System and method for exposing malicious sources using mobile IP messages
First Claim
Patent Images
1. A collaborating network device within a network, comprising:
- a network interface operable to transmit and receive bait traffic to and from a collaborating mobile client having a fixed connection to the network, the bait traffic including mobile Internet Protocol (IP) messages, the network interface being further operable to receive an IP packet from a source other than the collaborating mobile client; and
a processor coupled to receive the IP packet and operable to determine whether the IP packet is a malicious packet, and if so, to identify the source as a malicious source.
10 Assignments
0 Petitions
Accused Products
Abstract
Malicious sources within networks are identified using bait traffic, including mobile IP messages, transmitted between a collaborating network device and a collaborating mobile client that has a fixed connection to the network. The bait traffic entices a malicious source to transmit malicious packets towards the collaborating mobile client and/or the network device. Upon receiving a malicious packet, the collaborating mobile client or the network device is able to identify the source of the packet as a malicious source and report the presence of the malicious source within the network.
-
Citations
20 Claims
-
1. A collaborating network device within a network, comprising:
-
a network interface operable to transmit and receive bait traffic to and from a collaborating mobile client having a fixed connection to the network, the bait traffic including mobile Internet Protocol (IP) messages, the network interface being further operable to receive an IP packet from a source other than the collaborating mobile client; and a processor coupled to receive the IP packet and operable to determine whether the IP packet is a malicious packet, and if so, to identify the source as a malicious source. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A network for identifying a malicious source, comprising:
-
a collaborating mobile client having a fixed connection to the network and coupled to transmit and receive bait traffic through the network, the bait traffic including mobile Internet Protocol (IP) messages; and a collaborating network device coupled to transmit and receive the bait traffic to and from the collaborating mobile client; wherein at least one of the collaborating mobile client and the collaborating network device is coupled to receive an IP packet from a source other than the collaborating mobile client or the collaborating network device and operable to determine whether the IP packet is a malicious packet, and if so, to identify the source as a malicious source. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method for identifying malicious sources within a network, comprising:
-
transmitting bait traffic between a collaborating mobile client having a fixed connection to the network and a collaborating network device, the bait traffic including mobile Internet Protocol (IP) messages; receiving an IP packet at the collaborating mobile client or the collaborating network device from a source other than the collaborating mobile client or the collaborating network device; determining whether the IP packet is a malicious packet; if so, identifying the source as a malicious source; and reporting the presence of the malicious source in the network.
-
Specification