Research On Attack And Detection Technology Of Wireless Phishing Access Point

With the maturity of WiFi technology and the popularity of mobile devices,mobile devices accessing the Internet through public WiFi hotspots has become one of the main access methods of data access.The openness of WiFi makes it vulnerable to rogue access point(RAP)attacks.Phishing AP is installed by the attacker for malicious purposes,and connected to the Internet through the existing legal AP nearby.By inducing users to connect,and then steal the user's data,resulting in user data privacy leakage or property loss.Therefore,how to detect phishing AP is of great significance to protect the security of WiFi network.In view of the above problems,this paper makes an in-depth study on wireless phishing AP attack and detection technology.The main work of this paper is as follows:(1)This paper introduces the architecture of WLAN,analyzes the related principles of wireless phishing AP,including the construction principle and attack principle.Secondly,the research status of wireless phishing AP detection technology is introduced,and the existing detection technologies are classified and compared.(2)In this paper,the attacker's attack mode against the wireless access point device is given,and a phishing attack platform is built.According to the wireless attack technology,a wireless attack scheme is designed,which realizes the functions of wireless information sniffing,phishing AP building,wireless device attack and wireless information interception.It provides an experimental basis for the subsequent phishing AP detection experiments.(3)In this paper,we propose a fishing AP detection method based on multiple features.Firstly,the static feature detection is used to filter out the conventional fishing AP,and the dynamic feature is used to detect the suspicious AP which is difficult to judge,so as to improve the accuracy and efficiency of the detection method as a whole.For static feature detection,first sniff the target AP,capture the beacon frame,extract the static feature information from it,and then match the static information with the feature information in the white list collected in advance.For dynamic feature detection,the dynamic feature information is extracted by analyzing the characteristics of fishing AP.A distributed sensing method is proposed to simplify the data acquisition process.By using Ada Boost ensemble learning method and voting combination strategy,the classification accuracy and generalization ability of the global classifier are effectively improved.In a word,the detection method of phishing AP based on multi features proposed in this paper meets the detection requirements of wireless phishing access points in the current environment,and achieves the expected purpose.It has certain scientific research value and significance..