Mobile ad-hoc network with intrusion detection features and related methods
First Claim
Patent Images
1. A mobile ad-hoc network (MANET) comprising:
- a plurality of nodes for transmitting data therebetween; and
a policing node for detecting intrusions into the MANET by monitoring transmissions among said plurality of nodes to detect transmissions during an unauthorized period; and
generating an intrusion alert based upon detecting transmissions during the unauthorized period.
7 Assignments
0 Petitions
Accused Products
Abstract
A mobile ad-hoc network (MANET) may include a plurality of nodes for transmitting data therebetween and a policing node. The policing node may detect intrusions into the MANET by monitoring transmissions among the plurality of nodes to detect transmissions during an unauthorized period and generate an intrusion alert based thereon. The policing node may also detect intrusions based upon one or more of integrity check values which do not correspond with respective data packets, usage of non-consecutive media access control (MAC) sequence numbers by a node, and collisions of packet types and/or MAC addresses.
-
Citations
78 Claims
-
1. A mobile ad-hoc network (MANET) comprising:
-
a plurality of nodes for transmitting data therebetween; and
a policing node for detecting intrusions into the MANET by monitoring transmissions among said plurality of nodes to detect transmissions during an unauthorized period; and
generating an intrusion alert based upon detecting transmissions during the unauthorized period. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A mobile ad-hoc network (MANET) comprising:
-
a plurality of nodes for transmitting data in packets and generating respective integrity check values for transmission with each packet; and
a policing node for detecting intrusions into the MANET by monitoring transmissions among said plurality of nodes to detect integrity check values which do not correspond with their respective data packets; and
generating an intrusion alert based upon detecting an integrity check value which does not correspond with its respective data packet. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A mobile ad-hoc network (MANET) comprising:
-
a plurality of nodes for transmitting data in packets via a medium access control (MAC) layer and also for transmitting a respective MAC sequence number with each data packet data; and
a policing node for detecting intrusions into the MANET by monitoring transmissions among said plurality of nodes to detect usage of non-consecutive MAC sequence numbers by a node; and
generating an intrusion alert based upon detecting usage of non-consecutive MAC sequence numbers by a node. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29)
-
-
30. A mobile ad-hoc network (MANET) comprising:
-
a plurality of nodes for transmitting data in packets each having a packet type associated therewith; and
a policing node for detecting intrusions into the MANET by monitoring transmissions among said plurality of nodes to detect collisions of packets having a predetermined packet type; and
generating an intrusion alert based upon detecting a threshold number of collisions of packets having the predetermined packet type. - View Dependent Claims (31, 32, 33, 34, 35, 36)
-
-
37. A mobile ad-hoc network (MANET) comprising:
-
a plurality of nodes for transmitting data via a medium access control (MAC) layer, each node having a MAC address associated therewith to be transmitted with data sent therefrom; and
a policing node for detecting intrusions into the MANET by monitoring transmissions among said plurality of nodes to detect collisions of a same MAC address; and
generating an intrusion alert based upon detecting a threshold number of collisions of a same MAC address. - View Dependent Claims (38, 39)
-
-
40. An intrusion detection method for a mobile ad-hoc network (MANET) comprising a plurality of nodes, the method comprising:
-
transmitting data between the plurality of nodes;
monitoring transmissions among the plurality of nodes to detect transmissions during an unauthorized period; and
generating an intrusion alert based upon detecting transmissions during the unauthorized period. - View Dependent Claims (41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51)
-
-
52. An intrusion detection method for a mobile ad-hoc network (MANET) comprising a plurality of nodes, the method comprising:
-
transmitting data between the plurality of nodes in packets and generating respective integrity check values for transmission with each packet;
monitoring transmissions among the plurality of nodes to detect integrity check values which do not correspond with their respective data packets; and
generating an intrusion alert based upon detecting an integrity check value which does not correspond with its respective data packet. - View Dependent Claims (53, 54, 55, 56, 57, 58, 59, 60)
-
-
61. An intrusion detection method for a mobile ad-hoc network (MANET) comprising a plurality of nodes, the method comprising:
-
transmitting data in packets via a medium access control (MAC) layer and transmitting a respective MAC sequence number with each data packet data;
monitoring transmissions among the plurality of nodes to detect usage of non-consecutive MAC sequence numbers by a node; and
generating an intrusion alert based upon detecting usage of non-consecutive MAC sequence numbers by a node. - View Dependent Claims (62, 63, 64, 65, 66, 67, 68)
-
-
69. An intrusion detection method for a mobile ad-hoc network (MANET) comprising a plurality of nodes, the method comprising:
-
transmitting data in packets between the plurality of nodes, each packet having a packet type associated therewith;
monitoring transmissions among the plurality of nodes to detect collisions of packets having a predetermined packet type; and
generating an intrusion alert based upon detecting a threshold number of collisions of packets having the predetermined packet type. - View Dependent Claims (70, 71, 72, 73, 74, 75)
-
-
76. An intrusion detection method for a mobile ad-hoc network (MANET) comprising a plurality of nodes, the method comprising:
-
transmitting data via a medium access control (MAC) layer between the plurality of nodes, each node having a MAC address associated therewith to be transmitted with data sent therefrom;
monitoring transmissions among the plurality of nodes to detect collisions of a same MAC address; and
generating an intrusion alert based upon detecting a threshold number of collisions of a same MAC address. - View Dependent Claims (77, 78)
-
Specification