Abstract: The present disclosure relates to an electronic device, and a wireless intrusion prevention system according to the present disclosure may include a sensing device and a controller. The sensing device may be configured to monitor a wireless frame transmitted/received between an access point (AP) and a plurality of stations over a wireless network and generate frame analysis information based on the wireless frame. The controller may be configured to compare manufacturer identification information including Organizationally Unique Identifiers (OUIs) with Media Access Control (MAC) addresses of respective stations included in the frame analysis information, determine a target station having a random MAC address among the plurality of stations based on a result of the comparison, and control access to the access point by the target station based on a blocking policy.
Abstract: Provided herein are a wireless intrusion prevention system, a wireless network system including the wireless intrusion prevention system, and a method for operating the wireless network system. Of these, the wireless intrusion prevention system includes an access point, a plurality of stations configured to transmit/receive a wireless frame to/from the access point over a wireless network, and a wireless intrusion prevention system configured to monitor the wireless frame, wherein the wireless intrusion prevention system transmits a dis-association request to a specific station, among the plurality of stations, and prevents the access point from responding to the specific station.
Abstract: Disclosed are a method of packet classification and a device thereof. A method for packet classification according to one embodiment of the present invention comprises the steps of: partitioning the entire rule set by using key values corresponding to packet fields, into a plurality of rule subsets; generating recursive flow classification (RFC) tables for each of the plurality of partitioned rule subsets; loading, in the same cache line, both partition information and RFC table information commonly corresponding to key values of received packets; searching for a rule subset by using the partition information on the key values of the received packets, which are loaded in the cache line; and searching for an RFC table for a rule by using the RFC table information on the key values of the received packets, which are loaded in the cache line.
Type:
Grant
Filed:
April 10, 2014
Date of Patent:
January 19, 2016
Assignees:
Ajou University Industry-Academic Cooperation Foundation, Secui Corporation
Inventors:
Woo Guil Park, Young June Choi, June Seung Na, Jeong Ae Lee, Je Bum Kyung
Abstract: Disclosed are a method of packet classification and a device thereof. A method for packet classification according to one embodiment of the present invention comprises the steps of: partitioning the entire rule set by using key values corresponding to packet fields, into a plurality of rule subsets; generating recursive flow classification (RFC) tables for each of the plurality of partitioned rule subsets; loading, in the same cache line, both partition information and RFC table information commonly corresponding to key values of received packets; searching for a rule subset by using the partition information on the key values of the received packets, which are loaded in the cache line; and searching for an RFC table for a rule by using the RFC table information on the key values of the received packets, which are loaded in the cache line.
Type:
Application
Filed:
April 10, 2014
Publication date:
August 7, 2014
Applicants:
Ajou University Industry-Academic Cooperation Foundation, SECUI Corporation
Inventors:
Woo Guil Park, Young June Choi, June Seung Na, Jeong Ae Lee, Je Bum Kyung