Skip to Main Content
Deploying wireless LANs (WLAN) at large scale is mainly affected by reliability, availability, performance, and security. These parameters will be a concern for most of managers who want to deploy WLANs. Most importantly, the security issue became the predominant factor in WLAN design. Different Intrusion detection mechanisms have been addressed in research papers, but with little being focused on internal intrusion and prevention. In this paper an efficient security method has been proposed. It is based on detecting rogue access points as well as rogue bridge access points and denying their access to the WLAN. It also uses Intrusion detection mechanism to detect internal attacks at the mobile terminals (MT) and then discards packets belong to unauthorized process, while encrypt the rest and pass them to access point (AP). All packets arrived at the AP will be verified against police encryption key and successful one will be sent to destination while unsuccessful one will be dropped by the AP. The police encryption key will be uploaded for authenticated MT from AP with corporation of the RADIUS server.