Register now to access 7 million high quality study materials (What's Course Hero?) Course Hero is the premier provider of high quality online educational resources. With millions of study documents, online tutors, digital flashcards and free courseware, Course Hero is helping students learn more efficiently and effectively. Whether you're interested in exploring new subjects or mastering key topics for your next exam, Course Hero has the tools you need to achieve your goals.
30 Pages
wireless_security
Course: CSE 574, Fall 2009School: Washington University...
Rating:
Word Count: 8682
Document Preview
in Security Wireless Data Networks: A Survey Paper Abdel-Karim R. Al Tamimi abdelkarim.tamimi@gmail.com Abstract Both security and wireless communication will remain an interesting subject for years to come. They represent the need of ease of use and flexibility of communications in the computer world without jeopardizing the communicated content. This paper illustrates the key concepts of security, wireless...
Unformatted Document Excerpt
Coursehero >> Missouri >> Washington University in St. Louis >> CSE 574Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.
Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.
in Security Wireless Data Networks: A Survey Paper
Abdel-Karim R. Al Tamimi
abdelkarim.tamimi@gmail.com
Abstract
Both security and wireless communication will remain an interesting subject for years to come. They represent the need of ease of use and flexibility of communications in the computer world without jeopardizing the communicated content. This paper illustrates the key concepts of security, wireless networks, and security over wireless networks. Wireless security is demonstrated by explaining the main specifications of the common security standards like 802.11 WEP, 802.11 WPA and WPA2 (802.11i). Moreover, it explains the concept of WMAN (Wireless Metropolitan Access Network) and its security specifications. Finally, it sums up with thoughts and suggestions about wireless security, along with a chosen example of the current proposals in wireless security.
See Also: In-Building Wireless LANs , Recent Advances in Wireless Data Networking , IP Security : A Brief Survey
Table of Contents:
1. Introduction 2. Security and Wireless Overview o 2.1 Introduction to Security ! 2.1.1 Goals ! 2.1.2 Symmetric and Asymmetric Encryption ! 2.1.3 Block Cipher and Stream Cipher ! 2.1.4 DES, AES and RC4 o 2.2 Introduction to The Wireless World ! 2.2.1 Wireless LAN (WLAN) ! 2.2.2 Wireless MAN (WMAN) o 2.3 Security Attacks 3. Security in WLAN (802.11) o 3.1 Introduction to 802.11 Standard o 3.2 WEP o 3.3 WEP Weaknesses
3.4 802.1x: EAP Over LAN (EAPOL) 3.5 Security in 802.11i 3.6 RSN 4. Security in WMAN (802.16) o 4.1 Protocol Layers o 4.2 Security Concerns 5. Thoughts on Wireless Security o 5.1 Best Practices o 5.2 Security Policy o 5.3 Security ... Problem Solved? 6. Recent Proposals o 6.1 PANA 7. Summary References List of Acronyms
o o o
Back to Table of Contents
1. Introduction
Security in computer world determines the ability of the system to manage, protect and distribute sensitive information. Data Security was found many years before the advent of wireless communication due to the mankind's need to send information (in war or in peace time) without exposing its content to others. The first and most known machine (Enigma) was used in WWII by the German military to encrypt their messages. The machine was something similar to a simple typing machine with a scrambler unit to obfuscate the content of the messages [Enigma] [NIST98]. From that time till now, many solutions to security threats have been introduced, and most of them were abandoned or replaced by better security standards. These ongoing changes promoted the security field to be a permanent hot topic. In the wireless world security threats were not known to public people till prices of wireless equipment went down around 2000. Before that date, the military was the number one client for wireless security products especially during the cold war.[Edney2003] [Hardjono2005] This paper aims to give a better understanding of security measures and protocols available in the market, along with a brief analysis of each security scheme's weaknesses and points of strength. This paper starts with an introduction to security and wireless worlds to give the right background for understanding the evolution of security standards. Section 3 gives a brief description about security standards in wireless LANs. Section 4 describes WMAN 802.16 protocol and the current security schemes used with it.
Thoughts on wireless security section (section 5) explores some of the practical suggestions to increase the level of network security. Since security in wireless networks is still a working progress, section 6 discusses one of the recent proposals to enhance current security standards, a protocol called PANA (Protocol for carrying Authentication for Network Access). Finally, section 7 concludes this paper. Back to Table of Contents
2. Security and Wireless Overview
An overview of security and wireless communications is presented in this section. Although this introduction will not cover all the aspects of both worlds, it will give a descent amount of information that allows the reader to go through the paper without the necessity of referring to other books or papers. Section 2.1 gives a crash course in security for both wired and wireless worlds. Section 2.2 describes the current wireless systems and infrastructures. Finally, a list of the common security threats and attacks are discussed in section 2.3.
2.1 Introduction to Security
This section outlines some of the basic conceptions in the security world. It starts by defining the goals behind implementing security in the computer world (Section 2.1.1). Then it discuss encryption and decryption concept (Section 2.1.2), the implementation of both block and stream ciphers (Section 2.1.3), and finally a brief description of the most common encryption standards.
2.1.1 Security Goals
Every security system must provide a bundle of security functions that can assure the secrecy of the system. These functions are usually referred to as the goals of the security system. These goals can be listed under the following five main categories[Earle2005][Imai2006]: Authentication: This means that before sending and receiving data using the system, the receiver and sender identity should be verified. Secrecy or Confidentiality: Usually this function (feature) is how most people identify a secure system. It means that only the authenticated people are able to interpret the message (date) content and no one else. Integrity: Integrity means that the content of the communicated data is assured to be free from any type of modification between the end points (sender and receiver). The basic form of integrity is packet check sum in IPv4 packets.
Non-Repudiation: This function implies that neither the sender nor the receiver can falsely deny that they have sent a certain message. Service Reliability and Availability: Since secure systems usually get attacked by intruders, which may affect their availability and type of service to their users. Such systems should provide a way to grant their users the quality of service they expect.
2.1.2 Data Encryption: Symmetric and Asymmetric Encryption
To send data securely between two nodes, the system must encrypt the data or "systematically scramble information so that it cannot be read without knowing the coding key" [Sabc]. This operation determines to a certain level the strength of the security system, the harder it is to break the encrypted message the more secure the system is to be. Figure 1 shows the common use of encryption/decryption techniques, where unsecured messages (plain text) are encrypted using a special encryption technique, sent over the network, then decrypted at the destination to viewed back as unencrypted messages.
Fig.1 Data Encryption and Decryption Data encryption procedures are mainly categorized into two categories depending on the type of security keys used to encrypt/decrypt the secured data. These two categories are: Asymmetric and Symmetric encryption techniques. Symmetric Encryption In this type of encryption, the sender and the receiver agree on a secret (shared) key. Then they use this secret key to encrypt and decrypt their sent messages. Fig. 2 shows the process of symmetric cryptography. Node A and B first on the encryption technique to be used in encryption and decryption of communicated data. Then they agree on the secret key that both of them will use in this connection. After the encryption setup finishes, node A starts sending its data encrypted with the shared key, on the other side node B uses the same key to decrypt the encrypted messages.
