公开(公告)号：US20110314147A1

公开(公告)日：2011-12-22

申请号：US13164459

申请日：2011-06-20

申请人： ROBERT WHELAN ,  LAMAR VAN WAGENEN ,  ROY MORRIS

发明人： ROBERT WHELAN ,  LAMAR VAN WAGENEN ,  ROY MORRIS

IPC分类号： G06F15/173

CPC分类号： H04W12/12 ,  H04L63/1408 ,  H04L63/1466 ,  H04W88/08

摘要： Unauthorized wireless access points are detected by configuring authorized access points and mobile units to listen to all wireless traffic in its cell and report all detected wireless devices to a monitor. The monitor checks the reported devices against a list of authorized network devices. If the reported wireless device is not an authorized device, the monitor determines if the reported device is connected to the network. If the reported device is connected to the network and is not an authorized device, the monitor alerts the network operator or network manager of a rogue device connected to the network and attempts to locate and isolate the rogue device.

摘要翻译： 通过配置授权接入点和移动单元监听其小区中的所有无线流量并将所有检测到的无线设备报告给监视器来检测未经授权的无线接入点。 监视器根据已授权的网络设备列表检查报告的设备。 如果报告的无线设备不是授权设备，则监视器确定所报告的设备是否连接到网络。 如果报告的设备连接到网络而不是授权设备，则监视器向网络运营商或网络管理员警告连接到网络的流氓设备，并尝试定位和隔离流氓设备。

公开(公告)号：US07522906B2

公开(公告)日：2009-04-21

申请号：US10215701

申请日：2002-08-09

申请人： Robert Whelan ,  Lamar van Wagenen ,  Roy Morris

发明人： Robert Whelan ,  Lamar van Wagenen ,  Roy Morris

IPC分类号： H04M1/66

CPC分类号： H04W48/02 ,  H04L29/06 ,  H04L63/0823 ,  H04L63/102 ,  H04L63/123 ,  H04L67/322 ,  H04L69/329 ,  H04W8/18 ,  H04W12/06 ,  H04W12/08 ,  H04W84/12 ,  H04W88/02

摘要： A system for enforcing configuration requirements for hardware and software on mobile units operating on Wireless Local Area Networks (WLAN). The system allows the configuration policy to change dynamically with the access point or sub-network association. Whenever a mobile unit connects to a new sub-network or access point, the system invokes and then verifies the proper configuration profile for that sub-network or access point. Thus the system ensures the configuration of the mobile unit meets the requirements for the sub-network being used.

摘要翻译： 用于在无线局域网（WLAN）上运行的移动单元上执行硬件和软件的配置要求的系统。 该系统允许配置策略使用接入点或子网络关联动态地改变。 每当移动单元连接到新的子网或接入点时，系统将调用该子网或接入点的正确配置配置文件。 因此，系统确保移动单元的配置满足所使用的子网的要求。

公开(公告)号：US07133526B2

公开(公告)日：2006-11-07

申请号：US11280507

申请日：2005-11-15

申请人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris ,  Gilbert Wellisch

发明人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris ,  Gilbert Wellisch

IPC分类号： H04L9/00 ,  H04K1/00

CPC分类号： H04L63/0428 ,  H04L9/0891 ,  H04L9/12 ,  H04L63/0457 ,  H04L63/062 ,  H04L63/068 ,  H04L2209/80 ,  H04W12/04 ,  H04W84/12

摘要： A system and method are disclosed that overcome deficiencies of prior art IEEE 802.11 WEP key management schemes. Preferred embodiments of the present system and method update WEP keys and rotate transmission key indices in a synchronized manner and on a frequent basis making it impractical for a hacker to gather sufficient network traffic using any one WEP key to decrypt that key and without disrupting communications. Preferred embodiments of the present system and method do not require changes in access point or mobile unit hardware, radio drivers, or firmware and are therefore compatible with existing or legacy network infrastructure or components. The disclosed system and method may be used to facilitate secure communications between one or more access points and one or more mobile units and/or groups of two or more mobile units engaging in peer-to-peer associations.

