research-article

SecuSpot: Toward Cloud-Assisted Secure Multi-Tenant WiFi HotSpot Infrastructures

Authors:

Julius Schulz-Zander,

Raphael Lisicki,

Anja FeldmannAuthors Info & Claims

CAN '16: Proceedings of the 2016 ACM Workshop on Cloud-Assisted Networking

Pages 61 - 66

https://doi.org/10.1145/3010079.3012015

Published: 12 December 2016 Publication History

Abstract

Despite the increasing popularity of WiFi networks and the trend toward automated offloading of cellular traffic to WiFi (e.g., HotSpot 2.0), today's WiFi networks still provide a very poor actual coverage: a WiFi equipped device can typically connect to the Internet only through a very small fraction of the "available" access points. Accordingly, there is an enormous potential for multi-tenant WiFi hotspot architectures, which however also introduce more stringent requirements in terms of scalability and security. The latter is particularly critical, as HotSpots are often deployed in untrusted environments, e.g., physically accessible Access Points deployed in the user's premises (e.g., FON) or cafes. This paper proposes a Cloud-assisted multi-tenant and secure WiFi HotSpot infrastructure, called SecuSpot. SecuSpot is based on a modular access point and features interesting deployment flexibilities. These flexibilities can be exploited, e.g., to move security critical functions to the Cloud, and hence prevent eavesdropping even when deployed across untrusted Access Points. At the heart of SecuSpot lies a novel programmable wireless switch, the wSwitch. The wSwitch allows to (de-)multiplex the different tenants already on the HotSpot and to decouple essential security functions (association, authentication, and cryptography).

References

[1]

AeroHive Networks. http://www.aerohive.com.

[2]

Aruba Networks. http://www.arubanetworks.com/.

[3]

Floodlight. http://floodlight.openflowhub.org/.

[4]

Meraki. http://www.meraki.com/.

[5]

ovsd. https://github.com/berlin-open-wireless-lab/ovsd.

[6]

Anyfi.net. Anyfi documentation. In http://anyfi.net/documentation, 2016.

[7]

P. Bright. Insecure vodafone femtocells allow eavesdropping, call fraud. Ars Technica, 2011.

[8]

P. Calhoun, R. Suri, N. Cam-Winget, M. Williams, S. H. B. O'Hara, and S. Kelly. Lightweight Access Point Protocol. RFC 5412, 2010.

[9]

P. Dely, J. Vestin, A. Kassler, N. Bayer, H. Einsiedler, and C. Peylo. Cloudmac: An openflow based architecture for 802.11 mac layer processing in the cloud. In 2012 IEEE Globecom Workshops, pages 186--191, Dec 2012.

[10]

Y. J. Gwon, J. Kempf, R. Dendukuri, and R. Jain. VoIPv6 over IEEE 802.11b Wireless LAN. In Proc. WiNMee, 2005.

[11]

T. Høiland-Jørgensen. Airtime fairness with mac80211 and ath9k. In https://lists.bufferbloat.net/pipermail/make-wifi-fast/2016-June/000747.html, 2016.

[12]

E. Kohler, R. Morris, B. Chen, J. Jannotti, and M. F. Kaashoek. The click modular router. ToCS 2000.

Digital Library

[13]

D. S. P. Calhoun, M. Montemurro. Control And Provisioning of Wireless Access Points (CAPWAP) Protocol Specification. RFC 5415, 2009.

[14]

J. Schulz-Zander, C. Mayer, B. Ciobotaru, S. Schmid, and A. Feldmann. Opensdwn: Programmatic control over home and enterprise wifi. In Proc. ACM Sigcomm Symposium on SDN Research (SOSR), 2015.

Digital Library

[15]

J. Schulz-Zander, S. Schmid, J. Kempf, R. Riggio, and A. Feldmann. Legofi the wifi building blocks! the case for a modular wifi architecture. In Proc. ACM MOBICOM Workshop on Mobility in the Evolving Internet Architecture (MobiArch), 2016.

Digital Library

[16]

J. Schulz-Zander, L. Suresh, N. Sarrar, A. Feldmann, T. Hühn, and R. Merz. Programmatic Orchestration of WiFi Networks. In Proc. USENIX ATC '14.

Digital Library

[17]

S. Sen, N. K. Madabhushi, and S. Banerjee. Scalable WiFi Media Delivery through Adaptive Broadcasts. In Proc. NSDI, 2010.

Digital Library

[18]

R. Sherwood, G. Gibb, K.-K. Yap, G. Appenzeller, M. Casado, N. McKeown, and G. Parulkar. Can the production network be the testbed? In Proc. 9th USENIX Conference on Operating Systems Design and Implementation (OSDI), pages 1--6, 2010.