Fig.2 Symmetric Encryption The main concern behind symmetric encryption is how to share the secret key securely between the two peers. If the key gets known for any reason, the whole system collapses. The key management for this type of encryption is a troublesome, especially if a unique secret key is used for each peer-to-peer connection, then the total number of secret keys to be saved and managed for n-nodes will be n(n-1)/2 [ Edney2003] . Asymmetric Encryption Asymmetric encryption is the other type of encryption where two keys are used. To explain more, what Key1 can encrypt only Key2 can decrypt, and vice versa. It is also known as Public Key Cryptography (PKC), because users tend to use two keys: public key, which is know to the public, and private key which is known only to the user. Figure 3 below illustrates the use of the two keys between node A and node B. After agreeing on the type of encryption to be used in the connection, node B sends its public key to node A. Node A uses the received public key to encrypt its messages. Then when the encrypted messages arrive, node B uses its private key to decrypt them.
Fig.3 Asymmetric Encryption This capability surmounts the symmetric encryption problem of managing secret keys. But on the other hand, this unique feature of public key encryption makes it mathematically more prone to attacks. Moreover, asymmetric encryption techniques are almost 1000 times slower than symmetric techniques, because they require more computational processing power[Edney2003] [ Hardjono2005] . To get the benefits of both methods, a hybrid technique is usually used. In this technique, asymmetric encryption is used to exchange the secret key, symmetric encryption is then used to transfer data between sender and receiver.
2.1.3 Block and Stream Ciphers
Another categorization method for encryption techniques is commonly used based on the form of the input data they operate on. The two types are Block Cipher and Stream Cipher. This section discusses the main features in the two types, operation mode, and compares between them in terms of security and performance. Block Cipher In this method data is encrypted and decrypted if from of blocks. In its simplest mode, you divide the plain text into blocks which are then fed into the cipher system to produce blocks of cipher text. There are many variances of block cipher, where different techniques are used to strengthen the security of the system. The most common methods are: ECB (Electronic Codebook Mode), CBC (Chain Block Chaining Mode), and OFB (Output Feedback Mode). ECB is the basic form of clock cipher where data blocks are encrypted directly to generate its correspondent ciphered blocks (shown in Fig. 4). CBC mode uses the cipher block from the previous step of encryption in the current one, which forms a chain-like
encryption process. OFB operates on plain text in away similar to stream cipher that will be described below, where the encryption key used in every step depends on the encryption key from the previous step[Chandra2005] [Edney2003] .
Fig.4 Block Cipher : ECB MODE Stream Cipher Stream cipher functions on a stream of data by operating on it bit by bit. Stream cipher consists of two major components: a key stream generator, and a mixing function. Mixing function is usually just an XOR function, while key stream generator is the main unit in stream cipher encryption technique. For example, if the key stream generator produces a series of zeros, the outputted ciphered stream will be identical to the original plain text. To start the series of Key Stream, an Initialization Vector (IV) is sent to set the initial value. A common IV between the sender and the receiver is usually imposed to keep both of them synchronized. The IV can be auto-generated or incremented on each packet, which depends on the capabilities of the system. The stream cipher technique can be categorized into two modes: Synchronous Stream Cipher, and Self-Synchronizing Stream Cipher. In Synchronous Stream Cipher the Key Stream Generator depends only on the base key used for encryption. Fig.5 Show how Sync. Stream Mode (the "simple" mode) operates on the both sender and receiver sides. The sender uses only the base (shared) key to encrypt the outgoing stream, on the other side the receiver decrypts the stream using the same key. The main disadvantage of this method is that if the base key gets known the whole system is compromised.
Fig.5 Stream Cipher : Simple Mode The other mode is called Self-Synchronizing Stream Cipher. In this mode, the state of Key Stream Generator (the Key Used for that instant of time) depends on the previous
states of cipher text bits. The previous states number is fixed and defined by the algorithm. Self-Synchronizing method is more secure than the previous mode, but it is slower. Fig 6 below shows the process undertaken by self-synch stream cipher to encrypt/decrypt data.
Fig.6 Stream Cipher : Self-Synch. Mode Stream cipher has a well known advantage over block cipher because of its speed and simplicity of analysis. But in the same time it is a known fact that stream cipher is less secure than block cipher. That's why most of the recommendation of today's standards recommends using block cipher techniques over stream cipher ones [ Chandra2005] .
2.1.4 Data Encryption Standards: DES, AES and RC4
After taking a quick look at the major classification of data ciphers (both stream and block ciphers). In this section we will describe briefly some of the well known and used encryption standards. Moreover we will mention the key features and disadvantages of each standard . DES DES (Data Encryption Standard), was the first encryption standard to be recommended by NIST (National Institute of Standards and Technology). It is based on the IBM proposed algorithm called Lucifer. DES became a standard in 1974 [TropSoft] . Since that time, many attacks and methods recorded that exploit the weaknesses of DEC, which made it an insecure block cipher. As an enhancement of DEC, the3DEC (Triple DES) encryption standard was proposed. In this standard the encryption method is similar to the one in original DES but applied 3 times to increase the encryption level. But it is a known fact that 3DES is slower than other block cipher methods. AES AES (Advanced Encryption Standard), is the new encryption standard recommended by NIST to replace DES. Rijndael (pronounced Rain Doll) algorithm was selected in 1997 after a competition to select the best encryption standard. Brute force attack is the only effective attack known against it, in which the attacker tries to test all the characters combinations to unlock the encryption. Both AES and DES are block ciphers.
RC4 RC4 or ARC-Four is the most widely used stream cipher. It is used with SSL (Secure socket Layer), which is used to secure identification information and money transfers over the Internet. Moreover, it is used in WEP (Wired Equivalent Privacy) which is responsible for securing wireless data. RC4 showed that is secure enough for certain systems, but it was found out that it does not offer that level of security to wireless communications, making it fall short for many security standards [Chandra2005] .
2.2 Introduction to The Wireless World
Wireless data networks have spread between home users and companies in an increasing fashion. The main reason behind this fast adaptation is due to the nature of wireless networks where it provides the flexibility and freedom that wired networks lack. The increasing of bandwidth capabilities has inspired people to think seriously about replacing wired networks with wireless networks especially in places where it is hard or expensive to have wired networks. One of the main places that can benefit from these ideas are rural areas, where wired networks infrastructure is either difficult or impossible to create due to physical obstacles. The main standards in the wireless world are: 802.11, which describes the Wireless LAN architecture, and 802.16 which describes the Wireless MAN architecture. These two wireless networks are usually known by two acronyms: WiFi (Wireless Fidelity) to be a symbol of WLAN, and WiMAX (Worldwide Interoperability for Microwave Access) to describe WMAN.