公开(公告)号：US07965842B2

公开(公告)日：2011-06-21

申请号：US10184750

申请日：2002-06-28

申请人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris

发明人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris

IPC分类号： H04K1/00

CPC分类号： H04W12/12 ,  H04L63/1408 ,  H04L63/1466 ,  H04W88/08

摘要： Unauthorized wireless access points are detected by configuring authorized access points and mobile units to listen to all wireless traffic in its cell and report all detected wireless devices to a monitor. The monitor checks the reported devices against a list of authorized network devices. If the reported wireless device is not an authorized device, the monitor determines if the reported device is connected to the network. If the reported device is connected to the network and is not an authorized device, the monitor alerts the network operator or network manager of a rogue device connected to the network and attempts to locate and isolate the rogue device.

摘要翻译： 通过配置授权接入点和移动单元监听其小区中的所有无线流量并将所有检测到的无线设备报告给监视器来检测未经授权的无线接入点。 监视器根据已授权的网络设备列表检查报告的设备。 如果报告的无线设备不是授权设备，则监视器确定所报告的设备是否连接到网络。 如果报告的设备连接到网络而不是授权设备，则监视器向网络运营商或网络管理员警告连接到网络的流氓设备，并尝试定位和隔离流氓设备。

公开(公告)号：US07606242B2

公开(公告)日：2009-10-20

申请号：US10211841

申请日：2002-08-02

申请人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris

发明人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris

IPC分类号： H04L12/28

CPC分类号： H04W12/06 ,  H04W48/02 ,  H04W84/12 ,  H04W84/18

摘要： The present invention allows any number of mobile units to roam between a large numbers of sub-networks, each with a large number of access points (tens of thousands or more total access points), with minimal direct administration effort. A hierarchy of management servers may be used across the multiple sub-networks, which can be under the control of multiple entities. The invention provides the capability for the mobile units to authenticate the access points associated with, to ensure they are both authorized and managed. Peer-to-peer and ad hoc associations between mobile units are managed as well. The invention may enforce a number of association policies such as, for example, forcing the mobile unit to only associate with access points or mobile units on a previously set mandatory association list, providing the mobile unit with a list of preferred access points to associate with, but allowing association with other access points, or providing the mobile unit with a excluded association list of access points or mobile units it is not to associate with.

摘要翻译： 本发明允许任何数量的移动单元在具有大量接入点（数万个或更多总接入点）的大量子网之间漫游，同时具有最小的直接管理工作量。 可以跨多个子网络使用管理服务器的层次结构，该子网络可以在多个实体的控制下。 本发明提供了移动单元验证与之相关联的接入点的能力，以确保它们被授权和管理。 移动单元之间的对等和特别关联也受到管理。 本发明可以强制执行多个关联策略，例如强制移动单元仅在先前设置的强制性关联列表上与接入点或移动单元相关联，向移动单元提供与之相关联的优选接入点的列表 ，但是允许与其他接入点相关联，或向移动单元提供其不关联的接入点或移动单元的排除的关联列表。

公开(公告)号：US08787576B2

公开(公告)日：2014-07-22

申请号：US13164459

申请日：2011-06-20

申请人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris

发明人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris

IPC分类号： H04L29/06

CPC分类号： H04W12/12 ,  H04L63/1408 ,  H04L63/1466 ,  H04W88/08

摘要： Unauthorized wireless access points are detected by configuring authorized access points and mobile units to listen to all wireless traffic in its cell and report all detected wireless devices to a monitor. The monitor checks the reported devices against a list of authorized network devices. If the reported wireless device is not an authorized device, the monitor determines if the reported device is connected to the network. If the reported device is connected to the network and is not an authorized device, the monitor alerts the network operator or network manager of a rogue device connected to the network and attempts to locate and isolate the rogue device.

摘要翻译： 通过配置授权接入点和移动单元监听其小区中的所有无线流量并将所有检测到的无线设备报告给监视器来检测未经授权的无线接入点。 监视器根据已授权的网络设备列表检查报告的设备。 如果报告的无线设备不是授权设备，则监视器确定所报告的设备是否连接到网络。 如果报告的设备连接到网络而不是授权设备，则监视器向网络运营商或网络管理员警告连接到网络的流氓设备，并尝试定位和隔离流氓设备。

