Design of Multithreaded Security Algorithm using Session Keys to Secure Initialization Vector(IV) for Enhancing the Wireless Protocol WEP

Abstract

The 802.11 standard defines the Wired Equivalent Privacy (WEP) and encapsulation of data frames. It is intended to provide data privacy to the level of a wired network. WEP suffered threat of attacks from hackers owing to certain security shortcomings in the WEP protocol. Lately, many new protocols like WiFi Protected Access (WPA), WPA2, Robust Secure Network (RSN) and 802.11i have come into being, yet their implementation is fairly limited. Despite its shortcomings one cannot undermine the importance of WEP as it still remains the most widely used system and we chose to address certain security issues and propose some modifications to make it more secure. In this paper we have proposed a modification to the existing WEP protocol to make it more secure. We achieve Message Privacy by ensuring that the encryption is not breached. The proposed enhancements attempt to rectify the vulnerabilities to enhance the WEP with Private IV and Session Time for improved authentication process. In the proposed algorithm we can use all possible 224 different IVs without making them predictable for an attacker, eliminates the IV collision ensuring Message Privacy that further strengthens security of the existing WEP.

Reference

• N.Borisov, I. Goldberg, and D.Wagner. Intercepting mobile communications: The insecurity of 802.11. In MOBICOM 2001, Rome, Italy, July 2001.
• Jim Geier, “802.11 WEP: Concepts and Vulnerability”, http://www.wifiplanet.com/tutorials/article.php/1368661
• “An Examination of Security Algorithm flaws in Wireless Networks”, University of Maryland,, OCT 2004
• J.R.Walker. Unsafe at any key size; an analysis of the WEP encapsulation. IEEE Document 802.11-00/362, Oct 2000.
• W.A.Arbaugh, N.Shankar, and Y.J Wan. Your 802.11 wireless network has no clothes. In IEEE International Conference on Wireless LANs and Home Networks.
• J.Edney and W.A.Arabaugh, “Real 802.11 Security Wi-Fi Protected Access and 802.11i”, 2004, Pearsons Education Inc.
• William Stallings, Cryptography and Network Security, Principles and Practices”, 3rd Edition, 2003, Pearsons Educations.
• A.Stubblefield, J.Ioannaidis, and A.D.Rubin. Using the Fluhrer Mantin and Shamir attack to break WEP. ACM Transactions on Information and Security Security, Vol. 7, No. 2, May 2004, Pages 319-332.
• Khaled M. Suwais and Azman Bin Samsudin, High Performance Multithreaded Model for Stream Cipher, IJCSNS International Journal of Computer Science and Network Security, VOL.8 No.3, March 2008.
• N.Chandran, D.Sampath. Strengthening WEP Protocol for Wireless Networks using Block Chaining Algorithm with Variable Encrypting function Mechanism. 2004 IEEE Sarnoff Symposium on Advances in Wired and Wireless Communications, Princeton, NJ, USA.
• D.Purandare, R.Guha. Enhancing Message Privacy in WEP. To appear in International Workshop on Wireless Information Systems, ICEIS 2005, Miami USA.
• . Hisham A. Kholidy, Khaled S. Alghathbar, “Adapting and accelerating the Stream Cipher Algorithm "RC4" using "Ultra Gridsec" and "HIMAN" and use it to secure "HIMAN" Data”, Journal of Information Assurance and Security 4 (2009) 474-483.
• Atul Kahate, “Cryptography & Network Security “, Tata McGraw Hill, 2003.
• Jim Geier, “802.11 WEP: Concepts and Vulnerability”, http://www.wifiplanet.com/tutorials/article.php/1368661

Index Terms

Key words