DE10253374B4 - Dial-in lock for data transmission equipment - Google Patents

Abstract

A dial-up inhibitor that blocks connection requests from a data terminal (eg, a personal computer) connected via a modem and dial-up line to a public data network (e.g., Internet) to the telephone numbers of particular dial-in nodes or groups of dial-in nodes
- is switched between the data terminal device and the data transmission device (modem),
Monitors the signals sent from the terminal to the modem and used to control the terminal,
- Waiting for a connection setup command
- the number transmitted in this command decides whether to allow dial-in, and
- does not transmit this command to establish a connection or signals the data transmission device its invalidity if it contains a blocked number,
wherein a PROM is present in the number groups of dial-in nodes, which are preset in the factory as locked, are stored, where as the factory-locked number groups all international call numbers, as well as numbers where the called party proportionally ...

Description

The The invention relates to a simple usable and by manipulated dial-up programs (called dialers) unassailable Device with which it is possible to prevent that from a data terminal device a connection over a data transmission device established to certain numbers or groups of numbers in the telephone network becomes.

Known is that when using data networks, especially when using of public data networks the connection to the data network to attacks on the data network connected computer can be abused, where z. B. the Computer or the data stored on it damaged, or Data can be stolen. Farther it is known that additional There are risks when connecting to a data network via a dial up connection is made in the telephone network. These are additional risks justified that connection to the data network by simple change or manipulation of the preset phone number over which the data network is reached, redirected to unauthorized third parties can be.

1 shows a simplified representation of the prior art construction of a connection to a data network via the telephone network using the example of the Internet. The Internet is a worldwide network of data networks based on a unified protocol called TCP / IP. It is by far the most widely used data network in front of all other data networks. According to 1 the Internet III is frequently used with the aid of a data terminal device (eg a computer) connected to the telephone network II via a subscriber line I. 1 , the data at one of the web server 7 queried from there back to the data terminal 1 be transmitted. Especially for private households, this is the cheapest form of an Internet connection, since usually the usage times or amounts of data from which leased lines or connection techniques with higher bandwidth such. B. xDSL or ATM, not be achieved. To send data over the telephone network, the data transmission device 2 , usually a modem, needed. The data transmission device 2 establishes the connection to the telephone network II and converts the digital signals of the data terminal into sound signals and vice versa. A data connection to the Internet is only established when it is needed. For this the computer sends 1 to the modem 2 Commands the modem 2 to induce the phone number of the dial-in node 4 to select. Once on the exchanges 3 When a connection is switched, the modem converts and transmits the data between the web server 7 and the computer 1 be replaced. The dial-in node 4 Performs the protocol conversion required between the telephone network and the Internet. The Internet III is a meshed network whose nodes are the routers 6 form. The function of the router is to find the cheapest way to transfer the data from its source to the computer 1 , to their destination, the web server 7 , to find. Depending on the operator of the dial-in node, which is referred to as an Internet provider, fall in different rates, which may also vary depending on the time of day and day of the week on. Therefore, it is often practiced over several alternative dial-in nodes 5 dial into the Internet, depending on which internet provider currently offers the cheapest rate.

Around preferably conveniently connect to the Internet via the telephone network, Dial-up programs were created that dial into the Internet automate. They are partly in the operating systems of computers integrated. If a dial-in program of the Internet provider is used, is no configuration required. By manipulating dial-up programs can be ensured be that the computer is over dial a special or international number to the Internet instead the connection over the one selected by the user Internet providers build. The fact that a phone number is dialed, in which the called party a part of the accruing fees, benefits the distributor of the manipulated dial-in program. Beside it exists the danger that this way data can be stolen. At the common for this Manipulations are used premium rate services, these are telecommunications services, where in addition to the connection fees and fees for the content be billed. For premium Rate services are provided by the respective regulatory authorities for telecommunications Assign phone number groups that are set for the long term and may vary from country to country. In the Federal Republic Germany this is the call number group 0190 to 0193. In the course International harmonization is also the telephone number group 0900 for Premium Rate services provided. Particularly dangerous here are the Telephone number groups 0190-0, 0900 and 0191-0193, in which the provider the Height of Free rate can determine. In addition, even the special phone number groups of Information services (118xx) and partly the shared-cost service 0180 for Manipulations with dial-up programs be interesting.

