Type of Document Master's Thesis Author Moyers, Benjamin Author's Email Address firstname.lastname@example.org URN etd-07302009-154829 Title Multi-Vector Portable Intrusion Detection System Degree Master of Science Department Computer Engineering Advisory Committee
Advisor Name Title Tront, Joseph G. Committee Chair Marchany, Randolph C. Committee Member Schaumont, Patrick Robert Committee Member Keywords
- Intrusion Detection
- Bluetooth Security
- Wireless Security
- Mobile Device Security
Date of Defense 2009-07-30 Availability unrestricted AbstractThis research describes an intrusion detection system designed to fulfill the need for increased mobile device security. The Battery-Sensing Intrusion Protection System (B-SIPS)  initially took a non-conventional approach to intrusion detection by recognizing attacks based on anomalous Instantaneous Current (IC) drainage. An extension of B-SIPS, the Multi-Vector Portable Intrusion Detection System (MVP-IDS) validates the idea of recognizing attacks based on anomalous IC drain by correlating the detected anomalies with wireless attack traffic from both the Wi-Fi and Bluetooth mediums. To effectively monitor the Wi-Fi and Bluetooth mediums for malicious packet streams, the Snort-Based Wi-Fi and Bluetooth Attack Detection and Signature System (BADSS) modules were introduced.
MVP-IDS illustrates that IC anomalies, representing attacks, can be correlated with wireless attack traffic through a collaborative and multi-module approach. Furthermore, MVP-IDS not only correlates wireless attacks, but mitigates them and defends its clients using an administrative response mechanism.
This research also provides insight into the ramifications of battery exhaustion Denial of Service (DoS) attacks on battery-powered mobile devices. Several IEEE 802.11 Wi-Fi, IEEE 802.15.1 Bluetooth, and blended attacks are studied to understand their effects on device battery lifetimes. In the worst case, DoS attacks against mobile devices were found to accelerate battery depletion as much as 18.5%. However, if the MVP-IDS version of the B-SIPS client was allowed to run in the background during a BlueSYN flood attack, it could mitigate the attack and preserve as much as 16% of a mobile device’s battery lifetime as compared with an unprotected device.
Filename Size Approximate Download Time (Hours:Minutes:Seconds)
28.8 Modem 56K Modem ISDN (64 Kb) ISDN (128 Kb) Higher-speed Access BEN_MOYERS_THESIS.pdf 7.18 Mb 00:33:14 00:17:05 00:14:57 00:07:28 00:00:38
If you have questions or technical problems, please Contact DLA.