Research On Phishing Attack And Detection Defense Technology Of The WiFi Network

In recent years,with the continuous improvement and development of wireless LAN technology,wireless WiFi network has been widely applied,occupying half space of the Internet mobile access layer and meeting the urgent need for mobile access to the Internet.The continuous improvement of the wireless network protocol(IEEE 802.11 protocol cluster)effectively protects the user's data in the link layer in security,which makes it difficult for attackers to steal user information through deciphering attack.But this guarantee can not cope with the phishing attach under the wireless WiFi network,which is called wireless phishing attach in short below and has become one of the main threats to the security of the wireless WiFi network,threatening personal information security and property safety.In view of the above problems,this thesis studies the phishing attacks in wireless WiFi networks,the detection methods and the prevention measures of wireless phishing attacks and the main research work in this thesis is as follows:(1)Systematic research and analysis are carried out aiming at the ARP deception attack,pseudo AP attack,DNS deception attack,DNS hijacking attack,etc.in the existing wireless phishing attacks.(2)This thesis uses a detection method by sending ARP request in active in the light of the ARP deception attack in the wireless phishing attack,which effectively improves the detection efficiency.This thesis also puts forward an optimized detection way using HttpDNS to pick up the result of domain name resolution actively aiming at the DNS hijacking attack and DNS deception attack in wireless phishing attack,which solved the high false alarm rate of traditional detection method.Routing attack,a new way to realize wireless phishing attack,is proposed,whose feasibility is demonstrated by experiments and an active detection method is put forward based on TTL,the method achieve effective detection and value by in-depth analysis of routing attack principle.(3)This thesis proposes feasible detection measures and prevention measures aiming at the wireless phishing attack carried out by ARS deception + DNS deception,pseudo AP + DNS hijacking + DNS deception,pseudo AP + routing attack,etc.by supplementing and perfecting the proposed measures and methods combing existing detection methods and prevention measures.According to the method and measures,this thesis designs and realizes the detection and defense software based on Android platform which is tested by building the environment of wireless phishing attack.Finally,the test data show that the detection and defense software can effectively cope with the wireless phishing attacks implemented by a variety of attacks,and protect user data in security.