The danger of manipulated dial-up programs has risen steadily in the past. The damage caused by them has reached a level that has led to the public perceiving it as a serious threat to be appreciated. The Regulatory Authority for Telecommunications also warns against manipulated dial-in programs on the Internet (Regulatory Authority for Telecommunications (RegTP), as seen on 11.04.2002 on the Internet at http://www.regtp.de/service/02501/01/index.html, the Name of the page may have changed, or the page may be deleted).

It belongs to the state of the art to install designated as dialer protection programs software programs on the data terminal to protect against manipulated dial-in programs. These are software programs that monitor operating system functions that call the operating system dial-in program and other applications to connect to a data network over a dial-up line. Such a method is known from patent document United States Patent US 6,411,693 B1 and the publications referred to there. In some cases, the configuration of the dial-in program is also monitored or all telephone numbers dialed via the operating system are logged.

Dialer protection programs run in an environment that has communication channels about the malicious programs can be loaded into the system and started there. On usually go this way also manipulated dial-in programs into the system. Since dialer protection programs only take effect when trying to establish a connection to the outside, a manipulated dialer has the ability to check if a dialer protection program is available to specifically bypass this or even finish before it can warn. About such attacks was already reported (Zeitschrift PC Direkt 8/2002, page 78). To one Protection against intrusion of a compromised dial-in program realize, are additional To take precautions (firewall and virus or Trojan protection program). As well as the dialer protection program as well as the additionally required protection mechanisms are regular updates required, their procurement and installation with a considerable Time required. Still, absolute security can be are not guaranteed, as most of the updates of the protection programs can only respond to new attacks. In addition, modern operating systems provide because of their complexity and often Asked for backward compatibility many functions over which a manipulated dialing a not desired Initiate connection establishment. Therefore, it is questionable whether dialer protection programs really all sorts of things Monitor attack points for dialers. Even then, a manipulated dialing program would still be the possibility, directly to the hardware of the interface to the data transmission device access. It is therefore hardly detectable, but will also considerably more complex as it presents itself to the operating system as a driver must, and partially take over its functions. Another one Problem of the dialer protection programs is that they are due to their tight Dovetailing with the operating system are highly operating system specific.

From the Scriptures WO 98/20666 A2 Furthermore, a dial-lock device is known., Which is switched between telephone or modem on the one hand and telephone or telephone jack on the other side, and monitored by modem or telephone sent to the telephone line dialing commands.

Of the specified in claim 1 invention is based on the problem a solution to establish with which the establishment of a connection from a data terminal to certain numbers or groups of numbers in the telephone network prevented can be. This solution should not be attacked by manipulated dial-in programs, not on an operating system is limited, and easy to handle. Furthermore, as far as possible should not Need to pass updates.

This object is achieved according to the invention by a device having the characterizing features of claim 1. Thereafter, the described in the invention and hereinafter referred to as a dial-lock device between the data terminal and the data transmission device is switched. There, it monitors the signals sent by the data terminal device (eg computer) to the data transmission device (usually a modem) to determine whether a command to establish a connection is being transmitted. To illustrate the invention, it will be noted that the term "data terminal equipment" for a computer and the term "data transmission equipment" for a modem will be used hereinafter. If so, it is judged from the telephone number included in the above-mentioned command whether or not the connection request of the terminal is allowed. If the connection can not be permitted, the command is not transmitted to the data transmission device, or the data transmission device signals that it must not execute the already partially transmitted command. An initial configuration of the invention is superfluous if the use of paid content can be dispensed with. This is likely to be the case in the vast majority of applications. For this purpose, a permanent memory (eg PROM) is provided in the factory locks for the previously described phone number groups, where the callee be profited from the fees. These telephone number groups are specified in the regulations of the country of delivery in the long term. Therefore, if at all, only an extremely rare update of the factory preset blacklists required.