2.2.1 Wireless LAN (WLAN)
Fig.7 Wireless LAN Wireless LAN is simply trying to imitate the structure of the wired LANs, using another medium to transfer data rather than cables. This medium is electromagnetic waves which are mainly either radio frequency (RF) or infrared frequency (IR). Wireless LANs consist mainly of two entities: clients or end-user devices and Access Points (AP). Clients' are equipped with devices that allow the user to use the RF medium
to communicate with other wireless devices. AP functions like a regular switch or router in wired network for the wireless devices. Moreover, it represents a gateway between the wireless devices and a wired network. The basic structure of a Wireless LAN is called BSS (Basic Service Set) shown in Fig. 8, in which the network consists of an AP and several wireless devices. When these devices try to communicate among themselves they propagate their data through the AP device. In order to form the network, AP keeps broadcasting its SSID (Service Set Identifier) to allow others to join the network.
Fig.8 WLAN : BSS Structure If the BSS did not have an AP device, and the wireless devices were communicating with each other directly, this BSS is called an Independent BSS and works in mode called "ad hoc mode" (shown in Fig.9). Group of BSSs (either BSS or IBSS) can be combined to form an ESS (Extended Service Set). This set is created by chaining this group of BSSs to a single backbone system.
Fig.9 WLAN : IBSS Structure
2.2.2 Wireless MAN (WMAN)
The idea behind using WMAN is to offer a broadband Internet service using wireless infrastructure. The idea is very similar to a TV broadcast network (shown in Fig.10). The theoretical speed of WMAN is 75Mbps extended to several miles, which offer a replacement to cable and DSL connections in the future[Hardjono2005] .
Fig.10 Wireless MAN WMAN is also called BWA (Broadband Wireless Access) as a formal title along with the industry icon acronym WiMAX. The main target of implementing WiMAX technology is to provide a convenient solution to the "last mile access", where the fast data backbone traffic is to be distributed among consumers. This also helps expand the Internet covered areas especially in rural areas.
2.3 Security Attacks
As mentioned before, the main difference between wired and wireless networks is the medium it transfers its data through. This difference made the burden of securing the network heavier. The broadcast nature of wireless networks makes it easy for everyone to attack the network if not secured, due to the absence of physical barriers, where the range of wireless transmission ranges from 300 ft to half a mile [Arbaugh2003] . The exponential growth of wireless networks add another obstacle on enhancing the network security. People tend to keep things the way they are instead of doing what is right. Also such enhancement of security is expensive in terms of time, money and effort that many users do not have or wish not to spend.
Below is a list of the most common attack types known in both wired and wireless networks. Most of the security attacks and threats are listed under the following categories: Traffic Analysis In this type of attacks the attacker uses the statistics of network connectivity and activity to find information about the attacked network. Information includes: AP location, AP SSID and the type of protocol used by the analysis of size and types of packets[Welch2003] . Passive Eavesdropping Attackers in this type set themselves in sniffing mode, where they listen to all the network traffic hoping to extract information from it. This type of attack is only useful with unencrypted networks and stream cipher encrypted ones. Active Eavesdropping Similar to passive eavesdropping but the attacker tries to change the data on the packet, or to inject a complete packet in the stream of data. Unauthorized Access This type of attack is also known by many other names, such as war driving, war walking, and war flying[Earle2005] . This is the most common attack type where the attacker tries to get access to a network that she is not authorized to access. Mainly the reason behind such attacks is just to get Internet access for free[Potter2003] . Man-in-the-middle Attacks In this attack, the attacker gets the packets before the intended receiver does. This allows her to change the content of the message. One of the most known subset of this attack is called ARP (Address Resolution Protocol) attacks, where the attacker redirects network traffic to pass through her device[Welch2003] . Session High-Jacking The attacker attacks the integrity of the session by trying to hijack an authorized session from an authorized user. Replay Attacks In this type of attack the attacker uses the information from previous authenticated sessions to gain access to the network.
Rouge AP Some of the devices allow the user to declare itself as an AP. This will make people confused and sometimes they may connect to this false AP exposing their information to it. This can be solved by imposing mutual authentication between AP and network devices. DoS Attacks DoS (Denial of Service) attacks are the hardest type of attacks to overcome. Attackers use frequency devices to send continuous noise on a specific channel to ruin network connectivity. It is known in the wireless world as RF Jamming [Welch2003] . There are many other threats that can be placed under one of the categories above. These different types of attacks make it harder for the standard regulators to find the best way to come up with the best solutions to the security hazards without sacrificing network usability or speed. In this section we discussed the common concepts in security, the wireless world and the common security attacks against networks in both wired and wireless networks. This section should have provided enough information to go through the following sections. Back to Table of Contents
3. Security in WLAN 802.11
In this section, we will go through the steps wireless LAN security took to achieve its current status of implementing 802.11i security protocol . First we will talk about the difficulties faced in creating the standard, then describe the standard 802.11 itself. After that we will take a journey through the different security modules that have been proposed to solve the security issues related to wireless networks starting from WEP and ending with WPA2. Wireless media is more difficult to secure because of its broadcast nature[Arbaugh2003] . This property makes creating a well secured protocol that is similar to wired security modules a very hard task. In addition to that, mobile units that use wireless security protocols differ from regular PCs in many aspects. There are constraints related to processing power, battery capacity, and flexibility to facilitate inter-operability. In addition to that, there is a need for tampering proof techniques in case mobile units fall into the hands of malicious entities [Ravi2002] .
3.1 802.11 Standard
The 802.11 IEEE standard was standardized in 1997. It consists of three layers: Physical layer, MAC (Medium Access Control) layer, and LLC (Logical Link Control) layer (Fig.
11). The first version of the standard supported only 2 Mbps bandwidth, which motivated the developing teams to come up with other standards to support up to 54Mbps.
Fig.11 802.11 Layers Designers took into consideration the necessity of making the physical layer supports more than one signaling technique and interface, as shown in Fig. 11 above. The physical layer is responsible for providing an interface to exchange frames with the upper MAC layer, transmitting and signaling packets, and works as a media activity sensor for MAC layer. The MAC layer supports the functionality needed to allow reliable transfer to the upper layers, and it is very similar to the data link layer in the OSI (Open System Interconnection) model. It provides the functionality to control media access, and it is connectionless oriented. The LLC provides addressing and data link control, and it is independent from the lower layers (MAC and PHY). LLC provides connection oriented service to the upper layers. 802.11 Authentication To allow clients to access the network they must be go through two steps: getting authenticated by the AP, then getting associated. There are two types of authentications used: Shared Key Authentication and Open Key Authentication [Earle2005]. In the WEP (Wired Equivalent Privacy) standard (the first security module used with 802.11) both of the authentication modes were supported. In the new security standards, it is not recommended to use shared key authentication. Fig. 12 below shows how Shared Key Authentication works.