Digital Library

[19]

G. Tan and J. Guttag. Time-based fairness improves performance in multi-rate wlans. In Proceedings of the Annual Conference on USENIX Annual Technical Conference, ATEC '04, pages 23--23, Berkeley, CA, USA, 2004. USENIX Association.

Digital Library

[20]

S. Taylor, A. Young, and A. Noronha. What do consumers want from wi-fi? Insights from Cisco Internet Business Solutions Group (IBSG) Consumer Research, 2012.

[21]

Y. Yiakoumis, M. Bansal, A. Covington, J. van Reijendam, S. Katti, and N. McKeown. BeHop: A Testbed for Dense WiFi Networks. In Proc. WiNTECH '14.

Digital Library

Cited By

Engelhard PZachlod ASchulz-Zander JDu S(2019)Toward scalable and virtualized massive wireless sensor networks2019 International Conference on Networked Systems (NetSys)10.1109/NetSys.2019.8854518(1-6)Online publication date: Mar-2019
https://doi.org/10.1109/NetSys.2019.8854518
Gu ZHardjawana WVucetic BHo L(2018)Multi-tenant spectrum and SSIDs controller for WiFi networksIEEE INFOCOM 2018 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)10.1109/INFCOMW.2018.8407005(318-323)Online publication date: Apr-2018
https://doi.org/10.1109/INFCOMW.2018.8407005
Schulz-Zander JMayer CCiobotaru BLisicki RSchmid SFeldmann A(2017)Unified Programmability of Virtualized Network Functions and Software-Defined Wireless NetworksIEEE Transactions on Network and Service Management10.1109/TNSM.2017.274480714:4(1046-1060)Online publication date: 1-Dec-2017
https://dl.acm.org/doi/10.1109/TNSM.2017.2744807

Index Terms

SecuSpot: Toward Cloud-Assisted Secure Multi-Tenant WiFi HotSpot Infrastructures
1. Networks

Recommendations

Secure bootstrapping of cloud-managed ubiquitous displays
UbiComp '14: Proceedings of the 2014 ACM International Joint Conference on Pervasive and Ubiquitous Computing

Eventually, all printed signs and bulletins will be replaced by electronic displays, which are wirelessly connected to the Internet and cloud-based services. Deploying such ubiquitous displays can be cumbersome since they need to be correctly configured ...
Performance Analysis of UMTS and WLAN Interworking with Multi-service Load
ARTCOM '10: Proceedings of the 2010 International Conference on Advances in Recent Technologies in Communication and Computing

Future generation wireless networks are expected to support multiple wireless access technologies, each with different access bandwidth and coverage range. Two of these technologies include Universal Mobile Telecommunications System (UMTS) and IEEE ...
A survey on emerging broadband wireless access technologies

Wireless broadband technologies provide ubiquitous broadband access to wireless users, enabling services that were available only to wireline users. In this paper, we summarize emerging wireless broadband access technologies, ranging from WLANs to ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

CAN '16: Proceedings of the 2016 ACM Workshop on Cloud-Assisted Networking

December 2016

80 pages

ISBN:9781450346733

DOI:10.1145/3010079

General Chairs:
Murat Yuksel
University of Central Florida, USA
,
Timothy Wood
George Washington University, USA

Copyright © 2016 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

Sponsors

SIGCOMM: ACM Special Interest Group on Data Communication

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 12 December 2016

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

VILLUM foundation Project ReNet
DFG project Gottfried Wilhelm Leibniz-Preis 2011

Conference

CoNEXT '16

Sponsor:

SIGCOMM

CoNEXT '16: The 12th International Conference on emerging Networking EXperiments and Technologies

December 12, 2016

California, Irvine, USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

3
Total Citations
View Citations
133
Total Downloads

Downloads (Last 12 months)5
Downloads (Last 6 weeks)1

Reflects downloads up to 28 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Engelhard PZachlod ASchulz-Zander JDu S(2019)Toward scalable and virtualized massive wireless sensor networks2019 International Conference on Networked Systems (NetSys)10.1109/NetSys.2019.8854518(1-6)Online publication date: Mar-2019
https://doi.org/10.1109/NetSys.2019.8854518
Gu ZHardjawana WVucetic BHo L(2018)Multi-tenant spectrum and SSIDs controller for WiFi networksIEEE INFOCOM 2018 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)10.1109/INFCOMW.2018.8407005(318-323)Online publication date: Apr-2018
https://doi.org/10.1109/INFCOMW.2018.8407005
Schulz-Zander JMayer CCiobotaru BLisicki RSchmid SFeldmann A(2017)Unified Programmability of Virtualized Network Functions and Software-Defined Wireless NetworksIEEE Transactions on Network and Service Management10.1109/TNSM.2017.274480714:4(1046-1060)Online publication date: 1-Dec-2017
https://dl.acm.org/doi/10.1109/TNSM.2017.2744807

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten