1. TIDS - WLAN Intrusion Detection System
2. MAD - Fuse based Distributed Network File System implemented on User Mode Linux
3. Characterization of interference among orthogonal channels in multi-radio 802.11 g Wireless Mesh Networks
4. NACHOS: Not Another Completely Heuristic Operating System
5. CISCO Certification on Wireless LANS
1. TIDS - WLAN Intrusion Detection System
1. MAC address spoofing detection
Based on the Sequence number (part of IEEE 802.11 standard frame format) analysis
2. Sniffer (Promiscuous mode) detection
Using ARP andICMP techniques to detect sniffers like Ethereal, airsnort etc.
3. DoS attack (Deauth/ Disassoc flood) detection
4. Rogue AP detection
5. Network mapper : Shows all active clients along with their connecting APs and also nodes operating in ad-hoc mode.
5. Monitoring unsolicited Microsoft LAN sharing activity in hotspot environments.
6. Capable of monitoring multiple channels simultaneously using "monitor mode".
7. Support for CISCO Aironet, Linux- Wlan-ng and Orinoco Drivers.
TIDS was integrated on a Linksys Wireless-G 2.4 GHz Router (WRT 54G) using OpenWRT firmware. I also built up a demo lab to show typical attacks and how to implement countermeasures comprising of 2 Access Points (CISCO, Linksys), 2 Laptops (Fujitsu E-series Lifebook, Dell Inspiron) , a desktop PC and a CISCO hub. CISCO Aironet 350 series & Lucent Wavelan Silver PCMCIA adapter cards were used . Several TIDS enabled monitoring nodes were placed near the APs, to monitor the wireless medium and sending intrusion reports to a central server, which ran Snort a Layer-3 IDS to detect other intrusions.
2. MAD - Fuse based Distributed Network File System implemented on User Mode Linux
MAD is a distributed network file system, designed for a scenario with a large number of volatile storage block servers, with temporary storage space allocation and a limited number of non volatile storage blocks. The system was designed with a focus on reliability, robustness, fault tolerance and scalability. MAD is a novel file system design with the functionality of a typical linux Ext2fs file system, optimized for large scale network storage using FUSE kernel module in User Mode Linux.
Click here for problem specification.3. Characterization of interference among orthogonal channels in multi-radio 802.11 g Wireless Mesh Networks
Multi-channel wireless networks are being studied as a means to increase network capacity. The implicit assumption is that network throughput increases in direct proportion with the number of non overlapping channels used. Our experimental results on the UCSB MeshNet routers showed that this is true only when the separation between the radio antennas is above a threshold.4. NACHOS (Not Another Completely Heuristic Operating System)
Enhanced a small, educational OS kernel (in C++) running user programs on a MIPS-DEC simulator. Added several kernel features including: Kernel level multi threading, synchronization primitives, memory management systems with paging, multiprogramming and virtual memory and an ext2fs like filesystem with up to 2-level indexing of file blocks.
5. CISCO Certification on Wireless LANS
With an outstanding score of 95.6% for the following proficiencies:
1. Design and implementation of a logical WLAN architecture in compliance with 802.11b IEEE standards;
2. Design and setup of WLAN security using WEP, CISCO LEAP, RADIUS and 802.1x protocols.
3. Perform hardware setup and software configuration of Cisco Aironet APs and antennas for Ethernet/Radio ports, and services specific to the WLAN needs for AP, Bridges, Repeaters, and site survey client functionality.
4. Troubleshoot WLAN performance issues using event loggings, and diagnostic tools.