With the popularisation of WLAN,the attacks against wireless network are increasingly growing.Wireless fishing AP attack, through passive or active way,induces users to connect fishing AP,and then catches users’sensitive information,it is currently one of the abused attack modes.In light of this,we proposed an improved fishing AP attack detection method,by using diminishing variation of TTL value as well as comprehensively analysing the gateway and routing information,it realises validity detection on AP.Experimental results showed that this method can effectively detect the attacks including wireless fishing AP and wireless man-in-the-middle.%随着无线局域网应用的普及,针对无线网络的攻击方式也逐渐增多。无线钓鱼 AP 攻击通过被动或主动方式诱使用户连接钓鱼 AP,进而获取用户的敏感信息,是当前被滥用的攻击方式之一。针对这种情况,提出一种改进的钓鱼 AP 攻击检测方法,通过利用 TTL 值的递减变化,以及综合分析网关与路由信息,实现对 AP 的合法性检测。实验结果表明,该方法能够有效地检测无线钓鱼 AP 和无线中间人等攻击。
展开▼
