公开(公告)号：US20200007276A1

公开(公告)日：2020-01-02

申请号：US16023261

申请日：2018-06-29

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Ahmad Kholaif ,  Wei Hu

IPC: H04L1/16 ,  H04L12/26

Abstract: An apparatus may comprise a processing resource operatively coupled to a memory resource and a frame determination component operatively coupled to the processing resource and the memory resource. The frame determination component may cause a counter corresponding to a particular station associated to the apparatus to be stored in the memory resource, the counter to be incremented in response to receipt of a transmission frame containing an invalid starting sequence number (SEN) and a deauthentication frame to be transmitted in response to receipt of a threshold number of transmission frames containing the invalid.

公开(公告)号：US12081986B2

公开(公告)日：2024-09-03

申请号：US17680557

申请日：2022-02-25

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Shubham Saloni ,  Abhiruchi Dakshinkar ,  Wei Hu

IPC: H04W12/122 ,  H04W48/16 ,  H04W76/10 ,  H04W84/12

CPC classification number: H04W12/122 ,  H04W48/16 ,  H04W76/10 ,  H04W84/12

Abstract: Examples of techniques for handling unsolicited probe responses are disclosed. In an example, occurrence of an attack on an access point (AP) in an enterprise Wireless Local Area Network (WLAN) is detected based on an unsolicited probe response and Robust Security Network Information Element (RSN IE). Responsive to detecting the attack, unsolicited probe responses at the AP is disabled. Further, Fast initial Link Setup (FILS) discovery at the AP is enabled.

公开(公告)号：US20220030026A1

公开(公告)日：2022-01-27

申请号：US16936981

申请日：2020-07-23

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Tejas Sathe ,  Wei Hu ,  Shubham Saloni

IPC: H04L29/06 ,  H04W12/12

Abstract: A method for processing a denial of service (DOS) includes: receiving a de-authentication/disassociation (D/D) frame by an access point (AP), determining by the AP a state of security association establishment between the AP and a client device, maintaining a connection between the AP and the client device if the security association is incomplete, sending a probe packet from the AP to the client device if security association is complete and the connection between the AP and the client device is in a non-PMF (protected management frames) setting, maintaining the connection if the client device responds to the probe packet, and terminating the connection if the client device does not respond to the probe packet.

公开(公告)号：US11057157B2

公开(公告)日：2021-07-06

申请号：US16023261

申请日：2018-06-29

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Ahmad Kholaif ,  Wei Hu

IPC: H04L1/16 ,  H04L12/26 ,  H04L29/06 ,  H04W84/12

Abstract: An apparatus may comprise a processing resource operatively coupled to a memory resource and a frame determination component operatively coupled to the processing resource and the memory resource. The frame determination component may cause a counter corresponding to a particular station associated to the apparatus to be stored in the memory resource, the counter to be incremented in response to receipt of a transmission frame containing an invalid starting sequence number (SEN) and a deauthentication frame to be transmitted in response to receipt of a threshold number of transmission frames containing the invalid.

公开(公告)号：US11665545B2

公开(公告)日：2023-05-30

申请号：US17245439

申请日：2021-04-30

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Shubham Saloni ,  Abhiruchi Dakshinkar ,  Wei Hu

IPC: H04W12/122 ,  H04W12/088 ,  H04L29/06 ,  H04L9/40

CPC classification number: H04W12/122 ,  H04L63/1458 ,  H04W12/088 ,  H04L2463/141

Abstract: An access point (AP) in a deployment may be attacked by a rogue AP. The rogue AP may transmit fake beacons that include a fake/incorrect basic service set (BSS) color that does not match the BSS color assigned to/used by the AP under attack. Due to this BSS color mismatch, stations associated to the AP under attack may switch to the fake/incorrect BSS color, and communications between the AP under attack and the stations may be disrupted, and can eventually lead to service denial. Systems and methods are provided for leveraging the BSS color feature to identify when a rogue AP is attacking another AP. Upon detecting an attack, the BSS color feature may be disabled to mitigate the level of service disruption to the AP under attack and the stations associated to that AP.

公开(公告)号：US11374691B2

公开(公告)日：2022-06-28

申请号：US16941977

申请日：2020-07-29

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Shubham Saloni ,  Wei Hu ,  Manoj Thawani

IPC: H04L1/16 ,  H04L67/141 ,  H04W84/12 ,  H04W88/08

Abstract: Examples of block acknowledgement negotiations are described. In an example, a request to establish a BA session is sent by a first computing device (first device) to a second computing device (second device). A timer for receipt of a response to the request is initialized. A BA successful response is received by the first device after the timer has timed out. A request to terminate the BA session is sent by the first device to the second device. After sending the request to terminate the BA session, BA negotiation is reinitiated by the first device based on an updated inactivity timer, so that there are greater chances of successfully establishing a BA session. In an example, if the second device ignores the request to terminate the BA session then it sends a BA reject response to the first device. After receiving the BA reject response, the first device waits for the inactivity timer before reinitiating BA negotiations, so that the second device clears its states thereby increasing chances of successful BA renegotiations.

公开(公告)号：US11374965B2

公开(公告)日：2022-06-28

申请号：US16936981

申请日：2020-07-23

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Tejas Sathe ,  Wei Hu ,  Shubham Saloni

IPC: H04L9/40 ,  H04W12/122

Abstract: A method for processing a denial of service (DOS) includes: receiving a de-authentication/disassociation (D/D) frame by an access point (AP), determining by the AP a state of security association establishment between the AP and a client device, maintaining a connection between the AP and the client device if the security association is incomplete, sending a probe packet from the AP to the client device if security association is complete and the connection between the AP and the client device is in a non-PMF (protected management frames) setting, maintaining the connection if the client device responds to the probe packet, and terminating the connection if the client device does not respond to the probe packet.