ISSN 1000-1239 CN 11-1777/TP

Journal of Computer Research and Development ›› 2018, Vol. 55 ›› Issue (7): 1440-1450.doi: 10.7544/issn1000-1239.2018.20180087

Special Issue: 2018物联网安全专题

Previous Articles     Next Articles

Home Wireless Router Protection Method Based on Cyber Deception

Liu Qixu1,2, Xu Chenchen1,2, Liu Jingqiang1, Hu Enze1,2, Jin Ze1,2   

  1. 1(Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093); 2(School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049)
  • Online:2018-07-01

Abstract: With the rapid development of technologies on smart mobile devices, Internet and Internet of things, wireless routers have become the first choice for home networking. However, there are so many security issues on home wireless routers that the routers and the smart devices accessing them face great security risks. On the basis of the analysis and conclusions on the hardware, firmware, configuration management and communication protocols of wireless routers, a defense method for home wireless routers based on cyber deception is proposed, which can solve part of the security problems of wireless routers. Attacks can be misleaded by adding cyber deception method into the router system. On detecting attacks over HTTP, the suspected attack traffic is directed to the shadow server, which in turn reduces the security risk of the wireless router and provides data support for further works on attack forensic analysis and attacker traceability. OWCD, the wireless router defense framework prototype system, is designed and implemented based on OpenWrt and is deployed in Phicomm K1 wireless router for testing. The experimental results show that OWCD can effectively combat attacks on wireless routers such as weak password, CSRF, command injection, etc., and thus is an effective and feasible protection method.

Key words: network attack, network deception, traffic traction, shadow system, wireless router security

CLC Number: