The secured communication between server and Android phone creates the need of ... has a tool called Kies 2 (a commercial software) that allows the user to ...
WIFI ENABLED SMART ROBOT. Shashank U Moro. School of Mechanical and Building Science, VIT University, Vellore-632014, TamilNadu, India.
that person. We implement WiFi-ID on commercial off-the-shelf devices. We conduct ...... [1] Hack apple touch id. http://www.theverge.com/2013/9/22/4759128/.
higher cost networks for the automation and automotive industries. The use of NP ... support evolving networking services. ... limited programming interface and.
a file that can be downloaded by a remote server using a free. Cloud service ... real-time monitoring and data logging of patients' data across the cloud. Figure 1 ...
May 14, 2015 - WiFi-enabled mobile devices such as smartphones and tablets are com- monly used by both personal and business users for voice over IP ...
The requirements were based on lightweight design, flexible and ... connectivity to different handheld devices and laptop computers was successfully tested. The.
domains [2], they are not dynamically adapted according to patient's ... HONSearch is under consideration in order to register web documents already identi-.
apps. One of those apps is the Document Registry app which medical ... we call Semantic Reasoning service to get its three super-classes and sub-classes that.
Loading⦠Page 1. Whoops! There was a problem loading more pages. wifi network architecture pdf. wifi network architect
for Non-Residents (Off Campus Housing). **Note: You must be on campus in
order to register your computer system onto the network**. Connect your
computer ...
Dec 24, 2013 - The advantages of WiFi access. Advantage. Description. Widely deployed Infrastructure. WiFi hotspots are widely deployed in many urban ...
Sep 21, 2011 - entities. The major goal is to fulfill the lack of GPS coverage inside buildings with a more precise and/or cheaper alternative. ... server determines the location, stores it in a database and ... infrastructure and may prevent any att
... Michael Armbrust, Armando Fox, Rean Griffith, Anthony D. Joseph, Randy Katz, Andy ... [10] Emmanuel C. Ifeachor and Barrie W. Jervis (2008), âDigital Signal ...
Personal computer hardware. Hardware of a modern Personal Computer. 1.
Computer monitorMonitor 2. Motherboard3. Central Processing UnitCPU4.
Sektor Telematika Sub SeKtor Computer Technical Support. Kode Modul. TIK.
CS02.013.01. Judul Modul: Memasang Perlengkapan Komputer. Buku Informasi.
Data consists primarily of No Deco, multi level, repetitive dives at sea level. It im-
poses restrictions for repetitive Deco dives, considered more risky.
Feb 6, 2018 - access of LTE, while provisioning undegraded QoS to the stream [4]. ... ger backoff timer randomly and uniformly within a contention window ...
The RAD750 computer includes 36 MB of radiation hardened. SRAM, 4 MB .... Software support for the Consultive Committee for Space Data Systems (CCSDS).
(Hauptmann and Rudnicky, 1990). ..... rich Germann, Jesús González-Rubio, Robin Hill, ... Khadivi, Shahram, Richard Zens, and Hermann Ney. 2006.
May 13, 2005 - Defence Research and Development Canada - Toronto ...... regarding the development of swift teams (i.e., ad-hoc teams) in an environment of ...
Apr 5, 2017 - Network slicing, wireless network virtualization, software defined ... WNV, the following benefits can be achieved: i) resource utilization can be ...
Internet and return a solution to the user either interactively or by e-mail. This ... sender sender ... NEOS System Monitor e-mail. WWW receiver extractor parser.
Mar 21, 2011 - [1] Ahrenholz, J., Danilov, C., Henderson, T., Kim,. J., and Works, B. Core: A real-time network emulator. In Proeedings of the IEEE MILCOM.
Audio/ video recording, active sessions of web sites monitoring, grabbing ... work primarily deals with Building the Wi-Fi enabled monitoring Application which serves as the basis for an .... Wi-Fi Protected Access 2 is an enhancement to WPA and fully ..... protocolsâ, Proceedings of the 1st international conference on Forensic.
4 International Conference on Eco-friendly Computing and Communication Systems
Wi-Fi Enabled Personal Computer Network Monitoring System Using Smart Phone With Enhanced Security Measures Anuja Aroraa, Apoorva Kherab a b
A-10,Sector-62, Jaypee Institute Of information Technology, Noida, Uttar Pradesh 201307 ,India A-10,Sector-62, Jaypee Institute Of information Technology, Noida, Uttar Pradesh 201307 ,India
Abstract In today’s Scenario, Remote Monitoring is a fascinating research aspect of mobile computing technology. In this research paper, our prime focus is on the Personal computer remote monitoring system. Another challenging task is the security while sharing data in remotely monitoring PC or handheld devices over Wi-Fi, 3G, and Bluetooth. An application model is proposed for Secure Personal Computer Network Monitoring System. The proposed application model is efficiently able to communicate and monitor the working between handheld devices and the Personal Computer over Wi-Fi using handheld devices. Monitoring the current state of any machine in the network is possible by fetching the current state of machine on android phone. In the proposed application model mobile devices are able to watch the running processes of personal computer(s). In the proposed and implemented application model, whatever information the handheld device (android phone) requests pertaining to the network is passed on by the server .We executed and tested the designed monitoring system for set of operations such as play-stop-pause, Audio/ video recording, active sessions of web sites monitoring, grabbing files, create or edit word documents, edit and sharing of important excel files, making and sharing presentations, Logging Off and Shutting Down the Personal Computer. A secured interaction, under already existing, wireless security protocols is accomplished by implementing a security algorithm to prevent internal attack by addressing Hole 196 Vulnerability of WPA/WPA2. Implemented the symmetric encryption algorithm based on stream ciphers provides confidentiality of the message between the Android Phone and the server. Keywords: Personal Network Monitoring System; symmetric encryption; Hole 196 vulnerability; WPA/WPA2
1. Introduction The growing popularity and spread of smart phones has changed the design of computer systems as they were known in recent years. With this evolution comes the need to integrate these devices with other devices so that these
can take actions and monitor interaction on mobile devices. With today’s and tomorrow’s wireless technologies, such as IEEE 802.11, BlueTooth, RF-Lite , Wifi, 3G ,and WLAN, handheld devices are in close and interactive environment. Many environments, including offices, meeting rooms, automobiles and classrooms contain computers and computerized appliances, and the smart homes of the future which have ubiquitous1 embedded computation. This Research Work deals with building an application model in which Wi-Fi enabled android devices act as a monitor communicating with a server machine in order to retrieve current state of machines under supervision inside the network. The proposed android application model is implemented to monitor and probe various operations on Computers/Laptops connected over a Wi-Fi Network. Such kinds of system are already in work but have two main imperfections - More than single devices monitoring at same time; and Monitoring of devices in secure manner. The work primarily deals with Building the Wi-Fi enabled monitoring Application which serves as the basis for an enhanced security algorithm to address the WPA2 Vulnerability. Thus, a symmetric stream block cipher algorithm deals with providing internal security between the server and the android phone. The Android Application works over Wi-Fi, which is secured by wireless security Protocol WPA210. Wireless networks are inexpensive and provides mobility but they are prone to a variety of threats like denial of service, replay attacks, eavesdropping and data modification5,12. WPA2 completely implements IEEE 802.11i12 and has addressed the vulnerabilities of previous protocols Wired Equivalent Privacy (WEP) and Wi-Fi Protected Access (WPA)8. WPA2 has implemented block cipher AES to provide stronger data encryption but it is still vulnerable to several attacks due to transmission of unencrypted management and control frames and sharing of Group Temporal Key (GTK) among peers connected to wireless network9,10. The secured communication between server and Android phone creates the need of proposal of a security algorithm – simple as well as efficient to create a trusted platform under an already existing umbrella of wireless security protocol such as WPA /WPA2. The rest of the paper is organized as follows. Section2 acquaints the related work done in the field of personal network monitoring and discussed various protocols like WEP5, WPA5 and WPA29,10 in order to measure which one will suite best for wireless LANs. Section3 presents the projected architecture and planned approach to provide a secure and reliable monitoring environment and depicts functionalities at application level like shut Down, Playing music, notification on breach of security and capturing snapshots of current state of machine . Section 4 presents the Results and Performance Measurement of the Work. Section 5 provides the conclusion and possible enhancements as Future Work. 2. Related work done 2.1. Overview and flaws of existing Android Network Monitoring Remote Applications In the scope of remote control there are several projects and initiatives designed to allow remote control between devices. Although most of the architectures have the objective of controlling mobile devices over a communication medium, there are some initiatives that aim to control PC’s. Samsung, one of the manufacturer of Android devices, has a tool called Kies 2 (a commercial software) that allows the user to upgrade the firmware, control the contacts, music, photos and videos and control the remote system. But, it does not provide features to monitor and control various applications, processes, and services simultaneously. A popular similar tool is TeamViewer2. TeamViewer is a remote desktop and collaboration application that is available Windows, Mac, Linux, Android, and iOS But, TeamViewer requires the consent of the machine being connected to (authentication) before it can share the desktops over Internet . Thus, the remote access to a computer to share information is One-Sided. At a time, two parities cannot share their desktops simultaneously. Another similar kind of application specifically for Android phone is PocketDroid3. PocketDroid provides functionality to connect to any computer having Server Application running on it to control a Target PC. One machine acts as the server and the Android Phone as the client. Hence, remote control of n-machines is not achieved using this application. PocketCloud Remote RDP / VNC 2 is another robust application to remotely perform critical tasks such as making presentations, collaborating with friends and colleagues, editing documents (such as spreadsheets) over the air. In addition to this, According to 4, there are different types of possibilities establishing connectivity between the Target PC and the Mobile Client such as USB Interface, Java Sockets, and Android Debug Bridge Client. Here, proposed monitoring system is developed in a way that it is able connect number of devices at a time in a secured environment.
2.2. Overview of Wireless Security Protocols Wireless communication medium is, by its nature, vulnerable to variety of threats, including unauthorized access, eavesdropping of communication, modification and repetition of data, denial of service, and fabrication of data 2. Therefore, a security protocol that provides effective authentication, authorization, data encryption and means for handling modification and repetition of data, is essential. WEP is an optional security mechanism for WLANs trying to provide a security level that is comparable to traditional wired networks5. In practice, WEP provides WLAN security through simple authorization and data encryption. It uses the Rivest Cipher 4 (RC4) stream cipher as an encryption and decryption algorithm. RC4 uses a pseudo-random number generator (PRGN) to generate a bit stream (also known as a key stream) from a WEP seed, which is a concatenation of 24-bit initialization vector (IV) and 40-bit key. The CRC-32 algorithm, which is used by WEP to generate the Integrated Check Value is cryptographically insecure because of its linearity7. The primary drawback of WPA is Authentication forging. An intruder can eavesdrop a successful challenge-response procedure and forge an authentication by determining the used key stream. In order to develop the security of 802.11 and react to the several weaknesses of WEP, 802.11i an amendment2 was composed to the original 802.11 standard, suggesting the use of Temporal Key Integrity Protocol (TKIP) or Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP).WPA uses stronger initialization vectors (48 bits) and encryption keys (128 bits).The hash functions used in TKIP makes it Wi-Fi Protected Access 2 is an enhancement to WPA and fully vulnerable to threats during hash collisions. implements the security mechanisms of 802.11i. Both WPA and WPA2 apply 802.1X framework to handle the authentication, but the main difference between them is within the data encryption. WPA2 introduces a new encryption protocol called CCMP, which is based on Advanced Encryption Standard (AES). In the WPA2 protocol standard two types of keys are used for data encryption: the Pair wise Transient Key (PTK) and the Group Temporal Key (GTK) 10.A recent Vulnerability discovered in WPA2 is Hole 196 Vulnerability 9 .Group Temporal Key is shared among all authorized clients of the network. A malicious authorized client may inject spoofed GTK packets in the network. Thus, an authorized user can sniff and decrypt the data of other authorized users and may install malware compromising other user’s device. A comparison of the protocols based on the cryptographic attacks possible on WEP, WPA and WPA2 shows that WPA2 is the least vulnerable since it uses AES11.The feature based comparison of WEP, WPA, WPA2 is presented in Table1. The Denial of Service is possible by an inside attacker due to the sharing of Group Temporal Key. Table 1. Comparison of Wireless Security Protocols Security Threat
