Wireless Infrastructure

07:00 AM
Lee Badman
Lee Badman
Commentary
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Drones: The Next WLAN Menace

In addition to low-tech corporate spying, the remotely piloted aircraft could facilitate attacks on WLANs. The WLAN security industry is starting to respond.

Many of us in the business of WiFi have gotten comfortable with how we secure our networks. We think we know our logical and geographical borders, and have a sense of how vulnerable we are to social engineering and insider threats. But drones have the potential to change all of that.

The increasingly popular remotely piloted aircraft are small, quiet, unexpected, and evolving in what they can do and the havoc they can enable against networks. The growing threat drones pose to WLAN users and administrators has prompted the WLAN security industry to build drone-specific threat awareness into its technologies.

First, though, let's look at the threat drones pose to businesses. Forget about packets and malicious logic for a moment, as low-tech attacks are often the most harmful. Among the current favorite hobbyist drones on the market is the Parrot AR.Drone, which runs about $300 and has pretty impressive front and bottom-facing cameras on board. The AR.Drone was made for in-flight photographic and video capture, and has been the ire of a growing number of people who have been spied on by this sort of drone hovering outside their windows.

What if that window belongs to the network administrator’s or CIO’s office? By taking pictures of what’s on the computer screen to yellow sticky notes on the wall, drones can be used to harvest a treasure trove of organizational secrets.

Drones also might facilitate more sophisticated network-related attacks. As a transport mechanism for worrisome payloads that can either be used while airborne or parked on a nearby ledge for hours, drones are getting more attention in the hacker community. Drones such as the DGI Phantom can easily carry lightweight but powerful hacking platforms like WiFi Pineapple and Raspberry Pi, packaged with an external battery pack and cellular connection, for powerful eavesdropping and man-in-the-middle attacks.

As a WiFi Pineapple owner, I’m well versed in the use of these wonderful/terrible little boxes for attacks like Karma, SSL-Strip, and many others. Without drones, someone using the tool would have to get in range of a target, either by getting in close or using high-gain antennas. With drones, an attacker's nefarious influence expands exponentially.

As worrisome as all of this sounds, those of us in the business WLAN world aren’t completely defenseless. If you live in a particularly rainy or windy area, Mother Nature herself is on your side in keeping drones grounded.

For the rest of us, WLAN security products are beginning to provide protection. Fluke Networks has released the first drone detection signature as an update to its AirMagnet Enterprise wireless IDS/IPS product.  While this is the first formal anti-drone technology made available to WLAN customers, it’s likely just the start as drones become attached to more verified network attacks.

The new AirMagnet signature alerts customers to a few different drone-specific signals. Because drones like the AR Parrot are controlled via an ad hoc network from a smartphone app, AirMagnet can detect the command-and- control signaling in use. The signature also can detect video transmission streams. Once alerted, the network administrator can either attempt to locate the drone and its operator, or take RF or WLAN system-level countermeasures depending on the capabilities afforded by the WLAN being attacked.

Right now, AirMagnet’s detection is limited to the Parrot AR.Drone line, but it stands to reason that the ability to detect others will come.

While the current state of drone usage hardly equals an invasion, it may be time to take a hard look at your wireless intrusion protection strategy. You also may want to start looking up occasionally.

