Method and System for Generating An Advisory Message for an Endpoint Device
First Claim
Patent Images
1. A method for generating an advisory message for an endpoint device in a wireless network, comprising:
- determining a first threat level for the endpoint device in the wireless network by identifying a connection type between the endpoint device and the wireless network, the connection type selected from the group consisting of;
open with IEEE 802.1x disabled;
open with IEEE 802.1x enabled;
Wi-Fi Protected Access (WPA);
Wi-Fi Protected Access Pre-shared key (WPA-PSK);
Wi-Fi Protected Access 2(WPA2); and
Wi-Fi Protected Access 2 Pre-shared key(WPA2-PSK); and
determining a second threat level for the endpoint device by identifying a security policy of the endpoint device, the security policy comprising a plurality of states of the endpoint device, the plurality of states comprising a state indicative of whether the endpoint device allows internet sharing, a state indicative of whether the endpoint device allows dual homing, a state indicative of whether the endpoint device allows network file sharing, and a state indicative of whether the endpoint device allows ad-hoc connections; and
based on the first threat level and the second threat level, generating an advisory message for the endpoint device that indicates vulnerability of the endpoint device.
2 Assignments
0 Petitions
Accused Products
Abstract
According to one embodiment of the invention, a method for generating an advisory message for an endpoint device includes determining a threat level for the endpoint device by identifying a connection type between the endpoint device and the wireless network. The method also includes determining a second threat level for the endpoint device by identifying a security policy of the endpoint device. The method further includes generating an advisory message for the endpoint device based on the threat levels. The advisory message indicates vulnerability of the endpoint device.
26 Citations
22 Claims
-
1. A method for generating an advisory message for an endpoint device in a wireless network, comprising:
-
determining a first threat level for the endpoint device in the wireless network by identifying a connection type between the endpoint device and the wireless network, the connection type selected from the group consisting of;
open with IEEE 802.1x disabled;
open with IEEE 802.1x enabled;
Wi-Fi Protected Access (WPA);
Wi-Fi Protected Access Pre-shared key (WPA-PSK);
Wi-Fi Protected Access 2(WPA2); and
Wi-Fi Protected Access 2 Pre-shared key(WPA2-PSK); and
determining a second threat level for the endpoint device by identifying a security policy of the endpoint device, the security policy comprising a plurality of states of the endpoint device, the plurality of states comprising a state indicative of whether the endpoint device allows internet sharing, a state indicative of whether the endpoint device allows dual homing, a state indicative of whether the endpoint device allows network file sharing, and a state indicative of whether the endpoint device allows ad-hoc connections; and
based on the first threat level and the second threat level, generating an advisory message for the endpoint device that indicates vulnerability of the endpoint device.
-
-
2. A method for generating an advisory message for an endpoint device in a wireless network, comprising:
-
determining a first threat level for the endpoint device in the wireless network by identifying a connection type between the endpoint device and the wireless network;
determining a second threat level for the endpoint device by identifying a security policy of the endpoint device; and
based on the first threat level and the second threat level, generating an advisory message for the endpoint device that indicates vulnerability of the endpoint device. - View Dependent Claims (3, 4, 5, 6, 7, 8)
-
-
9. A system for generating an advisory message, comprising:
-
a wireless network, the wireless network comprising one or more access points; and
an endpoint device operable to connect to the wireless network, the endpoint device comprising;
a processor; and
a storage device, readable by the endpoint device, embodying a program of instructions executable by the processor to perform steps for generating an advisory message, the steps comprising;
determining a first threat level for the endpoint device in the wireless network by identifying a connection type between the endpoint device and the wireless network;
determining a second threat level for the endpoint device by identifying a security policy of the endpoint device; and
based on the first threat level and the second threat level, generating an advisory message for the endpoint device that indicates vulnerability of the endpoint device. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. Logic encoded in media, the logic being operable to:
-
determine a first threat level for an endpoint device in a wireless network by identifying a connection type between the endpoint device and the wireless network;
determine a second threat level for the endpoint device by identifying a security policy of the endpoint device; and
based on the first threat level and the second threat level, generate an advisory message for the endpoint device that indicates vulnerability of the endpoint device. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeCA, Inc. (d/b/a CA Technologies) (Broadcom, Inc.)
-
Original AssigneeComputer Associates Think Inc. (Broadcom, Inc.)
-
InventorsShankar, Rohit, Gudipudi, Srinivas, Zhu, Yidong, Purushothaman, Abhilash, Pore, Ravi, Short, Theodore, Deshpande, Sumit
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current713/166
-
CPC Class CodesH04L 63/1433 Vulnerability analysisH04W 12/12 Detection or prevention of ...H04W 12/67 Risk-dependent, e.g. select...