Any type of computing platform like: Personal Computer, Server, Personal Digital Assistant (PDA), Printer and Mobile phone can be a Trusted Platform. A Trusted Platform is particularly useful as a connected and/or physically mobile platform, because the need for stronger trust and confidence in computer platforms increases with connectivity and physical mobility13. A Smart Card or other handheld computer can be programmed to interrogate a Trusted Platform (local or remote), retrieve identity information and integrity metrics13, and compare the identity and integrity metrics with expected values. 3. Projected Architecture and Approach The projected architecture of interaction between the Android phone , the server and the clients is shown in figure1 . The mobile send a request to WTA holding its own security measures, which further forwards the request to the Monitor/ Server .The server listens request and takes appropriate action or issues request to concerned machine(s) over the network. The proposed monitoring system shares remote desktop screen using Wi-Fi. The captured screen is the image snapshot and current running processes of the current system(s) under observation. The consequence of retrieving the state of machine in such private networks is to probe some service, such as Play-stoppause recorded Audio/ video, Log Off or Shut Down on the client machine. These interactive communications between the Computers and the Smartphone are routed through the server. The Application requires a trusted platform (generally the server) to retrieve information anonymously from the computers connected over Wi-Fi.. The work is divided into two main modules: Building the Application Model for personal network application monitoring and Encryption Algorithm. It requires IP Address of the intended computer machine to monitor and control at application level. Indeed, an efficient security measure is required in any kind communication. In our research work, we are concerned about those security measures also and implemented to get a secure system. The Security Management of the application comprises of Symmetric Security Algorithm, a Stream Block Cipher Algorithm which is fast as well as secure.
Fig.1. Projected Architecture of Personal Network Monitoring System
The machines in the network are connected using Wi-Fi secured by WPA2. Each client is an authorized user in the network possessing the Group Temporal Key. A Server in the network handles and routes all the requests received by Android Phone. The mobile send a request to Wireless Telephony Application (WTA) holding its own security measures, which further forwards the request to the Monitor / Server .The server listens request and takes appropriate action or issues request to concerned machine over the network. A blend of technologies has been used -Microsoft Visual Studio, Eclipse (Helios 1.2.3) and SQL Server. Client Machine Accessibility: The Android Emulator/Android Phone is used to select one of the radio buttons in its layout to perform the action command issued by the user. Fetch Client machine’s current status: The Database tables corresponding to the operations are updated with the IP address (parameter) of that particular machine and requested service is executed. Access Applications running on Client Machine: The Application performs the window operations such as getting current processes, playing in VLC media player, Opening Internet Explorer, Storing Image, Switching off system. Monitoring N Machines: The Server of the network retrieves the current state from the machine requested from the Android using its IP. Thus , n machines can be connected in the network ,where n>1.The probing commands can be issued and executed within a time-gap of approximately 7 seconds. Thus, monitoring of more than 1 machine is achieved at a time.
3.2. Encryption Algorithm: Solution to WPA2 Vulnerability The need of preventing a breach of internal security by an authorized user within the Wi-Fi network is addressed by proposing an algorithm to Hole 196 9 Vulnerability of WPA2. The algorithm is based on stream cipher which implements XOR operation to generate cipher text by utilizing substitution box values. This encryption algorithm is based on XOR operation 5 .The steps of encryption algorithm are mentioned as follows. 3.2.1. Calculate Passkey Numeral: • • •
Random number between 1024 and 999999 Length of number is calculated Sum of ASCII value of digits of number are calculate Passkey Numeral= Numeral Length (obtained in step b.) + Sum of ASCII value of digits (step c).