Fig.12 Shared Key Authentication When the client wants to connect to the AP, it sends a request. Upon that request the AP sends a challenge packet in clear text (unencrypted). The client then encrypt it with its WEP key and sends it back. The AP tries to decrypt the message using its WEP key. If the decryption process succeeded that means the client is an authenticated user, otherwise the access is denied. In this case if someone is sniffing the traffic, they will get a copy of the encrypted and clear text versions of the message. With some time and processing power the WEP key can be found. Open Key Authentication does not involve challenge/response messages exchange. The client will get authenticated always, but to send and receive messages she needs to have the correct WEP key. Although Open Key Authentication does not offer any kind of authentication, it is more secure. The reason behind the last statement is that Open Key Authentication does not expose the WEP key to traffic sniffers.[startawisp]
3.2 WEP (Wired Equivalent Privacy)
WEP has three goals to achieve for wireless LAN: confidentiality, availability and integrity [Earle2005] . WEP is now considered insecure for many reasons, nonetheless it served its purpose for a certain amount of time. WEP uses encryption to provide confidentiality. The encryption process is only between the client and the AP, meaning that packet transfers after the AP (wired LAN) are unencrypted. WEP uses RC4 (discussed earlier) for the encryption purposes. Since RC4 is a stream cipher it needs a seed value to start its key stream generator. This seed is called IV (Initialization Vector). The IV and the shared WEP key are used to encrypt/decrypt transferred packets (Fig. 13). In the encryption process, the Integrity check (IC) value is computed and attached to the payload, then the payload is XORed with the encryption key consisting of two sections (IV and WEP Key). The packet is then forwarded with the IV value sent in plain text (Fig. 14).
Fig.13 WEP Packet Encryption WEP uses CRC (Cyclical Redundancy Checking) to verify message integrity. On the other side (receiver: AP) the decryption process is the same but reversed. The AP uses the IV value sent in plain text to decrypt the message by joining it with the shared WEP key. To get a better understanding of the operation, Fig. 14 below shows both encryption and decryption process between the client and AP.
Fig.14 WEP Encryption / Decryption In this section we have described the way the WEP security protocol operates and the main features or properties it possesses. In the following section we will go through WEP weaknesses and flaws.
3.3 WEP Weaknesses
Many people still think that WEP is secure. They argue that because no big accident has occurred, that is related to wireless security yet, means "no news is good news". The argument completely contradicts with the meaning of security, where you have to predict the risk and work to secure yourself from it before it happens. Other people believe that attacking a wireless network is expensive and complex, it requires high processing power and complex techniques to break into the network. Today's computers have high processing power and they are continuously becoming cheaper . A wireless attacker does not need to now much about cryptography or security modules; there are many online tools that can ease the process for them [WarDrive] . One of the major reasons behind WEP weaknesses is its key length. WEP has a 40-bit key , which can be broken in less than five hours using parallel attacks with the help of normal computer machines[Brown2003] . This issue urged vendors to update WEP from using 40-bit to 104-bit key; the new release is called WEP2. This update helped to resolve some security issues with WEP. The main disadvantage of WEP however, is the lack of key management. Some SOHO users (Small Office/ Home Office) never change WEP their key, which once known the whole system is in jeopardy. In addition to that, WEP does not support mutual authentication. It only authenticates the client, making it open to rouge AP attacks. Another issue is the use of CRC to ensure integrity. While CRC is a good integrity provision standard, it lacks the cryptography feature. CRC is known to be linear. By using a form of induction, knowing enough data (encrypted packets) and acquiring specific plaintext, the WEP key can be resolved [Brown2003] . RC4 suffers from a deadly symptom. It tends to repeat IV values (even if it is auto generated), making the exposing of the traffic easier. Mathematically, if the same IV is used to encrypt two packets (WEP key did not change also) and you have a pair of encrypted/plaintext message, then by applying the following simple rule: C1 XOR C2 = P1 XOR P2 (you already know P1,C1 and C2), making it very easy to know the content of the new encrypted packet P2 . [Welch2003] These weaknesses forced the designers of WLAN security modules to be more cautious. It demonstrates the result of not designing the security module from the ground up taking into consideration all applicable risks. In the next section we will go through the new standards that came after WEP to overcome its vulnerabilities.
3.4 802.1x : EAP Over LAN (EAPOL)
The 802.1x standard was designed for port base authentication for 802 networks. 802.1x does not care what encryption techniques is used, it is only used to authenticate users. EAP (Extensible authentication Protocol) was designed to support multiple authentication
methods over point to point connections without requiring IP [RFC3748] . EAP allows any of the encryption schemes to be implemented on top of it, adding flexibility to the security design module. EAPOL (EAP over LAN) is EAP's implementation for LANs[EAPOL] . The 802.1x framework defines three ports or entities: Supplicant (client want to be authenticated), Authenticator (AP that connect the supplicant to the wired network), and Authentication Server ( abbreviated AS which performs the authentication process from the supplicant based on their credentials). [Hardjono2005] [Earle2005] [EAPOL] The authentication server in the 802.1x framework uses RADIUS (Remote Authentication Dial-In User Service) protocol to provide AAA (Authentication, Authorization and Accounting) service for network clients [RADIUS][Imai2006] . The protocol creates an encrypted tunnel between the AS (Authentication Server) and the Authenticator (AP). Authentication messages are exchanged inside the tunnel to determine if the client has access to the network or not. Fig.15 below shows the network layout.
Fig.15 802.1x Authentication
3.5 802.11i Standard
The 802.11i (released June 2004) security standard is supposed to be the final solution to wireless security issue. It improves authentication, integrity and data transfer. Due to the market need of a better substitute to WEP vendors (WiFi Alliance) took a subset of it and market the new product before the final release under the name WPA (WiFi Protected Access), which was released in April 2003. After the final release of 802.11i the vendors implemented the full specifications under the name WPA2. This section will explore the details of 802.11i and its features [WPA] . 802.11i supports two methods of authentication. The first method is the one described before by using 802.1x and EAP to authenticate users. For users who can not or do not want to implement the first method, another method was proposed to use per-session key per-device. This method is implemented by having a shared key (like the one in WEP) called GMK (Group Master Key), which represent the base key to derive the other .GMK
is used to derive PTK (Pair Transient Key) and PSK (Pair Session Key) to do the authentication and data encryption. To solve the integrity problem with WEP, a new algorithm named Michael is used to calculate an 8-byte integrity check called MIC (Message Integrity Code). Michael differs from the old CRC method by protecting both data and the header. Michael implements a frame counter which helps to protect against replay attacks [Microsoft-WPA] [TechFAQ] . To improve data transfer, 802.11i specifies three protocols: TKIP, CCMP and WRAP. TKIP (Temporal Key Integrity Management) was introduced as a "band-aid" solution to WEP problems[ Brown2003] . One of the major advantages of implementing TKIP is that you do not need to update the hardware of the devices to run it. Simple firmware/software upgrade is enough.Unlike WEP, TKIP provides per-packet key mixing, a message integrity check and a re-keying mechanism [ TKIP] . TKIP ensures that every data packet is sent with its own unique encryption key. TKIP is included in 802.11i mainly for backward compatibility. WRAP (Wireless Robust Authenticated Protocol) is the LAN implementation of the AES encryption standard introduced earlier. It was ported to wireless to get the benefits of AES encryption. WRAP has intellectual property issues, where three parties have filed for its patent. This problem caused IEEE to replace it with CCMP.[Tech-FAQ2] [Brown2003] . CCMP (Counter with Cipher Block Chaining Message Authentication Code Protocol) is considered the optimal solution for secure data transfer under 802.11i. CCMP uses AES for encryption. The use of AES will require a hardware upgrade to support the new encryption algorithm.
