism
to make a channel appear busy.
• 802.11 Beacon Flood: Generating thousands of
counterfeits 802.11 beacons to make it hard for
stations to find a legitimate AP.
Bluetooth Attack
Bluetooth uses the stream cypher E0 for data
encryption and SAFER+ (Gehrmann&Smeets,
2004) for entity authentication and key
establishment. An attacker can gain the 48-bit
Bluetooth address and then trace the device by
listening in on a Bluetooth exchange or by
contacting a device that is in discoverable mode.
Since the 48-bit address is known to be not random
(the manufacturer-specific 24 bits are reserved for
specific devices, and some manufacturers preserve
specific ranges for specific devices), even if a
device is in non-discoverable mode, it may still be
discovered. Recovering an address can take
anywhere from a few hours to several years,
depending on the attacker's information and the
quantity of devices used in the attack and targeted
at once.
Devices with Bluetooth functionality could be
subject to denial-of-service attacks. Rogue devices
may continually try to connect, which could
shorten the victim's battery life (Anand, 2003). As
an illustration, the Bluesnarf attack enables
connection to some mobile devices and gives
access to the phone's calendar, IMEI (International
Mobile Equipment Identity), and other restricted
data without the owner's knowledge. The
Bluejacking attack takes use of the fact that a
device's name can be shown for up to 248
characters during a pairing process to transmit
advertisements to another device (Sethi, K
&Jaiswal, V. 2018).
Attack WEP
A significant portion of WLANs are still
unprotected in 2006, and of those that do use
security, more than 75% continue to use the WEP
protocol (Padmavathi&Shanmugapriya, 2009). The
most frequent risks to a wireless network are
therefore unauthorized access and spoofing because
of the characteristics of wireless networks and the
shortcomings of WEP.
The block diagram of various attacks on secure
wireless communication systems is shown in
Figure 4.
Figure 4. Block diagram of different attacks
Wireless communication networks' security
issuesThis section will provide a summary of some
of the key issues that have been raised in relation to
wireless communication network security, privacy,
and attack strategies.
Examples of Different Challenges
The difficulties of managing wireless security: As
WLANs become a commonplace part of enterprise
network infrastructure, security and management
issues become of utmost importance to businesses.
(Laeeq, 2011).
Wireless LANs (WLANs) have developed to the
point that they are being integrated into corporate
networks as standard equipment, posing the biggest
wireless pain points for network managers. In order
for the connectivity, they provide to be as
dependable as that provided by wired Ethernet
switches, wireless APs and controllers must be
controlled and monitored similarly (Sethi, K.,
&Jaiswal, V. 2022).
The biggest error businesses make while setting
up wireless networks: The worst error made while
implementing wireless networks is not paying
enough attention to and preparing for capacity and
application performance needs. Many best-effort
WLANs in use today managed without it, and there
is a strong temptation to deploy next-generation
WLANs using the same stale guidelines and
educated guessing.
New wireless security gadgets: As standards
have become more established, wireless security
updates have stalled. The current focus of wireless
security technologies is on expanding the visibility
and applicability of existing controls while
improving their performance in harsher situations.
Security issues with open wireless networks: A
shared wireless network poses two major security
issues. The absence of a reliable trust network
between the owner of the wireless network node
and the network user effectively causes both of