In addition to a freelance writing career, Lee Badman works for Syracuse University as a Network Architect and frequent Adjunct Instructor. Also a 10-year US Air Force veteran, Lee's technical experience spans 25+ years -- but he pays close attention to what comes next. View Full Bio
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
Susan Fogarty
50%
50%
Susan Fogarty,
User Rank: Strategist
8/6/2014 | 12:44:55 PM
Re: Autonomous GPS Programmed Drone
Austin, thanks for your comment. You're right -- I think drones will be able to accomplish all sorts of things, and fully programmable and automated at some point. The potential for abuse is great, of course. But we'll be able to do lots of great things, too. Pizza delivery, anyone?
austinjw1955
50%
50%
austinjw1955,
User Rank: Apprentice
8/5/2014 | 4:24:54 PM
Autonomous GPS Programmed Drone
Some drones are programmed with autonomous GPS Flight paths and do not require a control signal to navigate a collection route.  You could program one with to a location to attach and collect data then detach and fly back to point of origin.
Jeff Jerome
50%
50%
Jeff Jerome,
User Rank: Apprentice
7/31/2014 | 11:19:51 PM
Re: Exotic WLAN attack and fit for signature based approach
Drones delivering Amazon packages while capturing your rouge wifi data, now that is multitasking.
aditshar1
50%
50%
aditshar1,
User Rank: Ninja
7/28/2014 | 10:15:19 AM
Re: Exotic WLAN attack and fit for signature based approach
I agree you Brain but we still need manpower in fact skilled manpower to manage and control these drones in sky, I am still very curious to learn and see on what mechanism they will deliver to the right address.
MarciaNWC
50%
50%
MarciaNWC,
User Rank: Strategist
7/24/2014 | 6:50:30 PM
Re: Exotic WLAN attack and fit for signature based approach
I agree about the double-edged sword. I do see how drones can be functional, and this news today about a drone finding a missing elderly man underscores that.
Brian.Dean
50%
50%
Brian.Dean,
User Rank: Ninja
7/24/2014 | 6:39:13 PM
Re: Exotic WLAN attack and fit for signature based approach
I imagine a Cloud outage disconnecting the drone from the algorithm controlling it, would be dangerous as well -- all the drones would come crashing down.

I take it is a bit futuristic, but the National Research Agency of France announced earlier this year a prize of $5 million to anyone that can create an oil-drilling drone. If an IT team manages to claim that prize, it would be just a matter of time before water-drilling drones become a priority and water requirements are met of the world.

But either way, I agree, robotics is a double-edged sword with creepiness on the one side and functionality on the other.
MarciaNWC
50%
50%
MarciaNWC,
User Rank: Strategist
7/24/2014 | 5:56:15 PM
Re: Exotic WLAN attack and fit for signature based approach
Yikes, a sky filled with drones sounds pretty creepy!
Brian.Dean
50%
50%
Brian.Dean,
User Rank: Ninja
7/24/2014 | 4:37:23 PM
Re: Exotic WLAN attack and fit for signature based approach
@aditsahr1, yes it could be a future into which the world enters. Since a long time, cost saving and automation has been a driver for the world, starting from the first industrial revolution to present day. The result of which has created a global environment where consumers can gain a high quality and diversity of services. 

Consider a service such as Lyft, it enables individuals with an underutilized car to offer rides to customers -- good for the individual with the underutilized car and good for the customer as well, because this model creates rides at low fares.
aditshar1
50%
50%
aditshar1,
User Rank: Ninja
7/24/2014 | 2:57:39 AM
Re: Exotic WLAN attack and fit for signature based approach
I agree you @Brian, but do think in future we can see drone acting like active delivery boy.
Brian.Dean
50%
50%
Brian.Dean,
User Rank: Ninja
7/23/2014 | 10:09:31 PM
Re: Exotic WLAN attack and fit for signature based approach
Drone delivery technology is in its infancy at the moment, the Parrot AR.Drone costs $300 and with the standard battery pack it can remain airborne for around 12-minutes. Extended batteries are available that can take flight time to around 20-minutes at a time. Overall, it gives it a range of around 1 km, having a payload in the form of pizza delivery will shorten its range.

Algorithms would need to be developed for deliver drones to automatically fly at least part of the distance, when nearing the end destination for pizza delivery, a sales representative will need to take over to guide the drone and maybe, call the customer to receive their pizza.

I guess, the cost of a dedicated delivery van would range in the $25,000+ range, fuel expenses and a dedicated employee would add to the final cost, drones on the other hand are cheaper, and shorter employee intervention would save costs.
Page 1 / 2   >   >>
Slideshows
Cartoon
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
Video
Twitter Feed