3.6 RSN
RSN (Robust Secure/Security Network) is a part of 802.11i for providing a method to exchange the clients and the AP capabilities of implementing security methods . RSN uses RSN IE (Information Element) frames to exchange this type of information. RSN increases the flexibility of wireless security network standards and provides options to define the security policies implemented in organizations.[Earle2005] This section described the security standards implemented in wireless LANs. It showed the difficulties the developers face to specify new standards to fill security holes from old standards. It also gave a glance about 802.11i standard features and improvements over WEP . Back to Table of Contents
4. Security in WMAN 802.16
As mentioned before, the WMAN or WiMAX was proposed to solve the "last mile" problem. The 802.16 standard was released in Dec 2001. That gave the designers the time to learn from the mistakes made in 802.11 WEP security protocol. In the following sections the architecture of 802.16 will be discussed along with pointing out the security threats found in it.
4.1 The 802.16 Protocol Layers
802.16 protocol consists of four layers (Shown in Fig. 16):
Fig.16 802.16 Layers Physical layer: 802.16 protocol operates in three major frequency bands: 1. 10 to 66 GHz (licensed bands) 2. 2 to 11 GHz (licensed bands) 3. 2 to 11 GHz (unlicensed bands) To support these three bands, the protocol specifies multiple physical layers. Security sub-layer or MAC sub-layer: This layer focuses on the security functions in the MAC layer. It consists of two component protocols: 1. Encapsulation protocol: This component describes how the authentication is processed and the types of algorithms to be used in encrypting packets between the BS (Base Station) and the SS (Subscriber Station). 2. Key Management protocol: This component describes how to distribute and manage connection keys. The default protocol used here is PKM (Privacy Key Management). Each connection between the BS and SS or MS (Mobile Station) has a unique CID (Connection ID). MAC common part sub-layer: It is a connection oriented sub-layer, and it includes the mechanisms to request bandwidth. Authentication and registration is also a part of this layer functionality.
MAC convergence sub-layer (service specific convergence sub-layer): Dividing the MAC layer into two sub-layers aims to solve the problem of having different protocols, where the common part sub-layer provides common functionality units to the above layer (MAC convergence sub-layer). The MAC convergence sub-layer implements different services on top of the common part sub-layer. It is also responsible about bandwidth allocation and QoS.[Cohen2003] As mentioned before the key management protocol used in 802.16 is PKM. PKM is used by SS to obtain the needed authorization to use the media. PKM uses 3DES as its encryption algorithm. PKM protocol operates in two phases: AK (Authorization Key) phase, and TEK (Traffic Encryption Keys). AK represents the secret key used to obtain TEK in the exchanges between SS and BS in subsequent phases. In each connection session between SS and BS, both of them keep track of two AK keys. The reason behind that is AK needs to be refreshed periodically. In order to keep all the packets during the reauthorization period, the two AK lifetimes must overlap. The same rule applies to TEK keys, where SS has to estimate the time period after which BS will invalidate the old TEK key[Hardjono2005] . The security model in 802.16 ensures that specific requirements are supported. The first requirement is the ability of BS to identify the MS to allow it to access the network. Once done a master session key (MSK) is transferred securely between BS and MS. Secondly, WiMAX support a multicast and broadcast service (MBS) that allows the BS to distribute data to a certain group of registered users. The system must be able to control access to the distributed content by using a per-group secret key. Finally, WMAN security system provides per-MPDU (MAC Packet Data Unit) integrity protection and reply protection. After we have briefed about WiMAX (WMAN) architecture, and explaining the main functionalities of each layer and summarized the security techniques used to keep the traffic secure, in the next section we summarize the security threats found in 802.16 security system.
4.2 WMAN Security Concerns
Although the designers of 802.16 security module have benefited from the loop holes found in 802.11 WEP design, they still had some shortcomings in their security design. Probably the reason behind this unexpected result is due to the fact that they incorporate the use of the pre-existing standard DOCSIS (Data Over Cable Service Interface Specifications) that was used to solve the "last mile" problem for cable communication. Since wired networks differ from wireless ones, 802.16 fails to protect the 802.16 link[ Johnston2004] . This section will briefly highlight some of these threats: Physical Layer Attacks
Since the security layer of 802.16 operates completely in the MAC layer, there is no protection for the PHY layer. Attacks like water torture where the attacker sends a series of packets to drain the receiver battery resources are possible[Johnston2004] . Not to forget that the known radio jamming attack is also applicable to 802.16 networks. NO Specific Definition for SAA SA (Security Association) holds a security state relevant to a certain connection. 802.16 designers did not specify the authorization SA, which led to making the system vulnerable to replay attacks. No Mutual Authentication One of the major flaws in the 802.16 security module is the lack of BS authentication, causing some undesirable circumstances like 802.11 had with rouge AP. PKM Authorization Vulnerabilities
Insufficient Key-Length and wrong choices in choosing the correct cipher modes: WiMAX uses DES-CBC cipher with 56-bit key length. This cipher requires a guarantee of unpredictable IV to initialize CBC mode. TEK uses 3DES encryption, but operates it in ECB mode which is not secure enough. Lack of Integrity Protection of MPDUs: PKM lacked the message integrity protection until 802.16-2004 specification. Small Key ID for AK and TEK: AK ID is only 4-bit long, where TEK ID is only 2-bit long. This opens the possibility of reusing keys without detection
These obvious vulnerabilities motivated people to come with PKMv2 . PKMv2 introduces a solution to mutual authentication and promote a key hierarchy structure to reduce the cost of key exchanges in PKM[Hardjono2005] . In this section we mentioned the common and known threats in 802.16 security module. Moreover, we highlighted the motivation behind proposing a new key management system for 802.16, which is PKMv2. Back to Table of Contents
5. Thoughts on Wireless Security
This section will briefly discuss the best practices for installing wireless security in your home or company taking into consideration all the security threats mentioned earlier. Moreover, we will discuss the main reasons behind the lack of security even with the existence of good security systems.
5.1 Best Practices
WEP has many flaws in its security system, but this is not the main reason why most of the wireless networks are attacked. Less than half of wireless networks are well configured and running correctly. In addition to that most APs default settings do not implement any type of encryption or authentication.[ Manley2005] One of the best practices in home networks is to change the WEP key on a regular basis; this will weaken the chances of getting attacked. One of the most common techniques to test your network security is to use what attackers use to hack your network. There are many tools online that you can use, and they are available for different operating systems [WarDrive] .