these problems(Sreedhar&Kasiviswanath, 2010).
The chance that someone will use your network for
immoral (or maybe even criminal) purposes, such
as accessing immoral content online or trying to
gain access to personal information through the
local network (Sethi, K., &Jaiswal, V. (2019).
The risk brought on by the requirement to put your
trust in the owner of whichever Access Point you
happen to connect to while away from home, as
well as the potential for misuse of that trust to gain
access to your personal information and try to steal
passwords to services like email or online banking.
When one shares their network, there is a
chance that users will not utilize it responsibly due
to the potential of connectivity abuse. This risk
consists of:
• The risk of abuse of bandwidth:It is usually
done with the implicit idea that you are sharing
surplus bandwidth, i.e., that you probably won't
notice the difference, when you agree to share
your network with others.
(Sreedhar&Kasiviswanath, 2010).
• VPN’s and Tunneling: Using a VPN solution
is difficult for end users who lack the
knowledge or server access necessary to set up
SSH tunnels or their own VPN tunnel.
Problems with Wireless Remote Monitoring:
Although employing wireless for remote
monitoring has several financial advantages,
business has been sluggish to adopt the technology.
Before wireless measuring systems are widely
used, there are a number of obstacles that must be
removed, including those related to security,
dependability, integration, and power.
Security and Reliability: For many engineers
and scientists contemplating wireless, security is
their top worry. The justification for this is mostly
attributable to the shortcomings of early wireless
protocols like wired equivalent privacy (WEP),
which did not effectively block unauthorized
access. Adaptation to Current Systems: Proprietary
networking protocols have been used frequently to
address wireless security flaws:
• If such a protocol's specifics are ever disclosed,
the entire system is put at risk.
• Integrating proprietary networks into wired
systems that are already in place is challenging.
If you opt for a proprietary protocol, you are
forced to use network components from a single
supplier, some of which might not be
compatible with your current hardware.
Battery life:Although it depends on the
application, power is a third possible issue for
wireless networks. For instance, Wi-Fi uses more
power than ZigBee but can broadcast waveform
data continuously. On the other hand, ZigBee and
802.15.4 can operate for years on batteries thanks
to restrictions on the volume of data they gather
and the frequency at which they broadcast it.
Challenges associated with convergence: The
wireless revolution depends on the fusion of
numerous information and communication
technologies. The transition to more heterogeneous
systems entails the integration of several gadgets,
many of which demand varying amounts of
bandwidth, such as computers, sensors,
transmitters, radar, GPS, and cameras. (Abu-
Rgheff, 2007).
FUTURE RESEARCH DIRECTIONS
However, creating an effective detection
mechanism for such a system represents a
significant scientific problem. Although security
procedures for each layer will eventually become
well-established, merging all the techniques to have
them cooperate with one another will be a difficult
research task. Even if wireless sensor networks'
overall security could be guaranteed, the cost-
effectiveness and energy efficiency of using such
technologies could present a significant research
issue in the future (Agrawal & Sharma, 2011).
survey of outing attacks and security
measures in mobile ad-hoc networks.
Journal of Computing, 3(1).
[3]. Ahmad. (2005). Wireless and mobile
data. London:Wiley.
[4]. Al-Omari &Sumari. (2010). An overview
of mobile ad hoc networks for the
existing protocols and applications.

