A Dual Authentication Protocol for IEEE 802.11 Wireless LANs

This paper first identify a vulnerability of IEEE 802.11 wireless LANs in which a compromised access point can still authenticate itself to a wireless station and gain control over the connection, and show that the current IEEE 802.11i standard does not address this problem. This paper then propose a new protocol that can counter this attack by providing dual authentication for both a wireless station and its corresponding access point at connection setup time using the authentication server. This paper also considers roaming situations and presents a roaming authentication protocol.