5.2 Security Policy
Such techniques are not feasible for companies where many computers are attached to the network. In this situation a security policy must be described and written down to allow managers as well as technicians to react correctly to undesired circumstances [Manley2005] . It is not surprising that the main reason for security breaches is the human error factor or what is known as social engineering. APs can also be configured to stop broadcasting its SSID which will make it harder for the attacker to forge a rouge AP. There are three levels of security policy: Organization specific, Issue specific (for certain type of technologies), and Systems-specific for individual PCs that hold important information[Manley2005] . The availability of the wireless network and the downtime for the network must be taken into consideration while writing these specifications . Switching to WPA and WPA2 technologies will solve many of the problems on both user and company levels. The user has to be cautious about implementing the new network, since WPA supports backward compatibility, devices that still implementing WEP will jeopardize the entire network security. It is due to the fact that a security system strength is determined by the strength of the weakest chain. Below is a list of some of the commercial routers that implement WPA2 [ bbwexchange] . Table 1 List of Commercial WPA2 Routers Company Name Equipment
Atheros Communications Atheros AR5002AP-2X Concurrent 802.11a and 802.11b/g Inc. Dual-band Access Point Atheros AR5002X Universal 802.11a/b/g Wireless Network Adapter Broadcom Corporation Broadcom AirForceTM 802.11a/g CardBus Reference Design, BCM94309CB Broadcom AirForceTM 802.11a/g Access Point Reference
Design,BCM94704-AGR Cisco Systems Instant802 Networks Intel Realtek Cisco Aironet 1200 Series Access Point with integrated 802.11a and 802.11g radios Gateway 7001 Access Point Intel Pro/Wireless 2915 Network Connection Realtek RTL8185&8255 802.11a/g 54M WLAN NIC / RTL8185 8255-NIC
5.3 Security ... Problem solved?
With all these proposed new technologies and security standards over the last years to solve the wireless security problems, we still can not say that our wireless networks are secure. The human factor is the major drawback. In spite the fact that people want security, they tend to prefer less secure system in favor of ease of use. Moreover, adding security features to wireless components make it more expensive than other less secure systems, and regular people prefer cheap equipments over good equipments.[Viega2005] This section described what can the user or the administrator of the wireless network do to prevent most of the known threats. In addition to that we showed a list of the new routers that implements WPA2 to help neutralizing many of the security hazards. Back to Table of Contents
6. Recent Proposals
This Section discusses one of the recent proposals working to enhance wireless security mechanisms. The chosen protocols is PANA . PANA (Protocol for Carrying Authentication for Network Access) target is to improve the authorization between WLAN clients and AAA servers.
6.1 PANA
PANA is a new method to authenticate WLAN users over IP based networks. The goal of this proposal is to identify a link-layer protocol to allow host and network to authenticate each other for network access. The protocol runs between PaC (PANA Client) and PAA (PANA Authentication Agent). The purpose of this protocol is to provide the carrier for the existed security protocols. This protocol design is limited only to defining a messaging protocol that will allow authentication payload to be carried between the host/client (PaC) and an agent/server (PAA) in the access network for authentication and authorization purposes regardless of the AAA infrastructure that may (or may not) re...
Find millions of documents on Course Hero - Study Guides, Lecture Notes, Reference Materials, Practice Exams and more.
Course Hero has millions of course specific materials providing students with the best way to expand
their education.
Below is a small sample set of documents:
Below is a small sample set of documents:
Auburn - ENG - 3600
CHEN 3600 Computer-Aided Chemical Engineering Chemical Engineering Department EWE: Engineering With Excel LarsenNotes 8c Page 1Using the VBA Debugger Introduction Sooner or later you will encounter the VBA Debugger. Most likely you will make a fatal mis
Yale - CS - 455
Dirk Bergemann Joan Feigenbaum Yale UniversityEconomics and Computation Computer Science 455/555 and Economics 425/563 Problem Set 5: Information, Recommendation and Reputation 11/20/08 This problem set is due on Tuesday, 12/02/08. 1. Complementarity and
UNC - COMP - 145
Hydro Models TeamIntroduction RHESSysis a spatially distributed model of watershed carbon, water and nutrient dynamics. RHESSys stands for Regional HydroEcological Simulation System.Project Goals Conversionof the client's C code into an object orien
MN State - AMST - 419
Greg Anniss. Amst 419. April 27, 2006.The GI Bill and effects on Education within American Society.This piece of work is an evaluation of the GI Bill of Rights and its influence on the trends and increasing numbers of students who signed up to further t
Rochester - CSC - 256
Operating Systems3/1/2004Recap of the Last ClassVirtual MemorynVirtual memory separation of user logical memory from physical memory.qq qOnly part of the program address space needs to be in physical memory for execution. Copy-on-write: allows for
UMass (Amherst) - PSYC - 315
Memory: Chapter 7, Fall 2005 October 27, Nov 1Real memory 1. 2. Memory from infancy, childhood Memory over the lifespan a. Flashbulb memories; emotionally charged memories, believed strongly, but distortions, changes. Constructive memory a. Many memory r
Rochester - CSC - 256
Operating Systems2/21/2005Virtual MemoryVirtual MemoryVirtual memory separation of user logical memory from physical memory.Only part of the program needs to be in memory for execution. Logical address space can therefore be much larger than physical
Rose-Hulman - EM - 406
Fourier Series (Lecture 13)Todays Objectives: Students will be able to: a) Determine the Fourier Coefficients for a periodic signal b) Find the steady-state response for a system forced with general periodic forcingVibrationsRose-Hulman Institute of Te
Maryland - ENEE - 0105
Name: 0105-0110 Consider the following circuit:3Quiz #70.2 F cos(5t) Asin(5t) A512H31cos(5t-45) Va) Draw the phasor equivalent circuit so that it is ready for the general mesh analysis (convert sources as needed, etc). Indicate all the circulat
Fayetteville State University - CDA - 3101
FSUDEPARTMENT OF COMPUTER SCIENCEFSUDEPARTMENT OF COMPUTER SCIENCEConcepts Introduced in Chapter 3 basic instruction set design principles subset of the MIPS assembly language correspondence between high-level language constructs and MIPS assembly co
Michigan State University - JOHN - 1955
