[Dailydave] Wireless spaces
Zack Payton
zpayton at gmail.com
Thu Sep 20 14:05:26 EDT 2007
I've heard of some wireless authentication systems that use the clients
triangulated position to decide whether or not to allow you on the network.
I think the US Senate uses a system much like this. Imagine being able to
insert an architectural layout drawn up in Visio into your AP and saying
anything outside the perimeter of the building won't be able to use AP.
Z
On 9/20/07, Dave Aitel <dave at immunityinc.com> wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Are any of the major vendors doing this?
>
> 1. Take any three wireless access points and have them each track
> client wireless signal strength. (This will map to physical space almost)
> 2. At the same time, have them track traffic type this client is doing
> and use this to generate a number of some sort.
> 3. Map these four things into a space and all your clients will be
> divided into "rooms" that you can draw bounding boxes around (much
> like Reliance HIDS did).
> 4. Do simple anomaly detection and you'll see a SILICA user in the
> parking lot stand out like a Suicide Girl in Utah.
>
> I think if you can tie the traffic clients generate with "where" the
> clients are, you'll get an interesting picture of things in general.
> You don't care in real world terms where they are, just where they are
> in the mathematical space.
>
> - -dave
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
>
> iD8DBQFG8qoNB8JNm+PA+iURAu1kAKDR4BJfFya+CqUFqgbNV5QCuhwH3QCglbNq
> X/jcsr5cCfbZ5+1sae7g47o=
> =mrwt
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Dailydave mailing list
> Dailydave at lists.immunitysec.com
> http://lists.immunitysec.com/mailman/listinfo/dailydave
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.immunitysec.com/pipermail/dailydave/attachments/20070920/697e78cf/attachment.htm
More information about the Dailydave
mailing list