Location-enabled security services in wireless network
First Claim
Patent Images
1. A method of providing an addition to the security portfolio of wireless networks in which information received by the wireless network is used as a confirmation of a node'"'"'s declared position, wherein said information received is wireless network measurements of said node,said method comprising:
- determining whether said declared position is consistent with said wireless network measurements said declared position being derived independently of said wireless network, said declared position supplied by said node, and said declared position being a position said node purports to be located at; and
identifying a statistical measure based on the expected values of said wireless network measurements from said node at said declared position and determining a value of said statistical measure, said statistical measure being indicative of the possibility of said node being at said declared position; and
identifying a threshold, said threshold being dependent on at least one of a pre-assigned value and a weighting factor w, said factor w set according to a location-based parameter; and
comparing the value of said statistical measure to said threshold in order to make security decisions.
2 Assignments
0 Petitions
Accused Products
Abstract
A method, an apparatus, and a computer program product for providing location enabled security services in a wireless network. In the method, a network access request from a node requesting access to the wireless network is received. A probability level for a position for the requesting node is calculated using position information claimed by the requesting node and position information about the requesting node derived from signal measurements for the requesting node received by at least one existing authorized node in the wireless network. Access for the requesting node to the wireless network is denied if the probability level does not satisfy a specified threshold condition for network security. Access for the requesting node to the wireless network is granted if the probability level does satisfy the specified threshold condition.
23 Citations
7 Claims
-
1. A method of providing an addition to the security portfolio of wireless networks in which information received by the wireless network is used as a confirmation of a node'"'"'s declared position, wherein said information received is wireless network measurements of said node,
said method comprising: -
determining whether said declared position is consistent with said wireless network measurements said declared position being derived independently of said wireless network, said declared position supplied by said node, and said declared position being a position said node purports to be located at; and identifying a statistical measure based on the expected values of said wireless network measurements from said node at said declared position and determining a value of said statistical measure, said statistical measure being indicative of the possibility of said node being at said declared position; and identifying a threshold, said threshold being dependent on at least one of a pre-assigned value and a weighting factor w, said factor w set according to a location-based parameter; and
comparing the value of said statistical measure to said threshold in order to make security decisions.
-
-
2. A method of providing true positioning of a node in a wireless network,
said method comprising: -
using declared position information, said declared position information being derived independently of said wireless network and indicative of the position said node purports to be located at; receiving declared position information about the node by the wireless network, and identifying a threshold, said threshold being dependent on at least one of a pre-assigned value and a weighting factor w, said factor w set according to a location-based parameter; and determining, based on a comparison test using said threshold, if said received declared position information is consistent with the wireless network'"'"'s own internal measurements, thereby confirming a node'"'"'s declared position information.
-
-
3. A method of providing security in a wireless network, said method comprising:
-
using a node'"'"'s true position as a security enabler in said wireless network, said position being derived independently of said wireless network; supplying said position by said node to said wireless network; obtaining measurements by said wireless network; instructing said wireless network to determine whether the position supplied by the node is consistent with wireless network'"'"'s own measurements; identifying a statistical measure and determining a value of said statistical measure, said statistical measure being indicative of the possibility of said node being at said position; and identifying a threshold, said threshold being dependent on at least one of a pre-assigned value and a weighting factor w, said factor w set according to a location-based parameter; and comparing the value of said statistical measure to said threshold to make security decisions. - View Dependent Claims (4, 5, 6, 7)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeRobert Anderson Malaney
-
Original AssigneeNariste Networks Pty Ltd
-
InventorsMalaney, Robert Anderson
-
Primary Examiner(s)Pwu, Jeffrey
-
Assistant Examiner(s)Anderson, Michael D
-
Application NumberUS13/846,134Publication NumberTime in Patent Office1,079 DaysField of Search726/30US Class Current1/1CPC Class CodesG06F 21/00 Security arrangements for p...H04L 63/0492 by using a location-limited...H04L 63/10 for controlling access to d...H04L 63/107 wherein the security polici...H04W 12/00 Security arrangements; Auth...H04W 12/06 AuthenticationH04W 12/08 Access securityH04W 12/63 Location-dependent; Proximi...H04W 12/67 Risk-dependent, e.g. select...H04W 48/18 Selecting a network or a co...H04W 64/00 Locating users or terminals...
