公开(公告)号：EP1929655B1

公开(公告)日：2018-08-08

申请号：EP06772318.9

申请日：2006-06-06

申请人： Cisco Technology, Inc.

发明人： YANG, Sheausong ,  OLSON, Timothy ,  STRATIGAKIS, John ,  REBO, Richard

IPC分类号： H04W52/50 ,  H04W52/28 ,  H04W28/18 ,  H04W48/08

CPC分类号： H04W52/50 ,  H04W28/18 ,  H04W48/08 ,  H04W52/28

摘要： A set of new information elements are defined that are to be used between an access point and a client that allow an access point to advertise its capabilities, configuration, and/or parameters allowing the client to tune to the parameters prior to, during, or after associating with the access point. If the access point adjusts these parameters, the changes are advertised in subsequent beacons and response frames and the client responsive to receiving a beacon or response frame with changed parameters will change its parameters accordingly. If the station changes its operating parameters it will send a message to the access point informing the access point of the changes.

公开(公告)号：EP1854005A1

公开(公告)日：2007-11-14

申请号：EP06721103.7

申请日：2006-02-27

申请人： Cisco Technology, Inc.

发明人： OLSON, Timothy ,  SHUEN, Pauline ,  SANZGIRI, Ajit ,  WINGET, Nancy ,  ROSHAN, Pejman

IPC分类号： G06F11/00 ,  G06F11/30

CPC分类号： H04W12/12 ,  H04L63/1433 ,  H04L63/1441 ,  H04L63/1466 ,  H04W48/08 ,  H04W48/16 ,  H04W88/08

摘要： Methods and apparatus are disclosed for locating and disabling the. switch port of a rogue wireless access point. In one embodiment, a network management device is configured to detect the presence of a rogue access point on a managed wireless network. Once detected, the management device may then instruct a special client, such as a scanning AP, to associate with the rogue access point and send a discovery packet through the rogue access point to network management device. The network management device upon receiving the discovery packet may thereby determine that the rogue access point is connected to a network managed by said network device. The network device may then utilize information contained in the discovery packet to locate the switch port to which the rogue access .point is connected, and ultimately disable the switch port to which the rogue access point is connected.

公开(公告)号：EP1929655A2

公开(公告)日：2008-06-11

申请号：EP06772318.9

申请日：2006-06-06

申请人： Cisco Technology, Inc.

发明人： YANG, Sheausong ,  OLSON, Timothy ,  STRATIGAKIS, John ,  REBO, Richard

IPC分类号： H04B7/00 ,  H04Q7/20

CPC分类号： H04W52/50 ,  H04W28/18 ,  H04W48/08 ,  H04W52/28

摘要： A set of new information elements are defined that are to be used between an access point and a client that allow an access point to advertise its capabilities, configuration, and/or parameters allowing the client to tune to the parameters prior to, during, or after associating with the access point. If the access point adjusts these parameters, the changes are advertised in subsequent beacons and response frames and the client responsive to receiving a beacon or response frame with changed parameters will change its parameters accordingly. If the station changes its operating parameters it will send a message to the access point informing the access point of the changes.

公开(公告)号：EP1834451A2

公开(公告)日：2007-09-19

申请号：EP05848838.8

申请日：2005-12-02

申请人： Cisco Technology, Inc.

发明人： CAM WINGET, Nancy ,  KRISCHER, Mark ,  OLSON, Timothy ,  SHUEN, Pauline ,  SANZGIRI, Ajit ,  YANG, Sheausong

IPC分类号： H04L12/56

摘要： A detection-based defense to a wireless network. Elements of the infrastructure, e.g., access points or scanning-only access points, detect intruders by detecting spoofed frames, such as from rogue access points. Access points include a signature, such as a message integrity check, with their management frames in a manner that enables neighboring access points to be able to validate the management frames, and to detect spoofed frames. When a neighboring access point receives a management frame, obtains a key for the access point sending the frame, and validates the management frame using the key.