Farther is a non-volatile, reprogrammable memory (eg, an EEPROM) for storage provided by configuration data. This is inventively for storage provided by locks that are configured by the customer, and the replace or supplement factory preset phone number blocks. requires will be different from the default configuration locks z. B., if access to a data network or an internet provider should take place, the dial-in node only over numbers from the number range Premium rate services are available. According to the invention here both positive lists, in this case only connections to telephone numbers or telephone number groups that are contained in the positive list are, admitted, as well as negative lists, in this case only connections to all phone numbers or phone number groups that not included in the negative list, allowed to be possible.

The following execution is for explanation only of the invention: Above In addition, this memory is also used for logging events become. Such events can z. B. Attempts to connect to a blocked phone number, be. For storing personal blacklists or for archiving Event logs is an optional embodiment of the invention provided with a removable storage medium.

The particular advantages of the invention are that the handling of their proposed monitoring device is very simple, since the installation is done in which they are easy inserted between data terminal and data transmission device becomes. To further simplify handling, that the need for regular updates as in the prior art dialer protection programs largely eliminated, since the command language of the mentioned in claim 1 Device to be monitored according to the invention Interface between data terminal device and data transmission device introduced very long and factually standardized, and therefore no longer with significant changes is to be expected. Due to the standardization of the interface between Data terminal device and data transmission device is for the device proposed in the invention has no operating system dependency given.

To the other advantages of the invention that the in claim 1 device is a standalone device that no interface for application programs offers. This is her for the manipulated dial-in program is systematically not vulnerable, as is the case with the dialer protection programs. In addition, one has manipulated dialing program so long no way the presence to determine the device described in claim 1, until it suspends a connection request to a locked phone number.

In that not like in the out WO 98/20666 A2 known device the telephone line itself is monitored, but the interface between the data terminal and the data transmission device, special phone numbers can still be called with a phone. This is particularly useful for the numbers of information services that should be blocked for data terminal equipment, but are called quite often with the phone. A blocking of the directory inquiry services makes sense, since cases are already known in which directory assistance services have been abused by manipulated dial-in programs.

A further supplementary and alternative embodiment of the invention is in the claim 2 indicated. He has an extension of the dial lock device, with their help the input of individual CRLs and others Configuration parameters and the output of logged events can be done to the subject. The input and output is done manually with controls attached to the device. At this Type of input and output, no interface is required over the the supervised Data terminal device can change settings of the dial lock device. Thereby is ensured that the individual blacklists by a manipulated dialing program can not be changed. Continue proposed to provide a control with which the monitoring function short term for a maximum of one election attempt except Function can be set. Thus, in an exceptional case, an intended Access to a default locked Call number without having to change the configuration. The optional attachment of display elements such. B. a display simplifies the administration from CRLs. It also allows it, on request Output event logs. So z. For example, a list of Connection requests to blocked numbers are displayed.

Since it is assumed that the dial lock device is installed in a poorly accessible place, it may be useful to use the above controls on a remote control to arrange. This additional and alternative embodiment of the invention is specified in the patent claim 3.

In many cases is it the for the user most effective method, the administration the blacklist and other settings of the dial lock device using a configuration program installed on the terminal make. Therefor is a configuration interface to the data terminal required. In claim 4 is a complementary and alternative embodiment specify the invention, in which the configuration interface by one's own while of the monitoring operation not with the one to be monitored Data terminal connected interface is realized. These Interface should be mechanically or electrically against a change of be locked in data stored in the dial lock device, as long as that for The supervision the data terminal provided interface of the dial lock device is connected to a switched-data terminal.

