公开(公告)号：EP1709824A4

公开(公告)日：2011-03-02

申请号：EP04813602

申请日：2004-12-08

申请人： AIRTIGHT NETWORKS INC

发明人： BHAGWAT PRAVIN ,  CHASKAR HEMANT ,  KING DAVID C ,  RAWAT JAI

IPC分类号： G01S20060101 ,  H04K3/00 ,  H04L9/00 ,  H04L12/24 ,  H04L12/26 ,  H04L12/28 ,  H04L12/56 ,  H04L29/06 ,  H04L29/12 ,  H04W12/06 ,  H04W12/08 ,  H04W12/12

CPC分类号： H04W12/12 ,  H04K3/65 ,  H04K3/86 ,  H04K3/94 ,  H04K2203/18 ,  H04L29/12028 ,  H04L29/12367 ,  H04L41/28 ,  H04L61/103 ,  H04L61/2514 ,  H04L63/102 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1466 ,  H04W12/06 ,  H04W12/08

摘要： Methods for monitoring for unauthorised wireless access to computer networks are described. One method includes monitoring wireless communications within a selected geographic region using one or more sniffer devices to at least detect an active wireless access point device that transmits wireless signals within the selected geographic region, the one or more sniffer devices being positioned within the selected geographic region. One or more marker packets are transferred into the computer network, the one or more marker packets being adapted to be transferred to wireless medium from the computer network through the one or more wireless access point devices which are connected to the computer network. The marker packet(s) have a predetermined format and at least a subset of the one or more sniffer devices is configured to be able to identify at least a portion of the predetermined format. The transferring step includes actively transferring at least for a process of detection of unauthorized wireless access to the computer network. The method further includes processing using at least one of the at least the subset of the one or more sniffer devices at least a portion of the monitored wireless communications within the selected geographic region. The processing is directed to at least identifying at least one of the one or more marker packets being transferred from the computer network to the wireless medium within the selected geographic region through the active wireless access point device, and includes identifying the at least the portion of the predetermined format within one or more packets included in the at least the portion of the monitored wireless communications. The method further includes determining that the active wireless access point device provides unauthorised wireless access to the computer network based at least upon the at least one of the one or more marker packets being identified as transferred from the computer network to the wireless medium within the selected geographic region through the active wireless access point device.

摘要翻译： 用于监测未经授权的无线接入计算机网络的方法描述。 一种方法包括使用一个或多个监听设备能够至少检测到活动无线接入点装置并发送所选择的地理区域内的无线信号，所述一个或多个监听设备被选定的地理区域内定位在所选地理区域内的监控的无线通信 ， 一个或更多个标记分组被转移到所述计算机网络，作为angepasst所述一个或更多个标记分组通过其连接到计算机网络的一个或多个无线接入点设备传送到无线介质从计算机网络。 标记（多个）分组具有预定的格式，并且至少所述一个或多个监听设备的子集被配置成能够识别至少预定格式的一部分。 传递环步骤包括积极至少用于检测未经授权的无线访问计算机网络的处理转移环。 该方法包括使用所述一个或多个设备嗅探至少所选择的地理区域内被监视的无线通信的一个部分的至少子集的至少一个进一步的处理。 该处理涉及至少识别通过有源无线接入点设备从所述计算机网络传送到无线介质中的选择的地理区域内的一个或更多个标记分组中的至少一个，并且包括识别的至少一部分 一个或多个分组中的预定格式包含在被监视的无线通信的至少一部分。 该方法还包括确定挖掘做了活性无线接入点装置提供对在作为所选择的内从计算机网络传送到无线介质中识别出的一个或多个标记的数据包的至少一个基于至少所述计算机网络的未授权的无线接入 通过有源无线接入点装置的地理区域。