Methods, apparatus and program product for monitoring network security

US 20030186679A1
Filed: 03/27/2002
Published: 10/02/2003
Est. Priority Date: 03/27/2002
Status: Abandoned Application

First Claim

Patent Images

1. A method comprising the steps of:

monitoring access points through which data can be exchanged with a network, identifying an unauthorized access point, and determining the location of the identified unauthorized access point.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, apparatus and program products which monitor access points through which data can be exchanged with a network, identify an unauthorized access point, and determine the location of the identified unauthorized access point.

87 Citations

View as Search Results

26 Claims

1. A method comprising the steps of:
- monitoring access points through which data can be exchanged with a network, identifying an unauthorized access point, and determining the location of the identified unauthorized access point.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A method according to claim 1 wherein the step of monitoring comprises equipping each of a plurality of computer devices to detect access points accessible to the device and to report to a server computer system the identity of detected access points.
  - 3. A method according to claim 1 wherein the step of monitoring comprises intermittently and periodically determining the availability of access points.
  - 4. A method according to claim 3 wherein the step of intermittently and periodically determining the availability of access points comprises monitoring at predetermined regular intervals.
  - 5. A method according to claim 3 wherein the step of intermittently and periodically determining the availability of access points comprises monitoring at random irregular intervals.
  - 6. A method according to claim 1 wherein the step of identifying an unauthorized access point comprises comparing the identity of monitored access points with a database of authorized access points.
  - 7. A method according to claim 1 wherein the step of determining the location of an identified unauthorized access point comprises comparing the locations of a plurality of computer devices all of which report detection of the identified unauthorized access point.

8. A method comprising the steps of:
- monitoring with a suitably equipped computer device access points through which data can be exchanged with a network and gathering information about a monitored access point, reporting through the network to a server computer system the information gathered by monitoring, and identifying an unauthorized access point by operation of the server system.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. A method according to claim 8 wherein the step of monitoring comprises equipping each of a plurality of computer devices to detect access points accessible to the device and to report to the server computer system the identity of detected access points.
  - 10. A method according to claim 8 wherein the step of monitoring comprises intermittently and periodically determining the availability of access points.
  - 11. A method according to claim 10 wherein the step of intermittently and periodically determining the availability of access points comprises monitoring at predetermined regular intervals.
  - 12. A method according to claim 10 wherein the step of intermittently and periodically determining the availability of access points comprises monitoring at random irregular intervals.
  - 13. A method according to claim 8 wherein the step of identifying an unauthorized access point comprises comparing the identity of monitored access points with a database of authorized access points.
  - 14. A method according to claim 8 further comprising determining the location of an identified unauthorized access point by comparing the locations of a plurality of computer devices all of which report detection of the identified unauthorized access point.

15. A method comprising the steps of:
- equipping each of a plurality of computer devices to detect access points accessible to the device through which data can be exchanged with a network and to report to a server computer system the identity of detected access points;
  
  comparing the identity of reported access points with a list of authorized access points and identifying an unauthorized access point; and
  
  comparing the locations of a plurality of computer devices all of which report detection of an identified unauthorized access point.
- View Dependent Claims (16, 17)
- - 16. A method according to claim 15 wherein the step of equipping computer devices comprises providing each computer devices with a wireless local area network connection device.
  - 17. A method according to claim 16 further comprising the steps of reporting the signal strength at which each computer device links with each detected access point and analyzing the relative signal strengths of pairs of authorized and unauthorized access points to determine access point locations.

18. Apparatus comprising:
- a workstation computer system;
  
  a network interface connected to said system and providing a communication channel between said system and a network;
  
  an access point identification program stored accessibly to said system and cooperating therewith when executing on said system to identify points accessible through said interface; and
  
  a reporting program stored accessibly to said system and cooperating with said identification program and with said system when executing on said system to report through said interface to a remote server computer system the identity of accessed points.
- View Dependent Claims (19, 20, 21, 22)
- - 19. Apparatus according to claim 18 wherein said network interface comprises a wireless connection capability.
  - 20. Apparatus according to claim 18 wherein said workstation computer system is a mobile computing device.
  - 21. Apparatus according to claim 20 wherein said mobile computing device is a notebook computer system.
  - 22. Apparatus according to claim 18 wherein said workstation computer system is a desktop computing device.

23. Apparatus comprising:
- a server computer system, a network interface connected to said system and providing a communication channel between said system and a network, an access point identification program stored accessibly to said system and cooperating therewith when executing to identify nodes accessible through said interface, and a node identification database stored accessibly to said system and said program and cooperating therewith when said program is executing on said system to identify unauthorized access points accessible to said system through said interface.
- View Dependent Claims (24)
- - 24. Apparatus according to claim 23 further comprising an access point location program stored accessibly to said system and cooperating therewith when executing to identify the location of any unauthorized access point accessible through said interface.

25. A program product comprising:
- a computer readable medium; and
  
  a program stored on said medium accessibly to a computer system, said program when executing on a system;
  
  monitoring access points through which data can be exchanged with a network, identifying an unauthorized access point, and determining the location of the identified unauthorized access point.

26. A program product comprising:
- a computer readable medium; and
  
  a program stored on said medium accessibly to a computer system, said program when executing on a system;
  
  monitoring access points through which data can be exchanged with a network, identifying an access point, and reporting to a remote server computer system the identified access point.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Stafford, David Robert, Van Doorn, Leendert Peter, Challener, David Carroll

Application Number

US10/107,794
Publication Number

US 20030186679A1
Time in Patent Office

Days
Field of Search
US Class Current

455/410
CPC Class Codes

H04L 43/00   Arrangements for monitoring...

H04L 63/0227   Filtering policies mail mes...

H04L 63/1408   by monitoring network traff...

H04L 63/1441   Countermeasures against mal...

H04M 1/68   Circuit arrangements for pr...

H04W 12/12   Detection or prevention of ...

H04W 12/122   Counter-measures against at...

H04W 24/00   Supervisory, monitoring or ...

H04W 64/00   Locating users or terminals...

H04W 88/08   Access point devices

Methods, apparatus and program product for monitoring network security

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

87 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Methods, apparatus and program product for monitoring network security

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

87 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links