On the other hand see the additional and alternative embodiment of the specified in claim 5 Invention that the configuration program monitored by the dial lock device interface used simultaneously as a configuration interface. There are only a few additional components are required, this is the most cost-effective realization of a Interface for configuring the dial-lock device. This Advantage, however, with an at least theoretically existing vulnerability, over the a manipulated dial-up program could change the blacklists, bought. Therefore will be additional Methods proposed to use the dial lock device against a accidental or caused by manipulated dial-in programs configuration change secure.

In the claims 6 and 7 are complementary and alternative embodiments of the invention, which the Report connection requests to blocked numbers. Will the dial lock device attempt one of the data terminal established connection set up to a blocked phone number must It can be assumed that there is a manipulated dial-in program could have nested on the data terminal. In this case should the data terminal equipment to be subjected to a close inspection. requirement this is a message through the dial lock device. This can either acoustically or optically, as specified in claim 6, or by signaling to the data terminal, as in claim 7 specified, done. To evaluate the signals with which the Dial lock device of claim 7 this attempt to the Data Terminal Equipment reports must have a suitable program on the Data terminal to be installed. With the help of this program becomes a much more precise Message possible. Furthermore the user can through the program in the search for the possibly existing manipulated dial-up program are supported.

A further supplementary and alternative embodiment of the invention is in the claim 8 indicated. It exploits that some interfaces, such as. B. the USB interface designed for it are connected devices with the for the Supply voltage required, so far as they low Have current consumption. For other interfaces such as the V.24 interface can sufficient energy is drawn from the signal lines to the device according to the invention to operate. This will be described in more detail in the second embodiment. If the device is powered in this way, there is no power supply and no connection cable for the power grid required, which facilitates their handling and reduces the production costs.

Without can leave the inventive teaching, as in the claim 9 indicated, the invention integrated into a data transmission device be, or as stated in the patent claim 10, in a connecting cable between data transmission device and data terminal integrated. The latter offers itself especially if the connection cable anyway a level conversion must make, such. B. in a modem cable for a cell phone.

following The invention will be explained with reference to an embodiment of the closer. Show it:

2 , a use example of a device according to the invention

3 , a block diagram of a device according to the invention for monitoring a V.24 interface

4 : A block diagram of a further developed device according to the invention, which receives the energy required for operation from the interface to be monitored. The device according to the invention, referred to as a dial-in blocking device, is intended as shown in FIG 2 shown to be connected between the data transmission device and the data terminal. It monitors the data terminal equipment 4 to the data transmission device 2 sent commands. The dial lock device 3 stops the communication between rule the data terminal 4 and the data transmission device 2 when the data terminal sends a command to set up a connection to a blocked telephone number. At the same time the connection termination is signaled, thereby preventing the data transmission device the telephone connection 1 signaled an election process

Become frequent Data transmission equipment such as As modems over a V.24 interface to the data terminal, as a rule a computer connected. The V.24 interface is from the ITU, for the standards in telecommunications competent organization, standardized. She becomes common simply as a serial interface or in the American-speaking world referred to as RS232. First modems were only for The connection to the V.24 interface is available. Later, modems became synonymous for others Interfaces, such. B. the USB interface, or as Einbaumodems, which are installed directly in a slot of the system bus of the computer are produced. Nevertheless, modems for connecting to the V.24 interface are always still widely used. The following description relates to a dial lock device, which monitors a data transmission device connected to the serial interface.

In a modem with V.24 interface, both the control commands by which the data terminal controls the modem and the data to be transmitted via the modem connection are transmitted on the same data line, referred to as TXD. The communication runs as follows:
The data terminal first sends control commands, mostly using the Hayes AT instruction set, to the modem less frequently in the V.25 instruction set. With the AT command set, the commands begin with the string "AT" with a few exceptions.The modem does not execute the command until it has received the carriage return character that completes the command, with the string "ATD". followed by the dialed number, the modem is made to establish a connection. As soon as the dial-up connection is established, the data terminal device switches the modem into transmission mode. Now it is transparent. All data now received is converted into tones and transmitted via the telephone network to the remote station. The only exceptions are the strings "+++" and "ATH". When the modem receives these strings, it returns to command mode. In the case of the "ATH" command, the connection to the remote station is also disconnected.

