System and method for security and quality assessment of wireless access points
First Claim
1. A method for security risk assessment of wireless access point devices, the method comprising performing, by a computer system:
- receiving, from a plurality of devices, a plurality of reports, each report being transmitted by a device of the plurality of devices in response to accessing an access point having a unique access point identifier and including a unique user identifier;
determining a number of unique user identifiers represented in the plurality of reports;
determining that both of (a) the number of unique user identifiers exceeds a first threshold and (b) the number of unique user identifiers is below a second threshold that is higher than the first threshold; and
in response to determining that both (a) and (b) are true, transmitting a message to one or more devices of the plurality of devices, the message indicating that the access point is not secure.
20 Assignments
0 Petitions
Accused Products
Abstract
A computer-implemented method for security risk assessment of wireless access point devices, the computer-implemented method comprising: receiving signals from one or more wireless access points by two or more mobile wireless devices visiting said access points, obtaining Basic Service Set Identifiers (BSSID) of visited access points and reporting values derived from BSSID and from an identifier of corresponding mobile device to a first database, receiving a request for a security risk assessment of evaluated wireless access point, said request containing value derived from BSSID of the evaluated access point, searching the first database for one or more entries corresponding to the evaluated access point, and processing search results to assess security risk of the evaluated access point, said processing comprises computing a component of said risk dependent on the count of unique identifiers of mobile devices reported for the evaluated access point.
14 Citations
18 Claims
-
1. A method for security risk assessment of wireless access point devices, the method comprising performing, by a computer system:
-
receiving, from a plurality of devices, a plurality of reports, each report being transmitted by a device of the plurality of devices in response to accessing an access point having a unique access point identifier and including a unique user identifier; determining a number of unique user identifiers represented in the plurality of reports; determining that both of (a) the number of unique user identifiers exceeds a first threshold and (b) the number of unique user identifiers is below a second threshold that is higher than the first threshold; and in response to determining that both (a) and (b) are true, transmitting a message to one or more devices of the plurality of devices, the message indicating that the access point is not secure. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for security risk assessment of wireless access point devices, the method comprising performing, by a computer system:
-
receiving, from a plurality of devices, a plurality of reports, each report being transmitted by a device of the plurality of devices in response to accessing an access point having a unique access point identifier and including a unique user identifier; determining a number of unique user identifiers represented in the plurality of reports; determining a security score for the access point according to a function that indicates higher risk with increasing number of unique user identifiers; and determining that the score indicates that the access point is not secure; in response to determining that the score indicates that the access point is not secure, transmitting a message to one or more devices of the plurality of devices, the message indicating that the access point is not secure, wherein determining the security score for the access point according to the function that indicates higher risk with increasing number of unique user identifiers comprises, computing the security score according to a nonlinear function of risk with respect to number of unique user identifiers such that; for a first portion of a range of possible numbers of unique user identifiers, the security score indicates decreasing risk with increasing number of unique user identifiers; for a second portion of the range of possible numbers of unique user identifiers, the security score indicates increasing risk with increasing number of unique user identifiers; for a third portion of the range of possible numbers of unique user identifiers, the security score indicates decreasing risk with increasing number of unique user identifiers; wherein the third portion includes higher values for the number of unique user identifiers than the second portion and the second portion includes higher values for the number of unique user identifiers than the first portion.
-
-
12. A system for security risk assessment of wireless access point devices, the system comprising one or more processors and one or more memory devices operably coupled to the one or more processors, the one or more memory devices storing executable code effective to cause the one or more processors to:
-
receive, from a plurality of devices, a plurality of reports, each report being transmitted by a device of the plurality of devices in response to accessing an access point having a unique access point identifier and including a unique user identifier; determine a number of unique user identifiers represented in the plurality of reports; and if the number of unique user identifiers is greater than a first threshold and less than a second threshold, transmit a message to one or more devices of the plurality of devices, the message indicating that the access point is not secure, the second threshold being greater than the second threshold. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A system for security risk assessment of wireless access point devices, the system comprising one or more processors and one or more memory devices operably coupled to the one or more processors, the one or more memory devices storing executable code effective to cause the one or more processors to:
-
receive, from a plurality of devices, a plurality of reports, each report being transmitted by a device of the plurality of devices in response to accessing an access point having a unique access point identifier and including a unique user identifier; determine a number of unique user identifiers represented in the plurality of reports; determine a security score for the access point according to a function that indicates higher risk with increasing number of unique user identifiers; and if the score indicates that the access point is not secure, transmit a message to one or more devices of the plurality of devices, the message indicating that the access point is not secure wherein the executable data is further effective to cause the one or more processors to determine the security score by computing the security score according to a nonlinear function of risk with respect to number of unique user identifiers such that; for a first portion of a range of possible numbers of unique user identifiers, the security score indicates decreasing risk with increasing number of unique user identifiers; for a second portion of the range of possible numbers of unique user identifiers, the security score indicates increasing risk with increasing number of unique user identifiers; for a third portion of the range of possible numbers of unique user identifiers, the security score indicates decreasing risk with increasing number of unique user identifiers; wherein the third portion includes higher values for the number of unique user identifiers than the second portion and the second portion includes higher values for the number of unique user identifiers than the first portion.
-
Specification