Information Security Institute A university for the real world
QUT Home
Contact us
ISI HomeAbout UsResourcesResearchEvents


Research
Research Groups
Research Laboratories
 *Secure Networks Lab
Speech, Audio, Image and Video Technologies Lab
Publications
Scholarships
[ Print-friendly version ]

Secure Networks Lab

The Secure Networks Laboratory (SNL) was founded as a focal point for research and education in the original Information Security Research Centre (ISRC) in 1992. It has gained a notable reputation for its research into information security, including (but not limited to):

  • smart cards and other token based technology
  • the incorporation of encryption technology into small computer systems
  • formatulation of international standards in areas such as Electronic Data Interchange
  • trusted computing platform research

15 years on, the focus of the SNL has changed, and now focuses on higher-level solutions oriented around network security. Research is kept in-line with current problems and public focus. ISI researchers are currently active in a number of networks security related areas, including wireless networks and internet monitoring technologies.

WiFi Security

As wireless connectivity becomes more and more common, the threats that target it and the countermeasures required to mitigate them are rapidly evolving. The SNL provides a wireless network research environment and testbed for both the discovery of new threats and weaknesses applicable to wireless LAN devices, and research wnto methods of securing devices and networks against existing threats.

Our research in this area has lead to many important research discoveries, including the discovery of the Denial of Service attack against IEEE 802.11 DSSS-based wireless LANs, the report of which is available here.

Darknet and Honeypot Based Research

Darknets are blocks of routable Internet addresses which contain no active hosts, but are attached to the Internet via a packet-capturing device, which stores all the traffic that finds its way into this network. This traffic is usually the result of malicious port-scanning, either by automated means such as trojans and worm viruses, or by other people looking for opportune hosts to attack.

Honeypots and Honeynets perform similar tasks, with the exemption that they provide systems for exploits to interact with. These hosts have no other function except to be interacted with by attackers. The host allows higher interaction than a darknet, providing information on the kind of data exchange that takes place.

Together, the collected traffic allows researchers and students to analyse it for practical uses in Intrusion Detection and Prevention Systems (IDS/IPS) and also provides a source of information for smart firewall implementations, including real-time or near real-time intelligent firewalls.


About Us | Resources | Research | Events
QUT Home | ISI Home | Site Map | Search
CRICOS No. 00213J
 Privacy | Copyright Matters | Accessibility
 Compliance | Contact Us | Feedback | Disclaimer
 Last modified 22-Oct-2007