DENIAL OF SERVICE (DoS) ATTACK PREVENTION THROUGH RANDOM ACCESS CHANNEL RESOURCE REALLOCATION
First Claim
1. A method of managing wireless transmissions from a mobile handset operating in a wireless network associated therewith, the method comprising the steps of:
- using a processor in wireless communication with the mobile handset via the wireless network, determining whether the mobile handset is a source of a Random Access Channel (RACH) overload in the wireless network; and
upon determining that the mobile handset is a source of the RACH overload, configuring the mobile handset, using the processor, to replace usage of a first RACH resource causing the RACH overload with usage of a second RACH resource specified by the processor.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method to substantially prevent Denial of Service (DoS) attacks due to Random Access Channel (RACH) overload in cellular wireless networks. Once a mobile handset is identified to cause or contribute significantly to a RACH overload of the cell, the system sends a special System Information Block (SIB) message targeted to that mobile handset and instructing it to redirect its RACH signaling to a separate RACH/PRACH (Physical Random Access Channel) resource or to a small part of the current RACH/PRACH resource. This allows most or all of the regular RACH/PRACH resource from being overloaded by a single user or a group of users. The use of a separate RACH/PRACH resource such as frequency, preamble sequence, and/or radio subframe access slot to “absorb” high volume RACH signaling traffic from a small number of malicious/defective mobile handsets substantially prevents the signaling DoS attacks in the wireless network and makes it more robust to such attacks.
64 Citations
20 Claims
-
1. A method of managing wireless transmissions from a mobile handset operating in a wireless network associated therewith, the method comprising the steps of:
-
using a processor in wireless communication with the mobile handset via the wireless network, determining whether the mobile handset is a source of a Random Access Channel (RACH) overload in the wireless network; and upon determining that the mobile handset is a source of the RACH overload, configuring the mobile handset, using the processor, to replace usage of a first RACH resource causing the RACH overload with usage of a second RACH resource specified by the processor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A mobile communication node configured to provide a radio interface to a mobile handset in a wireless network associated with the mobile handset, wherein the mobile communication node comprises:
-
a receiver operable to receive wireless transmissions from a mobile handset; and a processor operable to; determine whether the mobile handset is a source of a Random Access Channel (RACH) overload in the wireless network; and configure the mobile handset to replace usage of a first RACH resource causing the RACH overload with usage of a second RACH resource specified by the processor when the processor determines that the mobile handset is a source of the RACH overload. - View Dependent Claims (11, 12, 13, 14)
-
-
15. A method comprising the steps of:
-
using a processor, establishing wireless communication with a mobile handset via a wireless network associated with the mobile handset; using the processor, monitoring a number of Random Access Channel (RACH) preamble transmissions from the mobile handset; using the processor, identifying the mobile handset as a source of a RACH overload when the number of RACH preamble transmissions from the mobile handset in a time interval exceeds a pre-determined threshold; and upon determining that the mobile handset is a source of the RACH overload, configuring the mobile handset, using the processor, to replace usage of a first RACH resource causing the RACH overload with usage of a second RACH resource specified by the processor, wherein the second RACH resource is different from the first RACH resource. - View Dependent Claims (16)
-
-
17. A system for preventing a Denial of Service (DoS) attack in a wireless network, the system comprising:
-
a mobile handset operable in the wireless network; and a mobile communication node for providing a radio interface to the mobile handset in the wireless network, wherein the mobile communication node is configured to perform the following; determine whether the mobile handset is a source of a Random Access Channel (RACH) overload in the wireless network; and upon determining that the mobile handset is a source of the RACH overload, configure the mobile handset to replace usage of a first RACH resource causing the RACH overload with usage of a second RACH resource specified by the mobile communication node. - View Dependent Claims (18, 19, 20)
-
Specification