Example of Delisting BiasThree Stocks equally weighted in a portfolio Stocks are delisted if they reach $10. Price at time=0 A B C 20 12 12 Return from T=0 to t=1 20% 25% -33% =(8-12)/12 -16.7% =(10-12)/12 Delisted at $10 delist returnMEASURED RETURNS:
Christopher Newport University - CS - 260
IntroductionComputer design is the result of a complex integration of both hardware and software. Understanding the boundary of hardware and software is an important step to becoming a proficient programmer and truly understanding the impact of a program
UMass (Amherst) - PSYC - 661
Psych 661: Attitudes and Opinions Attitude MeasurementProfessor: Office: Email: Tel:Icek Aizen Tobin 625 aizen@psych.umass.edu 545.0509AttitudeAttitude: Readiness to respond to a psychological object with some degree of favorableness. The evaluative r
Anderson University - PAST - 5440
David Aukerman Position Paper #1 PAST5440: Family Life Cycle and Pastoral Care January 25, 2005 My Theory for How to Help Individuals and Groups of People Make Growth and Change My experiences in pastoral care, both in academics and in practice, are very
NYU - ATM - 262
Intensity (and Variants) GammaAlan Stacey(joint work with Mark Joshi and carried out in large part at the Quantitative Research Centre (QuaRC), Royal Bank of Scotland)Credit Risk Under Lvy ModelsEdinburgh, September 22nd 2006The one-factor Gaussian c
U. Houston - MATH - 1310
FactoringIf your problem is a trinomial that looks like: may use the following method to factor it. For example: 8x2 + 22x + 12 initially: ax2 + bx + c and a, b, and c are integers, youa is 8, b is 22, and c is 12Step 1: factor out the greatest common
Dallas - OR - 6201
OPRE 6201 FINAL on 4 December 2002This is an open textbook and open lecture notes exam. You may use a calculator although leaving quantities as fractions, additions or products is perfectly acceptable and preferable. No cellular communication devices (la
Lehigh - IE - 208
IE426 Optimization models and applicationsFall 2008 Solution of quiz #2, November 4, 20081 Modeling (12 pts.)A large bank has a set of branches across Pennsylvania. The bank wants to match some pairs of branches so that each branch in the pair provides
E. Kentucky - POLS - 972
Political Science 972: International Conflict Discussion Questions for Week 7 Organizational and Cognitive Processes 1. What is the linkage between human conflict on the individual level (as expressed in biological and psychological theories) or the group
University of Texas - I - 385
Aspects of Music Information Retrieval Will Meurer School of Information at The University of Texas at AustinMusic Information Retrieval 1 Abstract This paper outlines the complexities of music as information and gives an overview of Music Information Re
Acton School of Business - STAT - 300
Modeling interactions 2Lotka Volterra model of prey predator interactiondH = rH H - aHP dt dP = -rP P + bHP dtH prey density, P predator densityEquilibriaH = 0, rP H= , b P=0 rH P= aPhase portrait - nullclines0.7 0.60.5P0.40.30.20.1000.20
UCSB - ECON - 240
Midterm Review1Outline TheTriangle of Stability - Power 7 Augmented Dickey-Fuller Tests Power 10 Lab Five 2005 Midterm2I. The Triangle of Stability3Autoregressive Processes Order Iftwo: x(t) = b1 * x(t-1) + b2 * x(t-2) + wn(t)b2 = 0, then of or
Colorado - PHYS - 7840
Fourth lecture-September 12, 2006Web Page:http:/www.colorado.edu/physics/phys7840NOTE: No lecture Thursday, Sept. 14; Lectures resume Tuesday, Sept.19. Today's topics: Sagnac effect revisited-carrying a clock Invariance of phase of a plane wave wave-nu
Northeastern University - COM - 1204
/* File:ps2.doc (in the Documents group in the project - not compiled)Author:R. P. FutrelleDate:7/31/98Notice:Copyright 1998 by R. P. Futrelle and the College of Computer Science,Northeastern UniversityClass: COM1204, Object-Oriented Design, Summer 1
UMass (Amherst) - PSYC - 315
Chapter 8, Concepts and Knowledge Categories What's a category? What's a concept a. Category: set of entities (things, events, properties.) that can (usefully) be treated as alike b. Concept: mental representation of category c. Are categories arbitrary b
UNC Wilmington - BLA - 361
BLA 361 Exam 2 Review"The life of the law has not been logic; it has been experience."Oliver Wendell HolmesCreated by Pamela S. Evers, Assoc. Prof., UNCW, for Educational Purposes 2001 (w/updates)Sales puffery or warranty?Theme park had sign stating
Kentucky - BULL - 0708
30Living AccommodationsLiving AccommodationsAPPLYING FOR HOUSINGThe University's Campus Housing Office processes housing applications, assigns residence hall rooms and undergraduate apartments, and notifies students of assignments. It is important to
Maine - PDFS - 104
10 0 1. 0 2. 0 3. 0 4. 0 5. 0 6. 0 7. 0 8. 0 9. 010. 011. 012.UNIVERSITY OF SOUTHERN MAINE STUDENT INPUT FOR TEACHING FACULTY EVALUATIONS - BIOLOGICAL SCIENCES 857 STUDENTS RESPONDED ENTIRE DEPT QUESTION MEDIAN MEAN STD. NO DEV. RESPONSE HOW PREPARED WA
Macalester - MATH - 153
S. Ahearn Math 153: Statistics SamplingSpring 2005 Mon 14 FebReading assignment: Moore, Chapter 7 Pop vs. soda by Jason Straziuso, Associated Press writer Speaking for themselves, pp. 34 and p. 18, "Survey methods and technical notes" The Wilder Foundat
Uni. Worcester - CS - 563
Surface Reflection ModelsFrank Losasso (flosasso@nvidia.com)IntroductionOne of the fundamental topics in lighting is how the light interacts with the environment. The academic community has researched several models over the last century, but for the m
Penn State - EVS - 5064
Product Dissection & Benchmarking Project Handout II Measurements and Dissection. Estimated time: 2 hours Preparation before beginning the Lab: Read Noise Measurement and Electric Circuits Handouts. Section: Team: Members: _3_ 7_(Time)_ Tim Brown_ Emiran
Iowa State - NR - 46542
Allamakee County InteragencyThe Allamakee County Interagency group met on Nov 14, 2006 at 9 am at the Allamakee County Extension office. The meeting was hosted by NE IA Community Action and NE IA Behavioral Health Center. AGENCY UPDATES NE IA Behavioral
Wisconsin - WK - 101
Economic NoteOctober 2004Earth warming mythPresident Putin of Russia announced that finally he would ratify the Kyoto Protocol after claiming the opposite for months. Irrespective of the reason for this change of mind, Russia's ratification of the gree
Iowa State - NCR - 167
Heterosis: Effects of Selection on Patterns and Adaptedness on Constancy A. Forrest Troyer, University of Illinois 611 Joanne Lane, DeKalb, IL 60115 atroyer@uiuc.edu Heterosis continues to be poorly understood. As corn germplasm becomes more complex, more
Michigan State University - FS - 958
Recent Developments of the Nazarov ReactionBanibrata Ghosh Michigan State University January 14, 2004OutlineDirected Nazarov reactions Asymmetric Nazarov reactions Other recent variants of the Nazarov reactionIntroduction Named after the eminent Russi
Lafayette - PHYS - 133
Physics 133 Fall 2008 Final Exam Notes Final: Friday, December 12, 2008, 46 p.m., Hugel 103 Office Hours: I expect to be available Tuesday, December 9, 2008 from 9 a.m. to 4 p.m., and Wednesday, December 10, 2008, from noon to 4 p.m. I will likely be avai
