Wireless network system including integrated rogue access point detection
First Claim
Patent Images
1. A system facilitating automatic detection of rogue access points, comprisinga data collector,at least one access element for wireless communication with at least one remote client element and for communication with the data collector,wherein the at least one access element is operative to:
- establish and maintain, in an access point mode, wireless connections with remote client elements;
switch to a scanning mode for a scanning period at a scanning interval to detect wireless traffic,record scan data characterizing the detected wireless traffic, andtransmit the scan data to the data collector;
wherein the data collector is operative toprocess the scan data against an access point table including information relating to authorized access points, and against an ignored access point table storing information relating to unauthorized access points that have been previously detected and placed in the ignored access point table, to identify rogue access elements.
3 Assignments
0 Petitions
Accused Products
Abstract
Methods, apparatuses and systems facilitating automated detection of rogue wireless access points in a wireless network environment. The present invention, in one embodiment, integrates automated detection of rogue access points into wireless network systems. As discussed more fully below, the present invention can be applied to a variety of wireless network system architectures.
-
Citations
19 Claims
-
1. A system facilitating automatic detection of rogue access points, comprising
a data collector, at least one access element for wireless communication with at least one remote client element and for communication with the data collector, wherein the at least one access element is operative to: -
establish and maintain, in an access point mode, wireless connections with remote client elements; switch to a scanning mode for a scanning period at a scanning interval to detect wireless traffic, record scan data characterizing the detected wireless traffic, and transmit the scan data to the data collector; wherein the data collector is operative to process the scan data against an access point table including information relating to authorized access points, and against an ignored access point table storing information relating to unauthorized access points that have been previously detected and placed in the ignored access point table, to identify rogue access elements. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An apparatus facilitating the automatic detection of rogue access points, comprising
a transmit/receive unit for wireless communication with at least one remote client element, a network interface for communication with a data collector over a computer network, wherein the apparatus is operative to: -
establish and maintain, in an access point mode, wireless connections with remote client elements to bridge wireless traffic between the remote client elements and a computer network; switch from the access point mode to a scanning mode for a scanning period at a scanning interval to detect wireless traffic on at least one frequency channel, announce a contention-free period prior to switching from the access point mode to the scanning mode; record scan data characterizing the detected wireless traffic, and transmit the scan data to a data collector. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system facilitating automatic detection of rogue access points, comprising
a plurality of access elements for wireless communication with at least one remote client element and for communication with a central control element; -
a central control element for supervising said access elements, wherein the central control element is operative to manage wireless connections between the access elements and corresponding remote client elements, wherein the access elements are each operative to establish and maintain, in an access point mode, wireless connections with remote client elements; switch to a scanning mode for a scanning period at a scanning interval to detect wireless traffic, record scan data characterizing the detected wireless traffic, and transmit the scan data to the central control element; wherein the central control element is operative to process the scan data against information relating to known access elements to identify rogue access points; a second plurality of access elements for wireless communication with at least one remote client element and for communication with a central control element; and a second central control element for supervising said second plurality of access elements, wherein the second central control element is operative to manage wireless connections between the access elements and corresponding remote client elements, wherein the second access elements are each operative to establish and maintain, in an access point mode, wireless connections with remote client elements; switch to a scanning mode for a scanning period at a scanning interval to detect wireless traffic, record scan data characterizing the detected wireless traffic, and transmit the scan data to the second central control element; wherein the second central control element is operative to process the scan data against information relating to known access elements to identify rogue access elements; and wherein the first and second central control elements are operative to exchange information relating to known access elements.
-
Specification