Method and apparatus to monitor and locate an electronic device using a secured intelligent agent via a global network
DCFirst Claim
1. A method for tracing an electronic device having an agent initiating communication and providing identifying indicia to a host system, said electronic device connectable to said host system through a global network, said method comprising the steps of:
- automatically providing said host system with said identifying indicia through said global network for determining the identity of said electronic device; and
providing said host system with one or more global network communication links used to enable transmission between said electronic device and said host system, said transmission via said communication links used for determining the location of said electronic device.
1 Assignment
Litigations
0 Petitions
Reexamination
Accused Products
Abstract
A system for locating and monitoring electronic devices utilizing a security system that is secretly and transparently embedded within the software, firmware, or hardware of a computer. This security system initiates the client computer to periodically and conditionally call a host system to provide unique identifying indicia and location information. In one embodiment, the security system calls the host through a public switched telephone network (PSTN) and transmits the indicia in encoded form. In an alternative embodiment, which may be incorporated concurrently with the PSTN application, the security system calls the host system through the Internet and provides the host with indicia encoded within the DNS query sent. The host system is able to identify the calling computer from the indicia and is able to physically locate the computer through either caller identification or by referencing the Internet links which were used to connect the calling computer with the host system.
-
Citations
94 Claims
-
1. A method for tracing an electronic device having an agent initiating communication and providing identifying indicia to a host system, said electronic device connectable to said host system through a global network, said method comprising the steps of:
-
automatically providing said host system with said identifying indicia through said global network for determining the identity of said electronic device; and
providing said host system with one or more global network communication links used to enable transmission between said electronic device and said host system, said transmission via said communication links used for determining the location of said electronic device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 41, 43, 44, 45, 46, 47, 48, 53, 54, 55, 56)
providing said identifying indicia to said host system through said telephone network; and
determining the location of said electronic device by tracing the source of said identifying indicia within said telephone network.
-
-
4. The method of claim 1 wherein said electronic device is further connected to said host system through a cablevision network, and said method further comprising the steps of:
-
providing said identifying indicia to said host system through said cablevision network; and
determining the location of said electronic device by tracing the source of said identifying indicia within said cablevision network.
-
-
5. The method of claim 1 wherein said electronic device is further connected to said host system through a wireless radio frequency network, and said method further comprising the steps of
providing said identifying indicia to said host system through said wireless radio frequency network; - and
determining the location of said electronic device by tracing the source of said identifying indicia within said wireless radio frequency network.
- and
-
6. The method of claim 1 wherein said electronic device is further connected to said host system through a wireless microwave network, and said method further comprising the steps of:
-
providing said identifying indicia to said host system through said wireless microwave network; and
determining the location of said electronic device by tracing the source of said identifying indicia within said wireless microwave network.
-
-
7. The method of claim 3 wherein said step of providing said host system with said identifying indicia through said global network, and said step of providing said identifying indicia to said host system through said telephone network occur at predetermined intervals.
-
8. The method of claim 7 wherein said electronic device is lost or stolen and said method further including the step of tracing lost or stolen electronic devices.
-
9. The method of claim 2 wherein said step of providing said host system with said one or more of the Internet communication links i accomplished using a traceroute routine.
-
10. The method of claim 1 wherein said step of providing said host system with said identifying indicia is accomplished by sending a data packet including address information relating to the source of the global network transmission.
-
11. The method of claim 2 wherein said step of providing said host system with said identifying indicia is accomplished by sending a domain name service query with said identifying indicia encoded therein.
-
12. The method of claim 2 further including the step of providing a list of lost or stolen electronic devices to said host system and comparing said list of lost or stolen electronic devices with said identifying indicia to determine if said electronic device is lost or stolen.
-
13. The method of claim 12 wherein said host system sends a signal through said Internet to said electronic device if it is determined to be lost or stolen indicating that said lost or stolen electronic device should initiate a traceroute routine.
-
14. The method of claim 12 wherein said host system sends a signal through said Internet to said electronic device if it has been determined to be lost or stolen indicating that said electronic device should initiate a call to said host system via said telephone network.
-
15. The method of claim 11 wherein said identifying indicia is encoded within said domain name service query according to a predetermined scheme.
-
16. The method of claim 15 wherein said host system decodes said identifying indicia to determine the identity of said electronic device.
-
17. The method of claim 1 wherein said electronic device is a computer having a hard drive.
-
18. The method of claim 17 further including the step of providing said agent with deflection means to enable said agent to resist disablement attempts and evade detection.
-
19. The method of claim 18 wherein said deflection means deflects read and write attempts to the location where said agent is disposed.
-
20. The method of claim 1 wherein said step of evading detection is accomplished by providing an agent which is operable without interfering with the normal operation of said electronic device.
-
21. The method of claim 17 wherein said step of loading said agent within said computer is accomplished by loading said agent within the boot sector of said hard drive.
-
22. The method of claim 17 wherein said step of loading said agent within said computer is accomplished by loading said agent within the partition sector of said hard drive.
-
23. The method of claim 17 wherein said step of loading said agent within said computer is accomplished by loading said agent within an operating system file on said hard drive.
-
24. The method of claim 23 wherein said operating system is MS-DOS and said operating system file is IO.SYS.
-
25. The method of claim 23 wherein said operating system is PC-DOS and said operating system file is IBMBIO.COM.
-
26. The method of claim 17 wherein said step of loading said agent within said computer is accomplished by loading said agent on the ROM BIOS.
-
27. The method of claim 17 wherein said agent is a terminated and stay resident program.
-
28. The method of claim 17 wherein said agent is a virtual device driver program.
-
29. The method of claim 17 wherein said agent is an application program.
-
30. The method of claim 17 wherein said agent is a file filter program.
-
31. The method of claim 1 wherein said agent provides said identifying indicia automatically and without user intervention.
-
32. The method of claim 31 wherein said step of providing said host system with said identifying indicia occurs without causing audible or visible signals to be emitted from said electronic device.
-
33. The method of claim 2 wherein the communication link between said electronic device and said host system is provided through a link to a private network connection to the Internet.
-
34. The method of claim 2 wherein the communication link between said electronic device and said host system is provided through a telephone line connected to an Internet provider.
-
35. The method of claim 1 further comprising the step of assigning said identifying indicia to said agent wherein said identifying indicia comprises a unique electronic serial number, said electronic serial number for enabling the determination of the identity of said electronic device associated with said agent.
-
36. The method of claim 1 further comprising the step of loading said agent within said electronic device for with said host system such that said agent evades detection.
-
41. The method of claim 36 wherein said global network is the Internet and said step of providing said identifying indicia is accomplished by encoding a domain name service query to include said identifying indicia.
-
43. The method of claim 1 wherein the Agent is encoded in one or more forms, including software, firmware and hardware.
-
44. The method of claim 43 wherein the Agent is encoded in one or more device components in the electronic device, including internal non-volatile memory device, communication device, processor, digital signal processor, integrated circuit and hardware circuit.
-
45. The method of claim 44 wherein the internal non-volatile memory device includes one of ROM BIOS, ROM, EPROM, EEPROM and Flash ROM.
-
46. The method of claim 44 wherein the communication device is a modem.
-
47. The method of claim 46 wherein the Agent establishes communication with the host system by using a command function which initializes the communication and a call management function which interfaces with the host system.
-
48. The method of claim 44 wherein the Agent establishes communication with the host system independent of normal operations of the electronic device.
-
53. The method of claim 44 wherein a first component of the Agent is provided in a first device component and a second component of the Agent is provided in a second device component.
-
54. The method of claim 53 wherein the first component of the Agent includes a secure protocol component of the Agent which communicates with the electronic device'"'"'s operating system.
-
55. The method of claim 54 wherein the Agent immediately establishes the communication link with the host system to transmit the identifying indicia of the electronic device if the secure protocol component fails to establish communication with the operating system.
-
56. The method of claim 53 wherein the second device component includes a hard disk drive.
-
37. A method for monitoring an electronic device connectable to a host system through a global network, said electronic device having an agent, said agent providing identifying indicia for determining the identity of said electronic device, said method comprising the steps of:
-
loading said agent within said device such that said agent evades detection; and
automatically providing said host system with said identifying indicia through said network without causing audible or visual signals to be emitted from said electronic device. - View Dependent Claims (38, 39, 40, 42, 49, 50, 51, 52)
checking whether the Agent is also found on a hard disk within the electronic device; and
copying the Agent to the hard disk prior to loading and running the Agent.
-
-
57. An apparatus within an electronic device including an agent for initiating communication with a host monitoring system and providing identifying indicia to a host monitoring system, said electronic device connectable to said host monitoring system through a global network, said apparatus comprising:
-
means for automatically providing said host monitoring system with said identifying indicia through said global network for determining the identity of said electronic device;
means for providing said host monitoring system with one or more global network communication links used to enable transmission between said electronic device and said host monitoring system; and
means for assisting the host monitoring system to determine the location of said electronic device by tracing said communication links. - View Dependent Claims (58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93, 94)
-
Specification