×

Rogue AP detection

  • US 7,181,530 B1
  • Filed: 07/27/2001
  • Issued: 02/20/2007
  • Est. Priority Date: 07/27/2001
  • Status: Active Grant
First Claim
Patent Images

1. A method of detecting a rogue access point by a client comprising the steps of:

  • directing a message from the client node to a network through a first access point, the first access point configured to exchange wireless signals with the client node to communicatively couple the client node to the network, to an authentication server, disposed on the network, the message containing identity credentials;

    receiving a network response packet by the client node from the first access point responsive to directing a message from the client to a network through a first access point;

    determining that the first access point is a rogue access point by the client node based on the network response packet received from the access point in being in nonconformity with predetermined expectations;

    sending a start message from the client node to a second access point, the second access point configured to exchange wireless signals with the client node to communicatively couple the client node to the network;

    sending an identity request message from the second access point to the client node responsive to the sending a start message;

    forwarding the identity response message from the second access point to the authentication server;

    validating the identity credentials by the authentication server;

    forwarding a send key from the authentication server to the client node through the second access point, the send key comprising key length and key index to specify encryption parameters for a session key;

    reporting the first access point as a rogue access point by the client node to the network through the valid access point;

    wherein the message reporting the first access point as a rogue access point is encrypted with the session key.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×