Abstract: Disclosed herein is a system and method for monitoring structures of interest in a host system that is isolated and independent of the CPU and of the operating system. The system does not modify a monitored host's software and operates properly even when the host system has been compromised. The monitor of the present disclosure monitors the integrity of the examined structure by calculating values of the structure, comparing them with expected values, and sending error reports once the discrepancy between these values is detected.

Abstract: A host system integrity monitor for monitoring memory, operating systems, applications, domain manager, and other host system's structures of interest is isolated and independent of the CPU and operating system of commodity systems. The system requires no modifications to the protected (monitored) host's software, and operates correctly even when the host system is compromised. Either arranged as a stand-alone computer on the add-in card which communicates with the monitored host system through the PCI bus, or as the co-processor based monitor located on the motherboard of the host system, or residing on one of the virtual CPU while the monitored system resides on another virtual CPU, or residing within the domain manager of the host system, the monitor monitors the integrity of the examined structure by calculating hash values of the structure, comparing them with expected hash values, and sending error reports once the discrepancy between these values is detected.

Abstract: Monitoring integrity of a running computer system is based on creating a Test Model which includes predicates descriptive of invariant properties of security relevant objects and their attributes in the monitored structure known-to-be “healthy”, acquiring memory image of a portion of the running monitored structure, decomposing the acquired memory image to retrieve representation of the security relevant objects of interest, by implementing the attributes of the Test Model, and verifying, by implementing the predicates, whether the invariant properties defined in the Test Model remain unchanged for the running host system. If a discrepancy is detected, a signal indicative of a detected discrepancy is transmitted to a management entity for analysis and formulating a course of action.

Abstract: A host system integrity monitor for monitoring memory, operating systems, applications, domain manager, and other host system's structures of interest is isolated and independent of the CPU and operating system of commodity systems. The system requires no modifications to the protected (monitored) host's software, and operates correctly even when the host system is compromised. Either arranged as a stand-alone computer on the add-in card which communicates with the monitored host system through the PCI bus, or as the co-processor based monitor located on the motherboard of the host system, or residing on one of the virtual CPU while the monitored system resides on another virtual CPU, or residing within the domain manager of the host system, the monitor of the present invention monitors the integrity of the examined structure by calculating hash values of the structure, comparing them with expected hash values, and sending error reports once the discrepancy between these values is detected.

Abstract: A roaming service method for a fast and secure wireless network is provided. In an embodiment of the present invention, an AP, which an STA associates with, transmits proactive keys needed for roaming to neighbor APs of the AP. When the STA moves to one of the neighbor APs, a reassociation is carried out between the STA and the neighbor AP using the already provided proactive key. In another embodiment of the present invention, an authentication server transmits proactive keys needed for roaming to neighbor APs to which the STA is likely to move, so that when the STA moves to one of the neighbor APs, a reassociation is carried out between the STA and the neighbor AP using the already provided proactive key.

Abstract: Monitoring integrity of a running computer system is based on creating a Test Model which includes predicates descriptive of invariant properties of security relevant objects and their attributes in the monitored structure known-to-be “healthy”, acquiring memory image of a portion of the running monitored structure, decomposing the acquired memory image to retrieve representation of the security relevant objects of interest, by implementing the attributes of the Test Model, and verifying, by implementing the predicates, whether the invariant properties defined in the Test Model remain unchanged for the running host system. If a discrepancy is detected, a signal indicative of a detected discrepancy is transmitted to a management entity for analysis and formulating a course of action.

Abstract: The present invention relates to an authentication method for wireless distribution system including at least one base station providing access service to mobile stations in a coverage of the base station. In the authentication method, an unregistered base station receives an authentication request from a mobile station, multicast an identity request for identifying the mobile station over the wireless distribution system, receives identity responses from at least one base station in response to the identity request, and performs authentication of the mobile station on the basis of the identity responses. The distributed authentication method of the present invention is performed without AAA server, when a new base station is installed or isolated base stations are joined, such that it is possible to extend the network in an easy manner without degradation of the security degree and additional labor burden of the operator.

Abstract: Provided is a probing method for handoff including constructing a group of neighbor access points of a current access point with which the station associated, generating subgroups of the neighbor access points by the channel assigned to the access points, probing the access points by subgroup in a subgroup selection order, and selecting the neighbor access point having best link quality as a target access point to handoff. The probing method of the present invention is implemented with a novel non-overlap graph for constructing the neighbor graph such that the probing latency is dramatically reduced, resulting in reduction of handoff delay.

Abstract: A method for minimizing handoff latencies when a handoff is performed in a wireless network. An access point (AP) or base station associated to a current wireless station (STA) allows information required for a reassociation to the STA to be propagated to handoff-capable neighboring APs or base stations. When the STA moves, a neighboring AP or base station performs the reassociation to the STA on the basis of context. When a handoff procedure is performed, the time taken to receive context of a corresponding STA is reduced, such that a fast handoff can be implemented.

Abstract: A method for minimizing handoff latencies when a handoff is performed in a wireless network. An access point (AP) or base station associated to a current wireless station (STA) allows information required for a reassociation to the STA to be propagated to handoff-capable neighboring APs or base stations. When the STA moves, a neighboring AP or base station performs the reassociation to the STA on the basis of context. When a handoff procedure is performed, the time taken to receive context of a corresponding STA is reduced, such that a fast handoff can be implemented.

Abstract: A method for minimizing handoff latencies when a handoff is performed in a wireless network. An access point (AP) or base station associated to a current wireless station (STA) allows information required for a reassociation to the STA to be propagated to handoff-capable neighboring APs or base stations. When the STA moves, a neighboring AP or base station performs the reassociation to the STA on the basis of context. When a handoff procedure is performed, the time taken to receive context of a corresponding STA is reduced, such that a fast handoff can be implemented.

Abstract: A method for minimizing handoff latencies when a handoff is performed in a wireless network. An access point (AP) or base station associated to a current wireless station (STA) allows information required for a reassociation to the STA to be propagated to handoff-capable neighboring APs or base stations. When the STA moves, a neighboring AP or base station performs the reassociation to the STA on the basis of context. When a handoff procedure is performed, the time taken to receive context of a corresponding STA is reduced, such that a fast handoff can be implemented.

Abstract: Integrity is rarely a valid presupposition in many systems architectures, yet it is necessary to make any security guarantees. To address this problem, the present invention discloses a secure bootstrap process, which presumes a minimal amount of integrity. The basic principle is sequencing the bootstrap process as a chain of progressively higher levels of abstraction, and requiring each layer to check a digital signature of the next layer before control is passed to it. A major design decision is the consequence of a failed integrity check. A simplistic strategy is to simply halt the bootstrap process. However, the bootstrap process of the present invention can be augmented with automated recovery procedures which preserve the security properties of the bootstrap process of the present invention under the additional assumption of the availability of a trusted repository. A variety of means by which such a repository can be implemented are disclosed with attention focused on a network-accessible repository.