Further Lines of the V.24 interface are used to provide status information exchange between modem and data terminal. Among them is the DTR line, over which the data terminal tells the modem that it is ready to Process data. If this line is not set, it will take Modem no data from the data terminal. Will she become inactive, while one Modem connection, the modem connection is terminated.

The entrance of in 3 shown exemplified dial-lock device is connected to the V.24 interface of the data terminal. Since the signal levels on the lines of the V.24 interface are not suitable for direct connection to digital ICs, a level conversion by the V.24 receiver is initially necessary 1 required. Of the more than 20 lines defined for the V.24 interface, only two lines are required here. The data sent over the TXD line from the data terminal is from the control logic 2 evaluated. The control logic can be realized with a microcontroller. Like the modem, it first has to recognize the bit rate of the data stream set by the data terminal. As long as the modem is in command mode, the control logic must monitor the commands sent by the terminal. If a dial command is received, the telephone number contained therein is evaluated. If the telephone number is a locked telephone number, the control logic switches the DTR and TXD lines to the modem using the Enable input 4 of the V.24 transceiver 3 from. Characters sent to the modem after being turned off by the terminal are suppressed in this manner. The dial command is not completed, and is not executed because the modem only accepts commands that have been completely transmitted and terminated with a "carriage return" character instead of the command end, signaling that the command was invalid by turning off the DTR line.

In monitoring mode are the TXD and DTR outputs of the transceiver 3 switched on, they are only switched off when an attempt was detected to dial a blocked phone number. The control logic must be designed to ensure that the DTR line is switched off within one byte of time after the last digit of the telephone number has been transmitted, thereby ensuring that the modem does not execute the dialing command. In addition, the monitoring device should also generate an audible or visual alarm when attempting to dial a blocked telephone number. Loud 3 is the speaker for this purpose 5 intended. The time that an alarm should last depends on the user's personal preference. However, the control logic must ensure that the alarm and thus the interruption of the connection only then is canceled if the data terminal no activity is detected.

Industry-built V.24 transceivers produce the level 1 (-5V ... -12V) associated with a logical 1 when their V.24 outputs are turned off via their control line. The modem recognizes a logical 1 but also when there is no voltage at its inputs. Using this, the dial lock device can be simplified. In 4 this simplified variant is shown. The transceiver at the output is controlled by a controlled electronic switch 3 replaced. A mechanical relay would be too slow. The electronic switch is via one of the control logic 2 generated signal on the control line 4 is turned off as soon as an attempt to dial a locked phone number is detected. Since the transceiver at the output of the dial-lock device eliminates the largest part of their power consumption, can also be dispensed with its own power supply. The energy required to operate the device can be provided by means of the power supply 6 be pulled from one of the control lines of the V.24 interface of the data terminal. The lines of the V.24 port can drive a current of at least 20mA each. This value is designed for a connection line of 50 m length. However, with the data rates of 56kBaud and more commonly required for newer modems, most manufacturers typically allow connection cables of up to 2.5m in length. The limitation of the cable length results in the data rates transmitted via the data lines of the serial interface designated as TXD and RXD. In contrast, the control lines such. B. the DTR line very rarely. The driver power of its output is not dynamic as in the data lines, e.g. B. consumed for the transfer of line capacities. However, the control lines have the same driver performance as the data lines. Thus, the control lines of the V.24 interface can easily be used a few milliamps for the supply of the dial lock device. The device is powered by a V.24 Reiceiver 1 completed, this is required only for the TXD line, and may optionally be replaced by a series resistor and two clamp diodes. The other components are opposite to the 3 unchanged.

