With the rapid development of new technologies, the safety of personal data is expected to increase. However, no matter how secure a wireless network is, there are some special tools and methods that allow certain people to crack it. Despite the fact that there is a great number of solutions that allow to overcome these attacks, wireless hacking is still a significant threat for networks. The purpose of this paper is to discuss some wireless hacking techniques that affect the security of cloud systems and summarize the article written by Kumar, Mani, and Akunuru.
To begin with, the cloud is one of the modern and rather promising systems that has provided Internet-based services’ massive growth. Though the security of the cloud is considered to be its vital function, some safety threats are still a significant challenge in this system. Precisely the wireless hacking, which is cracking a network’s security protocols and getting full access to abuse, download, store, and view it, is recognized as the prevalent method threatening to attack the cloud system (Rahalkar, 2016). In their article, the authors describe four main wireless hacking techniques (Kumar, Mani, & Akunuru, 2016). In order to completely understand this topic, it is essential to discuss all of them.
Generally, the four key hacking methods are cloud malware injection attack, wrapping attack, denial of service (DoS) attack, and account hijacking attack. First, the attack of malware injection is when a hacker finds a web application’s vulnerabilities and embeds hostile codes into it (Kumar et al., 2016). These actions alter the course of the usual implementation. It is necessary for an attacker to produce his or her service request, virtual machine, or personal application and apply it to the cloud’s structure (Kumar et al., 2016). Second, when the web servers validate signed requests, wrapping attacks determine their weakness using extension markup language signature wrapping.
Third, denial of service attack is attempting to stop the legal users from accessing cloud resources. The attacker sends special bulk messages asking the server to check the requests (Kumar et al., 2016). The purpose of such attacks is to make crucial components fail or consume available hardware resources. Finally, to undertake account hijacking, the attacker needs stolen credentials (Kumar et al., 2016). This allows him or her to get access to sensitive information and compromise the provided services’ confidentiality, availability, and integrity (Kumar et al., 2016). The types of account hijacking include returning falsified information, manipulating data redirection to illegitimate websites, and eavesdropping on the transaction or sensitive activities.
Apart from discussing the types of wireless hacking that threaten cloud, the article provides the typical reasons for attacking networks and lists some solutions to overcome wireless hacking techniques (Kumar et al., 2016). Therefore, “stolen evidence acts as the major factor to hijack the account of individuals” (Kumar et al., 2016, p. 90). The attackers’ other motives are to restrict access to information, steal personal data, change the sent message, and create destruction to the cloud-server system.
As preventing and overcoming wireless hacking techniques is the primary goal of the cloud, some effective methods are invented. For example, there are two-factor authentications that require users entering into three properties to ensure their identities (Kumar et al., 2016). Moreover, perceiving the security policies of service level agreements and cloud provider, employing proactive supervision to predict unauthorized activities, and restricting the account credentials sharing between users and services are the ways to prevent wireless hacking.
References
Kumar, B., Mani, J., & Akunuru, P. C. (2016). A review of wireless hacking techniques that affect the security of cloud systems. Journal of Computations & Modelling, 6(3), 87-103.
Rahalkar, S.A. (2016) Wireless hacking. In Certified ethical hacker (CEH) foundation guide (pp. 143-151). Berkeley, CA: Apress.