Device and method for detecting unauthorized, “rogue” wireless LAN access points
First Claim
1. A wireless local area network (LAN) monitoring system comprising:
- a wired LAN;
a wireless LAN comprising at least one access point connected to said wired LAN for allowing wireless devices to communicate to the wired LAN; and
a wireless LAN monitoring device connected to said wired LAN for receiving wireless LAN radio frequency signals from access points or wireless devices and determining the existence of an unauthorized access point or wireless device within the vicinity of the wired LAN, and comprising;
a low-noise preamplifier that receives wireless LAN radio frequency signals and preamplifies the signals,a network interface that receives the wireless LAN radio frequency signals from the low-noise preamplifier and demodulates the received wireless LAN radio frequency signals into packet communications signals, anda processor operatively connected to said network interface for monitoring and analyzing said packet communications signals for unauthorized access points and wireless devices.
8 Assignments
0 Petitions
Accused Products
Abstract
A system monitors and detects unauthorized wireless LAN access points and wireless devices. The system includes one or more wireless LAN monitoring devices, which detect and report the presence of unauthorized or “rogue” wireless LAN access points or wireless devices within a predetermined area, for example, within the vicinity of a wired LAN, including indoor and/or outdoor areas. Improved range is achieved through the use of preamplification and sectorized antennas. Larger areas may be covered using additional wireless LAN monitoring devices, which operate independently or cooperate together in the detection process. Geolocation is possible using single or multiple, cooperating monitoring devices. Provision can be made for monitoring devices to provide packet filtering on a wired LAN.
86 Citations
56 Claims
-
1. A wireless local area network (LAN) monitoring system comprising:
-
a wired LAN; a wireless LAN comprising at least one access point connected to said wired LAN for allowing wireless devices to communicate to the wired LAN; and a wireless LAN monitoring device connected to said wired LAN for receiving wireless LAN radio frequency signals from access points or wireless devices and determining the existence of an unauthorized access point or wireless device within the vicinity of the wired LAN, and comprising; a low-noise preamplifier that receives wireless LAN radio frequency signals and preamplifies the signals, a network interface that receives the wireless LAN radio frequency signals from the low-noise preamplifier and demodulates the received wireless LAN radio frequency signals into packet communications signals, and a processor operatively connected to said network interface for monitoring and analyzing said packet communications signals for unauthorized access points and wireless devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A wireless local area network (LAN) monitoring system comprising:
-
a wired LAN; a wireless LAN comprising at least one access point connected to said wired LAN for allowing wireless devices to communicate to the wired LAN; and a wireless LAN monitoring device connected to said wired LAN for receiving wireless LAN radio frequency signals from access points or wireless devices and determining the existence of an unauthorized access point or wireless device within the vicinity of the wired LAN, and comprising; a multi-sector antenna or phased array antenna that receives wireless LAN radio frequency signals, a network interface that receives the wireless LAN radio frequency signals from the antenna and demodulates the received radio frequency signals into packet communications signals; and a processor operatively connected to said network interface for monitoring and analyzing said packet communications signals for unauthorized access points and wireless devices. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A wireless local area network (LAN) monitoring device for determining the existence of an unauthorized access point or wireless device comprising:
-
a low-noise preamplifier that receives wireless LAN radio frequency signals from access points or wireless devices and preamplifies the signals; a network interface that receives the wireless LAN radio frequency signals from the low-noise preamplifier and demodulates the received wireless LAN radio frequency signals into packet communications signals; and a processor operatively connected to said network interface for monitoring and analyzing said packet communications signals for unauthorized access points and wireless devices. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
-
-
42. A wireless local area network (LAN) monitoring device for determining the existence of an unauthorized access point or wireless device comprising:
-
a multi-sector or phased array antenna that receives wireless LAN radio frequency signals from access points or wireless devices; a network interface that receives the wireless LAN radio frequency signals from the multi-sector or phased array antenna and demodulates the received radio frequency signals into packet communications signals; and a processor operatively connected to said network interface for monitoring and analyzing said packet communications signals for unauthorized access points and wireless devices. - View Dependent Claims (43, 44, 45, 46, 47, 48)
-
-
49. A method for monitoring a wireless local area network (LAN) for unauthorized access points or wireless devices, which comprises receiving wireless LAN radio frequency signals within a low-noise preamplifier from an access point or wireless device;
-
demodulating the wireless LAN radio frequency signals into packet communications signals within a network interface; and monitoring and analyzing the packet communications signals within a processor for unauthorized access points and wireless devices. - View Dependent Claims (50, 51, 52, 53, 54, 55, 56)
-
Specification