MAC filtering

Abstract: To improve Wake-on-LAN (WOL) functionality of a device, a Media Access Control (MAC) address filtering function may be implemented in the device's Ethernet physical layer (ePHY) block. When the ePHY detects a WOL frame, the MAC filtering function in the ePHY may perform address comparison between the MAC address associated with the device, and the MAC address contained in the WOL frame. Performing the MAC address comparison within the ePHY allows the main system components, such as the main SOC and other components to remain in standby mode (or sleep mode) until a MAC address match has been determined. Therefore, the main system components do not need to be rebooted every time the device receives a WOL frame, only when there is a match between the MAC address of the system and the MAC address contained in the detected WOL packet.

Abstract: Software Defined Networking (SDN) is the latest trend in the networking domain. In SDN, the control plane is decoupled from the data plane in network devices and controlled by the centralized controller using the OpenFlow Protocol. As the centralized controller does all the control functions, strong security support is mandatory. Firewall can be an effective means to protect the SDN controller from network security threats. The firewall rules can be predefined by using either the IP address or the MAC address filtering. In this paper, we propose a firewall implementation for SDN using the MAC filtering. Then, we compare the average packet delay performance for both IP filtering and MAC filtering firewall techniques. The results show that the security support (packet allow/deny) is pretty much the same in both types of firewall technique, whereas the MAC filtering firewall outperforms the IP filtering firewall for the delay performance analysis.

Abstract: Wireless Local Area Network (WLAN) is an alternative in overcoming cabling problems in a local network. Often wireless network security that is installed still uses vendor default settings such as SSID, IP Address, remote management, DHCP enabled, frequency channels, without encryption, even user or password for wireless administration. How does a strong WLAN security system work? The most common security system applied to wireless networks at this time is starting from securing access points by applying the MAC Filtering concept, using WPA / WPA2-PSK security keys, and RADIUS server authentication. To see the quality of wireless LAN network security, how do you analyze the test of the existing security system in the network. The method that can be used in evaluating wireless networks is by testing the system by simulating forms of attacks on wireless networks with the Penetration Testing method. By carrying out 4 stages of research using the penetration testing method (i) the planning stage, (ii) the discovery stage, (iii) the attack stage and (iv) the report stage, from the attack stage (Cracking The Encryption, Bypassing MAC Address, Attacking The Infrastructure and MITM ) using Kali Linux got the results of four types of attacks carried out, only one of which was failed, namely the cracking attack type of the encryption on the RADIUS server due to using captive portal authentication

Abstract: Wireless local area network (WLAN) has changed the paradigm of communication and become ubiquitous. As the number of devices connected to wireless is increasing, it is therefore, essential to find vulnerabilities in the security of wireless networks. In this research WLAN security vulnerabilities are exposed in real time. WLAN security techniques (MAC filtering, Hidden SSID and WPA2) available to residential users were practically exploited. Tenda WiFi wireless access point was set up with MAC filtering, hidden SSID and WPA2 security mechanisms in different combinations in such a way as to add an additional layer of security to previous configuration. Kali Linux version 2017.1 was used as a platform to exploit WLAN networks in real time. In this research, the sensitive information broadcasted by WLAN was utilized to carry out attacks on wireless networks. A practical demonstration of exposing vulnerabilities in MAC filtering, Hidden SSID with MAC filtering and WPA2-PSK with hidden SSID and MAC filtering security mechanisms of AP was carried out in real time. It was observed that the existing security mechanisms were vulnerable. Researchers have exploited many security mechanisms of WLAN focusing upon a single parameter of WLAN security at a time. However, in this work, the three available security mechanisms were cascaded to produce a three layer security mechanism i.e. WPA2 with hidden SSID and MAC filtering. This cascaded model was exploited in real time.