摘要翻译： 基于检测的无线网络防御。 基础设施的元件，例如接入点或仅扫描接入点，通过检测欺骗性帧（例如从流氓接入点）来检测入侵者。 接入点包括签名，例如消息完整性检查，其管理帧的使用方式使邻近接入点能够验证管理帧，并检测欺骗帧。 当相邻接入点接收到管理帧时，获取发送帧的接入点的密钥，并使用密钥验证管理帧。

公开(公告)号：EP1834451B1

公开(公告)日：2019-10-30

申请号：EP05848838.8

申请日：2005-12-02

申请人： Cisco Technology, Inc.

发明人： CAM WINGET, Nancy ,  KRISCHER, Mark ,  OLSON, Timothy ,  SHUEN, Pauline ,  SANZGIRI, Ajit ,  YANG, Sheausong

IPC分类号： G06F21/00 ,  H04L29/06 ,  H04W12/06

公开(公告)号：EP1794669A2

公开(公告)日：2007-06-13

申请号：EP05793324.4

申请日：2005-09-12

申请人： Cisco Technology, Inc.

发明人： DOUGLAS, Bretton ,  BILSTAD, Arnold ,  OLSON, Timothy ,  STEPHENSON, David, S. ,  YANG, Sheausong ,  WINGET, Nancy ,  NORMAN, Stuart ,  MEIER, Robert ,  SMITH, Douglas, A.

IPC分类号： G06F7/00

CPC分类号： H04W24/00 ,  H04W8/00

摘要： A technique for network planning that includes an interface for guiding a network user through the network allocation process, such as defining groups of clients based on their capabilities. Portions of the wireless local area network infrastructure, e.g., access points, are allocated among the groups. When a client attempts to associate with an access point, the access point determines the client capabilities. If the client is supported by the access point, the access point allows the client to associate and sends the client a message that contains a prioritized list of other nearby access points allocated to service that client, otherwise the access point sends a prioritized roaming list of nearby access points to the client that are allocated to serve that type of client. Feedback is provided by the network infrastructure enabling a network user or the network to automatically reallocate resources based on the feedback.

公开(公告)号：EP1730888A2

公开(公告)日：2006-12-13

申请号：EP05706107.9

申请日：2005-01-19

申请人： Cisco Technology, Inc.

发明人： DOUGLAS, Bretton ,  OLSON, Timothy

IPC分类号： H04L12/26

CPC分类号： H04W24/00 ,  H04L41/06 ,  H04L41/0896 ,  H04L43/0829 ,  H04L43/0882 ,  H04W24/10 ,  H04W28/22

摘要： Systems and methods for evaluating wireless network quality. A metric provided by embodiments of the present invention relies on information that is relatively easy to collect, can be very efficiently computed, and yet provides a realistic estimate of likely wireless network performance. In one implementation, the input includes path loss data and access point transmitter power level and frequency settings. A capacity indicator is computed for each client and each access point. A data rate indicator is computed for each client location. The traffic load is computed for each access point. Based on these computed indicators, a bidirectional client throughput can be computed for each client and a combined metric can be determined for the network as a whole.

公开(公告)号：EP1854005B1

公开(公告)日：2009-04-15

申请号：EP06721103.7

申请日：2006-02-27

申请人： Cisco Technology, Inc.

发明人： OLSON, Timothy ,  SHUEN, Pauline ,  SANZGIRI, Ajit ,  WINGET, Nancy ,  ROSHAN, Pejman

IPC分类号： G06F11/00 ,  G06F11/30

CPC分类号： H04W12/12 ,  H04L63/1433 ,  H04L63/1441 ,  H04L63/1466 ,  H04W48/08 ,  H04W48/16 ,  H04W88/08

摘要： Methods and apparatus are disclosed for locating and disabling the. switch port of a rogue wireless access point. In one embodiment, a network management device is configured to detect the presence of a rogue access point on a managed wireless network. Once detected, the management device may then instruct a special client, such as a scanning AP, to associate with the rogue access point and send a discovery packet through the rogue access point to network management device. The network management device upon receiving the discovery packet may thereby determine that the rogue access point is connected to a network managed by said network device. The network device may then utilize information contained in the discovery packet to locate the switch port to which the rogue access .point is connected, and ultimately disable the switch port to which the rogue access point is connected.