Claims (11)

Dial-lock device, the connection requirements a data terminal device (eg, a PC) connected via a modem and a switched line to a public Data network (eg Internet) is connected to the phone numbers disables certain dial-in nodes or groups of dial-in nodes, where they are - between the data terminal device and the data transmission device (modem) is switched - the sent from the terminal to the modem and to the controller monitors the signals used by the terminal equipment, - on one Command to establish a connection is waiting - based on the information transmitted in this command Call number decides whether to allow dial-in, and - this one Command for establishing a connection does not transmit or the data transmission device invalidity signals if it contains a blocked phone number, in which a PROM is present in the telephone number groups of dial-in nodes, which are factory-set as locked, are stored, where all the international telephone numbers, as the factory-set telephone number groups, as well as telephone numbers, where the callee benefits pro rata from the fees, are fixed, and a non-volatile, reprogrammable Memory (eg EEPROM) is present, the - either fixed, - or exchangeable is (eg chip card), - the Contains operating mode, in which is determined whether the factory preset phone number groups be locked, or whether the verification of the phone number over user-configured Positive or / and negative lists should be made. Dial lock device according to claim 1, thereby in that they over Operating devices (buttons, possibly also display) has, over the - the monitoring function short term for a maximum of one election attempt except Function can be set - the operating mode and the Negative or positive lists for The dial lock is configured directly on the dial lock device can be. Dial-in blocking device according to claim 2, characterized that all or part of the controls on one Remote control are attached. Dial-in blocking device according to one of the claims 1 to 3, characterized in that for the configuration of the operating mode and the negative or positive lists for the dialing lock as well the reading of event logs a separate interface is present, which is mechanically designed so that they and the to be monitored Interface not connected to the data terminal at the same time could be, or is electrically locked, if the interface to be monitored in Operation is. Dial-in blocking device according to one of the claims 1 to 3, characterized, that the configuration of the Operating mode and the negative or positive lists for the dial lock by from the data terminal via sent the interface monitored by the dial lock device Commands can be done by being an inadvertent or by being manipulated Dial-in programs caused configuration change is prevented in the - assured is that the configuration mode only a short time after creating a Operating voltage can be entered to the dial lock device, or - in front entering the configuration mode, a PIN number or a password checked will, or - of the Configuration mode by pressing a mounted on the dial lock device control (eg button) is activated, or - the configuration mode a remote control is activated, and - The configuration data is transmitted in encrypted form. Dial-in blocking device according to one of the claims 1 to 5, characterized in that a device is present with which an audible or visual message is issued when a dial-in to the number of a blocked dialing node attempts has been. Dial-in blocking device according to one of the claims 1 to 6, characterized in that a feedback device available is with which the data terminal can be signaled that a dial-in to the number of a blocked dialing node attempts so that a program installed on the terminal equipment has a can issue a suitable message. Dial-in blocking device according to one of the claims 1 to 7, characterized in that it is controlled by the interface that monitors it, is energized. Dial-in blocking device according to one of the claims 1 to 8th, characterized, that she is in a modem - permanently installed is (eg in the form of an integrated circuit), or - in a at the modem existing recording can be plugged (eg in form a chip card). Dial-in blocking device according to one of the claims 1 to 9, characterized in that it is integrated in a modem cable is. Dial-in blocking device according to one of the claims 1 to 10 characterized, that - the dial lock device for one Data terminal device to which the modem is connected via the V.24 interface is to be used, and between modem and data terminal is switched, and - the for the connection request from the data terminal to the modem sent commands (usually AT command set, but also V.25) monitors, and - at Recognize a command to connect to a locked one Call the DTR control line and / or the TXD data line to Modem high impedance switches or on these lines the one inactive State assigned level (-5V ... -12V) signals to the modem to abort the connection establishment signal.