WiFi Physical Layer Stays Awake and Responds When it Should Not

12/31/2022

∙

WiFi communication should be possible only between devices inside the same network. However, we find that all existing WiFi devices send back acknowledgments (ACK) to even fake packets received from unauthorized WiFi devices outside of their network. Moreover, we find that an unauthorized device can manipulate the power-saving mechanism of WiFi radios and keep them continuously awake by sending specific fake beacon frames to them. Our evaluation of over 5,000 devices from 186 vendors confirms that these are widespread issues. We believe these loopholes cannot be prevented, and hence they create privacy and security concerns. Finally, to show the importance of these issues and their consequences, we implement and demonstrate two attacks where an adversary performs battery drain and WiFi sensing attacks just using a tiny WiFi module which costs less than ten dollars.

READ FULL TEXT

WiFi Physical Layer Stays Awake and Responds When it Should Not

Authenticating On-Body Backscatter by Exploiting Propagation Signatures

Are Home Security Systems Reliable?

SECCS: SECure Context Saving for IoT Devices

A DTLS Abstraction Layer for the Recursive Networking Architecture in RIOT

Selective privacy in IoT smart-farms for battery-powered device longevity

BLURtooth: Exploiting Cross-Transport Key Derivation in Bluetooth Classic and Bluetooth Low Energy

Human-centred home network security

WiFi Physical Layer Stays Awake and Responds When it Should Not

Related Research

Authenticating On-Body Backscatter by Exploiting Propagation Signatures

Are Home Security Systems Reliable?

SECCS: SECure Context Saving for IoT Devices

A DTLS Abstraction Layer for the Recursive Networking Architecture in RIOT

Selective privacy in IoT smart-farms for battery-powered device longevity

BLURtooth: Exploiting Cross-Transport Key Derivation in Bluetooth Classic and Bluetooth Low Energy

Human-centred home network security