a0= Sum of digits at even positions of passkey a1= Sum of digits at odd positions of passkey a2= Product of digits of passkey numeral a3= (Passkey numeral) mod (256)
3.2.3. Calculate b0, b1 and b2 parameters: In order to compute b0 value, encryption parameters EP1, EP2, EP3 and EP4 are required: • • •
3.2.5. Calculate s-box values: S-box computation has been mentioned in Table2. Table 2.S-box Computation (EP1 XOR c0) * c0
(EP1 XOR c1) * c0
(EP1 XOR c2) * c0
(EP1 XOR c3) * c0
(EP2 XOR c0) * c1
(EP2 XOR c1) * c1
(EP2 XOR c2) * c1
(EP2 XOR c3) * c1
(EP3 XOR c0) * c2
(EP3 XOR c1) * c2
(EP3 XOR c2) * c2
(EP3 XOR c3) * c2
(EP4 XOR c0) * c3
(EP4 XOR c1) * c3
(EP4 XOR c2) * c3
(EP4 XOR c3) * c3
3.2.6. Calculate Message Parameter: Message Parameter = Passkey Numeral (obtained in step 1) + Randomly generated key between 1024 and 9999 + Average of a0, a1, a2 and a3 parameters (obtained in step 2) + Average of b0, b1 and b2 parameters (obtained in step 3) + Average of c0, c1, c2 and c3 parameters (obtained in step 4). 3.2.7. Message Encryption: • • • • •
Reverse the plaintext to be encrypted to obtain Partial Message Encryption1 (PME1). Perform PME1 XOR S-box [index] (obtained in step5) operation to obtain Partial Message Encryption (PME2). Perform PME2 XOR Message parameter (obtained in step 6) operation to compute Partial Message Encryption 3 (PME3). Reverse binary/ hexadecimal value of PME3 to compute Partial Message Encryption4(PME4) PME4 is split into group of 8 bits and converted into corresponding ASCII character to form encrypted text and is appended to file along with text delimiter.
In addition to the security provided by WPA2, the algorithm generates the random key which is used to encrypt the text sent by the mobile to the server. The server on receipt of this text decrypts. The encrypted text contains the destination IP address on which an action has to be monitored / performed. Since, the server and the mobile both need to share this key and the encryption algorithm, no other attacker can attack due to the randomness of the algorithm.
4. Results The Personal Network Monitor has an Android Emulator ,which contains buttons to requuest processes and r will store the command to be executed and itts related action in perform the intended action. The database relation the tables: Android Emulator, Image Shot Appplication, Remote System Application, and Encryptioon Algorithm. 4.1. Personal computer network monitoring system results The Application Model requests and perfforms the appropriate action with a very low latency. It supports higher versions of Android Smart Phone that is Top T Compatibility. The system is maintainable in fuuture for any new progress or development and any attributes of o software can be modified without any complexity inn the programming or interface. Various compatibility issues have h been checked for audio size file, different resolution of images captured, .mp3, .avi audio formats, browserrs for opening website. Figure 2 is Main Page with Radio R Buttons are provided for the administrator to select the appropriate a request and thereby action. The module coontains options to Open a Website , Play Songs , Log Off , Switch Off, Get a snapshot Image and Get processses of the remote machine. The parameter IP Address is speciffied in each operation.
Fig.2. Snapshots of running of designed Applicatiion Model a.) All application preview on phone. b) Connectivity thhrough IP address
4.2. Encryption Algorithm Results The IP Address is encrypted and sent froom android to server, where it gets decrypted. IP Adddress, passed as a parameter by android user, is encrypted to a different d cipher text in every session due to dynamic generation g of key.
4.3. Performance Evaluation We are measuring performance of designed model at various levels. Firstly, Personal Monitor Network has extended the interaction to ‘n’ number of Computer Machines with server as the only trusted/authenticated platform to perform the request from an android phone. Secondly,the performance of log off was measured using a timer, since a batch file is executed. Table3 depicts the time taken by executing functionalities over Wi-Fi. Capturing the State of a machine, simple by Watching its Running Processes is less time consuming. The Image Shot Module‘s performance can be improved by reducing the interval time between two successive captures. However, the interval time is set to 10000 ms to compensate for the latency in retrieving it on an android system. The Read File , Play Audio and Open Website takes reasonable time indicating that a computer system can be probed almost immediately. The execution time of Log off functionality is more, since it requires executing Windows Batch File. Table 3.Performance of Application Module Module
Time Taken(in seconds)
Watch Running Process
12.345
Get Image Snapshot
47.830
Open Website
34.318
Read word File