[5]. International Journal on Applications of

CONCLUSION Graph Theory and Ad Hoc Networks and
The cyphers typically need extensive algebraic Sensor Networks, 2(1).
and arithmetic alterations, which are inappropriate
for hardware implementations. However, in the [6]. Anand. (2003). Power aware public key
authentication for Bluetooth. (M.Sc.
case of handheld devices and mobile
Thesis). University of Florida,
communications with high-speed and low-power Gainesville, FL.
consumption requirements, the software solution is
not suitable. [7]. Boncella. (2002). Wireless security: An
A heterogeneous multi-terminal hardware overview. Communications of the
prototype will be built for the actual assessment Association for Information Systems, 9.
over realistic situations of the most promising
[8]. Chen. (2007). The next generation
established cooperative and cognitive techniques,
CDMA technologies. London: Wiley..
expanding the scope of research in COSIMA
beyond theoretical and algorithmic levels. [9]. Comaniciu, Mandayam, & Poor. (2005).
The interaction between the layers is Wireless networks multiuser detection in
substantially greater with the new wireless cross – layer design. Berlin: Springer
technologies. A significant research difficulty is Science.
establishing fast enough communication between
[10]. Dong, Curtmola, & Nita-Rotaru. (2009).
multilayer complicated systems. Secure network coding for wireless
The development of platforms and architectures mesh networks: Threats, challenges, and
that can be used for a wide range of applications is directions. Computer Communications,
the core of convergence. 32, 1790–1801. doi:10.1016/j.
Users installing this software, either directly for comcom.2009.07.010.
the 3GPP voice stream or in a VoIP protocol, is
[11]. Elminaam, Kader, &Hadhoud.
something that may be anticipated for the
(2009). Performance evaluation of
upcoming generation of smart phones. symmetric encryption algorithms on power
Despite these security flaws, GSM has experienced consumption for wireless devices.
tremendous commercial success, which shows that International Journal of Computer Theory
attacks that take advantage of these vulnerabilities and Engineering, 1(4), 1793–8201.
for financial benefit may be managed. However, it
is also evident that, as these networks become more [12]. Elminaam, Kader, &Hadhoud.
(2010). Evaluating the performance of
integrated with the Internet, all network-level
symmetric encryption algorithms.
threats—including viruses, worms, denial-of- International Journal of Network
service attacks, and NS level attacks—will also Security, 10(3), 216–222.
need to be addressed on mobile networks.
[13]. Gavrilovska& Prasad. (2006). Ad
hoc networking towards seamless
REFERENCES communications. Berlin: Springer..
[1]. Abu-Rgheff. (2007). Introduction to
CDMA wireless communications. [14]. Gehrmann, Persson, &Smeets.
London: AcademicPress.. (2004). Bluetooth security. Boston:
Artech House, Inc..
[2]. Agrawal, Jain, & Sharma. (2011). A
[15]. Gerkis. (2006). A survey of
wireless mesh networking security
technology and threats. SANS Institute.
[16]. Laeeq. (2011). Security
challenges & preventions in wireless
communications. International Journal of
Scientific & Engineering Research, 2(5).
[17]. Lashkari, Danesh, &Samadi.
(2009). A survey on wireless security
protocols (WEP, WPA, and
WPA2/802.11i). In Proceedings of the
2nd IEEE International Conference on
Computer Science and
[18]. Information Technology, (pp. 48-
52). IEEE.
[19]. Mahmoud. (2007). Cognitive
networks: Towards self- aware networks.
London: John Wiley &Sons..
[20]. McCabe. (2007). Network
analysis, architedture, and design (3rd
ed.). London: Elsevier Inc.
[21]. Olakanmi. (2012). RC4c: A
secured way to view data transmission in
wireless communication networks.
international Journal of Computer
Networks & Communications, 4(2).
[22]. Padmavathi&Shanmugapriya.
(2009). A survey of attacks, security
mechanisms and challenges in wireless
sensor networks. International Journal of
Computer Science and Information
Security, 4(1).
Journal of Computer Science &
Information Technology, 2(5).
[28]. Tachikawa. (2002). W-CDMA
mobile communication systems. London:
Wiley and Maruzen.
[29]. Thurwachter. (2002). Wireless
networking. Upper Saddle River, NJ:
Prentice Hall..
[30]. Wang & Poor. (2003). Wireless
communication systems: Advanced
techniques for signal reception. Upper
Saddle River, NJ: Prentice Hall..
[31]. Xiao, Chen, & Yang, Lin, & Du.
(2009). Wireless network security.
URASIP Journal on Wireless
Communications and Networking.
[32]. Sethi, K., Gupta, A., Gupta, G.,
&Jaiswal, V. (2019). Comparative
analysis of machine learning algorithms
on different datasets. In Circulation in
Computer Science International
Conference on Innovations in Computing
(ICIC 2017) (Vol. 87).
[33]. Sethi, K., Gupta, A., &Jaiswal,
V. (2018, December). Machine learning
based performance evaluation system
based on multi-categorial factors. In 2018
Fifth International Conference on
Parallel, Distributed and Grid Computing
(PDGC) (pp. 86-89). IEEE.

[23]. Prttig, Szewczyk, Tygar, Wen, & [34]. Sethi, K., &Jaiswal, V. (2022).
Culler. (2002). SPINS: Security protocols PSU-CNN: Prediction of student
for sensor networks, wireless networks. understanding in the classroom through
Dordrecht, The Netherlands: Kluwer student facial images using convolutional
Academic Publishers.. neural network. Materials Today:
Proceedings.
[24]. Schwartz. (2005). Mobile
wireless communications. Cambridge,
UK: Cambridge University Press..
[25]. Sen. (2009). A survey on wireless
sensor network security. International
Journal of Communication Networks and
Information Security, 1(2), 55-78.

[26]. Sklavos&Xinmiao. (2007).

Wireless security and cryptography:
Specification and implementation. Boca
Raton, FL: CRC Press..

[27]. Sreedhar, C., Verma,

&Kasiviswanath. (2010). Potential
security attacks on wireless networks and
their countermeasure. International