公开(公告)号：US07363022B2

公开(公告)日：2008-04-22

申请号：US10252849

申请日：2002-09-23

申请人： Robert Whelan ,  Lamar van Wagenen ,  Roy Morris

发明人： Robert Whelan ,  Lamar van Wagenen ,  Roy Morris

IPC分类号： H04M1/66

CPC分类号： H04W48/02 ,  H04L29/06 ,  H04L63/0823 ,  H04L63/102 ,  H04L63/123 ,  H04L67/322 ,  H04L69/329 ,  H04W8/18 ,  H04W12/06 ,  H04W12/08 ,  H04W84/12 ,  H04W88/02

摘要： A system for enforcing configuration requirements for hardware and software on mobile units operating on Wireless Local Area Networks (WLAN). The system allows the configuration policy to change dynamically with the access point or sub-network association. Whenever a mobile unit connects to a new sub-network or access point, the system invokes and then verifies the proper configuration profile for that sub-network or access point. Thus the system ensures the configuration of the mobile unit meets the requirements for the sub-network being used.

摘要翻译： 用于在无线局域网（WLAN）上运行的移动单元上执行硬件和软件的配置要求的系统。 该系统允许配置策略使用接入点或子网络关联动态地改变。 每当移动单元连接到新的子网或接入点时，系统将调用该子网或接入点的正确配置配置文件。 因此，系统确保移动单元的配置满足所使用的子网的要求。

公开(公告)号：US20060078124A1

公开(公告)日：2006-04-13

申请号：US11280507

申请日：2005-11-15

申请人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris ,  Gilbert Wellisch

发明人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris ,  Gilbert Wellisch

IPC分类号： H04K1/00

CPC分类号： H04L63/0428 ,  H04L9/0891 ,  H04L9/12 ,  H04L63/0457 ,  H04L63/062 ,  H04L63/068 ,  H04L2209/80 ,  H04W12/04 ,  H04W84/12

摘要： A system and method are disclosed that overcome deficiencies of prior art IEEE 802.11 WEP key management schemes. Preferred embodiments of the present system and method update WEP keys and rotate transmission key indices in a synchronized manner and on a frequent basis making it impractical for a hacker to gather sufficient network traffic using any one WEP key to decrypt that key and without disrupting communications. Preferred embodiments of the present system and method do not require changes in access point or mobile unit hardware, radio drivers, or firmware and are therefore compatible with existing or legacy network infrastructure or components. The disclosed system and method may be used to facilitate secure communications between one or more access points and one or more mobile units and/or groups of two or more mobile units engaging in peer-to-peer associations.

公开(公告)号：US06965674B2

公开(公告)日：2005-11-15

申请号：US10300324

申请日：2002-11-20

申请人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris ,  Gilbert Wellisch

发明人： Robert Whelan ,  Lamar Van Wagenen ,  Roy Morris ,  Gilbert Wellisch

IPC分类号： H04L9/08 ,  H04L29/06 ,  H04L9/00 ,  H04K1/00

CPC分类号： H04L63/0428 ,  H04L9/0891 ,  H04L9/12 ,  H04L63/0457 ,  H04L63/062 ,  H04L63/068 ,  H04L2209/80 ,  H04W12/04 ,  H04W84/12

摘要： A system and method are disclosed that overcome deficiencies of prior art IEEE 802.11 WEP key management schemes. Preferred embodiments of the present system and method update WEP keys and rotate transmission key indices in a synchronized manner and on a frequent basis making it impractical for a hacker to gather sufficient network traffic using any one WEP key to decrypt that key and without disrupting communications. Preferred embodiments of the present system and method do not require changes in access point or mobile unit hardware, radio drivers, or firmware and are therefore compatible with existing or legacy network infrastructure or components. The disclosed system and method may be used to facilitate secure communications between one or more access points and one or more mobile units and/or groups of two or more mobile units engaging in peer-to-peer associations.

摘要翻译： 公开了克服现有技术的IEEE 802.11 WEP密钥管理方案的缺陷的系统和方法。 本系统和方法的优选实施例更新WEP密钥并以同步的方式和频繁地旋转传输密钥索引，使得黑客使用任何一个WEP密钥收集足够的网络流量来解密该密钥并且不中断通信是不切实际的。 本系统和方法的优选实施例不需要接入点或移动单元硬件，无线电驱动器或固件的改变，因此与现有或传统网络基础设施或组件兼容。 所公开的系统和方法可以用于促进一个或多个接入点与参与对等关联的两个或多个移动单元的一个或多个移动单元和/或组的安全通信。