17.465
Play Audio
23.492
Access excel file
06.321
Log Off(Measured By Timer)\
38.100
5. Conclusion and Future work Overall, the application till now works well when a single Laptop is chosen as the server, the client and the controller. The functionality of the modules – actions and requests has been implemented. While trying to implement the “ImageShot” Module in Java as an android activity, various threads running introduced high latency and there was a loss of performance and efficiency initially. By making Image Shot as a separate application Project, the concurrent thread complexity was reduced but the overhead of CPU usage increased. However, the project worked well when ImageShot project was run Concurrently with different time intervals set for the timer. Hence, the image was updated and refreshed without performance overhead and was easily displayed in the Emulator using layout. The audio file formats –were run in VLC media player. The audio file size did not play a significant role. The file system functionality includes reading a remote text file. The numerous functionalities which can be included are writing in notepad, reading the file from other folders not restricted by users. On application level, access rights of the files can be changed which would require more understanding of the File System at hardware level and moving on to Kernel of the Operating System. The model, at present can be run for 10-15 machines at a time, considering the efficiency of the machines (laptops) being used and the battery usage of the Android Mobile Phone. The system can be scaled to become a commercial model by using “GPRS” instead of Wi-Fi. The encryption algorithm generates a random key every time from the substitution box constructed and finds a different encrypted text for the same IP Address. . A solution to overcome the problem of appending the encrypted text by an inside attacker is intended to be provided. The stream cipher using XOR operation prevents one to one mapping creating confusion and diffusion. The algorithm thus provides a solution to the WPA2 shortcoming and exploits the use of s-box similar to AES to address the issue. Thus, a trusted connection is formed between the android phone and the server in the network for monitoring or supervising the client machines.
References 1. Angel Gonzalez Villan, and Josep Jorba Estev, “Remote Control of Mobile Devices in Android Platform” IEEE transactions on Mobile Computing,2011. 2. Lingyan Bi, Weining Wang, Haobin Zhong, Wenxuan Liu, "Design and Application of Remote Control System Using Mobile Phone with JNI Interface", The 2008 International Conference of Embedded Software and Systems Symposia (ICESS2008), 2008, pp.416-419. 3. Chaitali Navasare, Deepa Nagdev + and Jai Shree Department of CSE, Bharati Vidyapeeth`s College of Engineering for Women, Pune, Maharashtra, India, “PocketDroid –A PC Remote Control ”, 2012 International Conference on Information and Network Technology (ICINT) IPCSITvol.3,IACSI,Press,Singapore,2012. 4. Qadeer, M.A.; Agrawal, R.; Singhal, A.; and Umar, S, “Bluetooth Enabled Mobile Phone Remote Control for PC”, International conferences on Advanced Computer Control, 2008.IEEE DOI 10.1109/ ICACC .2009. 5. Liam Kiemele ,” Wireless Security” , International Journal Of Computer Applications ,Vol 20-02” , March 2010. 6. IEEE Std. 802.11 -2007, “Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications”, IEEE Computer Society, June 2007. 7. IEEE Std. 802.11i, “Medium Access Control (MAC) Security Enhancements”, IEEE Computer Society, June 2011. 8. H. Bulbul, I. Batmaz, and M. Ozel, “Wireless network security: comparison of WEP (Wired Equivalent Privacy) mechanism, WPA (Wi-Fi Protected Access) and RSN (Robust Security Network) security protocols”, Proceedings of the 1st international conference on Forensic applications and techniques in telecommunications, information, and multimedia and workshop, no. 9, 2008. 9. Dr.R.N Ratojiya , Pridhi Arora “ Enhancing Security of Wireless Networks” , Internation Journal of Computer Applications , June 2012. 10. WPA2 Hole 196 Vulnerability : Exploitation and Remediation Strategies , A White Paper by AirTight Networks , 2011. 11. A. Lashkari, M. Danesh, and B. Samadi, “A Survey on Wireless Security protocols (WEP, WPA and WPA2/802.11i)”, 2nd IEEE International Conference on Computer Science and Information Technology, pp. 48-52, August 2009. 12. O. Sarmiento, F. Guerrero, and D. Argote, “Basic Security Measures For IEEE 802.11 Wireless Networks”, Ingenieria e investigacio, pp. 8996, vol. 28, issue 002,2012. 13. Zhidong Shen Xiaoping Wu,” A trusted Computing enabled Mobile Agents Environment”, International Conference on Computer Science and Software Engineering , 2008. 14. Ju Wang, Waling Wang , “Secure Smart Environments : Challenges in Pervasive Computing” ,International Journal of Compute Science, Vol-20-2, April 2011.