Iowa State - CPRE - 308
Today More Semaphores Condition Variables and Examples1Producer ConsumerProducer Consumer Mutual exclusion Buffer Empty Buffer Full2Producer Consumer using SemaphoresShared Variables: count (number of items in buffer), buffer N = maximum size of b
Uni. Worcester - CS - 502
Two DigressionsStacks ProducerConsumer modelsCS 3013 & CS 502 Summer 2006Digressions: ProducerConsumer and Stacks 1Digression: the "Stack" Imagine the following program:int factorial(int n)cfw_ if (n <= 1) return (1); else int y = factorial(n-1); ret
University of Rochester - PHYS - 310
Physics 310 Spring 2003 Week 3 AC Circuits Errata for the Reading: pp. 44-5: The words defining the phase angle are good, but equation (3-4) should be v(t)=VPsin (t + ) in order to be consistent (and to match the definition of phase angle for phasors). Th
Stanford - PAH - 1006
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28JOSEPH W. COTCHETT (36324) BRUCE L. SIMON (96241) MARK C. MOLUMPHY (168009) COTCHETT, PITRE, SIMON & McCARTHY 840 Malcolm Road, Suite 200 Burlingame, California 94010 Telephone: (6
Lehigh - CSC - 271
Program P4 Due: Tuesday, June 15AbstractCreate a fast indexing system for man pages.DetailsThe problem with man pages is that there are a lot of them! When a user requests a manual page via the man command, the program must search each of the componen
SUNY Buffalo - PHY - 410
PHY 410-505 Computational Physics IChapter 7: Random SystemsLecture 1Friday November 14, 20081LECTURE OUTLINELECTURE OUTLINELecture Outline Random Processes Monte Carlo Methods . . . . . . . . . . . . . . . . . . . . . . . Random Number Generators
UMass (Amherst) - NRC - 297
On Screen Digitizing Demo May 4th , 2006Preamble: You work with communities of the Town of Hadley and Northampton in Massachusetts, USA. Some new and intensive residential development is expected. There are some concerns that it can affect wetlands and i
University of Texas - PSY - 394
Eye Movements in Natural BehaviorAuthors: Mary Hayhoe & Dana Ballard Departments of Brain & Cognitive Science and Computer Science University of Rochester, Rochester, NY 14627, USA mary@cvs.rochester.edu dana@cs.rochester.eduAbstract Although it has bee
Purdue - EE - 612
Fall 2008 EE 612: Nanoscale TransistorsSOLUTION TO HW1: MOSFET reviewExercises with nano-CMOS on www.nanoHUB.orgThe purpose of this exercise is to help you review the basic theory of the MOSFET, device some key device parameters, and give you a feel fo
Austin Peay - MATH - 1420
Math 1420Homework Review 1Fall 2007NOTE: In problems 1 and 2, be sure to do all your calculation mentally (w/o a pencil), THEN write down how you thought about it. 1. Use Number Sense, do not use a calculator or a pencil and paper algorithm to determin
Michigan State University - ZOL - 446
What environmental issues arise related to these human activities?1.PopulationThree Subdisciplines of Environmental Sciencea. size of population b. impact per person 2. Resources a. non-renewable - finite supply b. renewable if "husbanded suitably" ex
Texas A&M - M - 367
Math 367Section 500Spring 2005Assignment # 4 (Extra-credit)Date due: At nal exam Name: ID: Remark:This assignment concerns a geometric system [S, , , d, m] consisting of a space S, containing a set of lines , a set of planes , a distance function d an
CSU Northridge - AES - 15831
Renewable Energy from the Ocean Vocabulary: renewable energy, radiant energy, fossil fuel, nuclear fuel, turbine, offshore wind power system, megawatt, ocean thermal energy conversion (OTEC) Pre-reading Questions: 1. What are the problems with our current
National Taiwan University - M - 151
Midterm 1, Form A - Solutions 1.(20 points) Let f (x) = x2 + 5 and g(x) = sin x. Find formulas for the following, and determine whether they are even, odd, or neither. (a) (f + g 2 )(x) (f + g 2 )(x) = f (x) + [g(x)]2 = x2 + 5 + (sin x)2 = x2 + 5 + sin2 x
National Taiwan University - M - 151
Midterm 1, Form B - Solutions 1.(20 points) Let f (x) = cos x and g(x) = x3 - x. Find formulas for the following, and determine whether they are even, odd, or neither. (a) (f + g 2 )(x) (f + g 2 )(x) = f (x) + [g(x)]2 = cos x + (x3 - x)2 = x6 - 2x4 + x2 +
Findlay - NR - 11884
2008AGREEMENTTOPARTICIPATEIwishtoparticipateinSibsandKidsWeekend2008onApril4April6,2008.IacknowledgethatIam ingoodhealthandgoodphysicalcondition.Iunderstandthattherearerisksinherentinanyphysical activity.Iassumetherisksandaccepttheconsequencesinvolvedinm
Arizona - A - 204
Title: Hearts of Oak. Subject(s): EXODUS to Arthur (Book)Source: Sky & Telescope, Dec99, Vol. 98 Issue 6, p79, 3p, 3cAuthor(s): Steel, DuncanAbstract: Reviews the book `Exodus to Arthur: Catastrophic Encounterswith the Comets,' by Mike Baillie.AN: 2
Arizona - A - 204
Title: The Real Unified Theory.Source: Sky & Telescope, Sep2000, Vol. 100 Issue 3, p88, 2p, 1bwAuthor(s): Levy, David H.AN: 3360968ISSN: 0037-6604Note: Tucson-Pima Public Library subscribes to this magazine.Database: MasterFILE EliteSection: star t
Cornell - CS - 626
# Think HARD when you use this matrix in project II, what does it mean and if you are using it properly# BLOSUM Clustered Target Frequencies=qij# Blocks Database = /data/blocks_5.0/blocks.dat# Cluster Percentage: >= 62 A R N D C Q E G H I L K M F P S
UMBC - ULLMANFALL - 461
Design ProblemOK; let's design a relational DB schema for beersbars-drinkers. Drinkers have unique names and addresses. They like one or more beers and frequent one or more bars. They have phones, usually one but sometimes more or none. Bars have unique
Michigan State University - ADV - 465
SUMMARIES OF IMPORTANT CASESPITTSBURGH PRESS V PITT. COMM'N. ON HUMAN RELAT'NS1973, June- The National Organization of Women (N.O.W.) filed a complaint with the Commission because the newspaper listed employment ads under gender based headings in violat
Iowa State - FDFE - 10780
George Graver- AmeriCorps Fall 2002 St. Joseph the Worker Elementary SchoolMy experience with AmeriCorps was so rewarding that I cannot overstate the benefits of the program. The teachers at St. Joseph the Worker and I meshed well right from the beginnin
Washington University in St. Louis - CS - 464
EE273 Lecture 21/12/2004EE273 Lecture 2 WiresJanuary 12, 2004Heinz Blennemann Stanford UniversityEE273, L2Copyright 2004 (c) by WJD & HCB, all rights reserved1Announcements Please check course webpage regularly for announcements http:/eeclass.st
UNC Wilmington - BLA - 361
SAMPLE MID-TERM WITH ANSWERS IN BOLD BLA 361 LEGAL ENVIRONMENT OF BUSINESSQuestions 1 - 5 are based upon the following hypothetical scenario. A few legislators have suggested enacting this type of law. Hint: focus only on the legal issues, not whether yo
Maine - PDFS - 206
1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. 12.UNIVERSITY OF SOUTHERN MAINE STUDENT INPUT FOR TEACHING FACULTY EVALUATIONS - DEPARTMENT OF ENGINEERING - SPRING 2006 98 STUDENTS RESPONDED ENTIRE DEPT QUESTION MEDIAN MEAN STD. NO 1 2 DEV. RESPONSE HOW PREPARED WAS