Proposed Change:
Added countermeasure that trusted WiFi access points (AP) also have known and verifiable locations; geo-fencing could be used to prevent mobile device users from being tricked into connecting to rogue access points that spoof the SSID of known access points (e.g. Starbuck's free WiFi). This forces the attacker to set up a rogue AP in close proximity to the trusted AP, which both decreases the chance mobile devices connect to the rogue AP over the trusted AP, and increases the chance the rogue AP will be detected as such.
Justification:
Improve completeness of presented countermeasures.
General Comment
Threat ID: LPN-0
Type of Comment:
Proposed Change: Added countermeasure that trusted WiFi access points (AP) also have known and verifiable locations; geo-fencing could be used to prevent mobile device users from being tricked into connecting to rogue access points that spoof the SSID of known access points (e.g. Starbuck's free WiFi). This forces the attacker to set up a rogue AP in close proximity to the trusted AP, which both decreases the chance mobile devices connect to the rogue AP over the trusted AP, and increases the chance the rogue AP will be detected as such.
Justification: Improve completeness of presented countermeasures.