D-Link DWC-1000 User Manual page 287

Wireless Controller
User Manual
Manag ed S S ID from a fak e manag ed AP : A h acker may s et u p an A P wit h t h e
s ame M A C ad d res s as o ne o f t h e man ag ed A Ps an d co n fig u re it t o s en d o n e o f t h e
man ag ed SSIDs . Th is t est ch ecks fo r a v en d or field in t h e b eaco ns wh ich is alway s
t ran s mit t ed b y man ag ed A Ps . If t h e v e n d o r field is n o t p res en t , t h en t h e A P is
id en t ified as a fake A P.
AP wi thout an S S ID: SSID is an o p t io n al field in b eaco n frames . To av o id
d et ect io n a h acker may s et u p an A P wit h t h e man ag ed n et wo rk SSID, b u t d is ab le
SSID t ran s mis sio n in t h e b eacon frame s . Th e A P wo u ld s till s en d p ro b e res p o n s es
t o clien t s t h at s en d p ro b e req u es t s fo r t h e man ag ed SSID fo o lin g t h e clien t s in t o
as s o ciat in g wit h t h e h acker's A P. Th is t es t d et ect s an d flag s A Ps t h at t ran s mit
b eaco n s wit h o u t t h e SSID field . Th e t es t is au t o mat ically d is ab led if an y o f t h e
rad io s in t h e p ro files are co n fig u red n o t t o s en d SSID field , wh ich is n o t
reco mmen d ed b ecause it d o es n ot p rov id e an y real s ecu rit y an d d is ab les t h is t es t .
Fak e manag ed AP on an i nval i d channel : Th is t es t d et ect s ro g u e A Ps t h at
t ran s mit b eacon s fro m t h e s o urce M A C ad d ress o f o n e o f t h e man ag ed A Ps , b u t o n
d ifferen t ch an n el fro m wh ich t h e A P is s u p p o s ed t o b e o p erat in g .
Manag ed S S ID detected wi th i ncorrect s ecuri ty : Du rin g RF Scan t h e A P
examin es b eaco n frames receiv ed fro m o t h er A Ps an d d et ermin es wh et h er t h e
d et ect ed A P is ad v ert isin g an o p en n et work, W EP, o r W PA . If t h e SSID rep o rt ed in
t h e RF Scan is o n e o f t h e man ag ed n etwo rks an d it s co nfig u red s ecu rit y n o t mat ch
t h e d et ect ed s ecu rit y t h en t h is t es t marks t h e A P as ro g u e.
Inval i d S S ID from a manag ed AP : Th is t es t checks wh eth er a kn o wn man ag ed A P
is s en d in g an u n exp ect ed SSID. Th e SSID rep o rt ed in t h e RF Scan is co mp ared t o
t h e lis t o f all co n fig u red SSIDs t h at are u sed b y t he p ro file as sign ed t o t h e man aged
A P. If t h e d et ect ed SSID d o esn 't mat ch an y co n figu red SSID t h en t h e A P is marked
as ro g u e.
AP i s operati ng on an i l l eg al channel : Th e p u rpose o f t h is t est is t o d et ect h ackers
o r in co rrect ly co n fig ured d evices t hat are o p eratin g o n ch an nels t hat are n o t leg al in
t h e co u n t ry wh ere t h e wireles s s y s t em is s et u p . No t e: In o rd er fo r t h e wireles s
s y s tem t o d et ect t his t hreat, t h e wireles s n et wo rk mu s t co n t ain o n e o r mo re rad io s
t h at o p erat e in s en t ry mo d e.
S tandal one AP wi th unexpected confi g urati on : If t h e A P is clas s ified as a kn own
s t an d alo n e A P, t h en t h e co n t ro ller ch ecks wh et h er t h e A P is o p erat in g wit h t h e
exp ect ed co n fig uratio n p aramet ers. Yo u co n fig u re t h e exp ect ed p aramet ers fo r t h e
285