WO2012070814A2 - System for the 3d location tracking of a wi-fi user and method for same - Google Patents

System for the 3d location tracking of a wi-fi user and method for same Download PDF

Info

Publication number
WO2012070814A2
WO2012070814A2 PCT/KR2011/008871 KR2011008871W WO2012070814A2 WO 2012070814 A2 WO2012070814 A2 WO 2012070814A2 KR 2011008871 W KR2011008871 W KR 2011008871W WO 2012070814 A2 WO2012070814 A2 WO 2012070814A2
Authority
WO
WIPO (PCT)
Prior art keywords
unauthorized device
unit
location
floors
devices
Prior art date
Application number
PCT/KR2011/008871
Other languages
French (fr)
Korean (ko)
Other versions
WO2012070814A3 (en
Inventor
류동주
Original Assignee
주식회사 정보보호기술
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 정보보호기술 filed Critical 주식회사 정보보호기술
Priority to JP2013532738A priority Critical patent/JP2013543321A/en
Publication of WO2012070814A2 publication Critical patent/WO2012070814A2/en
Publication of WO2012070814A3 publication Critical patent/WO2012070814A3/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/02Services making use of location information
    • H04W4/029Location-based management or tracking services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud
    • H04W12/121Wireless intrusion detection systems [WIDS]; Wireless intrusion prevention systems [WIPS]
    • H04W12/122Counter-measures against attacks; Protection against rogue devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Definitions

  • the present invention relates to a 3D location tracking system and method for a Wi-Fi user, and more particularly, after verifying all detected devices on a wireless LAN, detecting unauthorized devices and determining the location of the unauthorized devices.
  • the present invention relates to a 3D location tracking system and method for a Wi-Fi user that can improve the quality of security services in a wireless network by providing and blocking the location information.
  • the present invention relates to a 3D location tracking system for a Wi-Fi user and a method thereof.
  • each individual can freely acquire or transmit the necessary information within the Internet environment, and share various information materials through the Internet even if each company is located at a long distance. Has become possible.
  • a wireless network does not have a physically fixed data transmission path, and thus a wireless network is less secure than a wired network.
  • wireless communication protocols support encryption of transmitted data packets.
  • WPA Wi-Fi Protected Access
  • WEP Wired Equivalent Privacy
  • the security method as described above only provides a passive response to an external attack, so a technology that enables a user to actively detect and block an attack intrusion is urgently required.
  • the present invention has been invented to solve the above problems, the present invention after detecting all the detected devices on the wireless LAN, detecting the unauthorized device and determine the location of the unauthorized device to provide the location information It is an object of the present invention to provide a 3D location tracking system for Wi-Fi users and a method thereof that can improve the quality of security services in a wireless network by enabling the blocking and blocking.
  • a 3D location tracking system of a Wi-Fi user includes: a search unit for searching for all devices communicating on a wireless LAN installed in a space separated into a plurality of three-dimensional floors; An unauthorized device determining unit detecting whether an unauthorized device is present among all devices searched by the searching unit; An unauthorized device location determining unit determining the location of the unauthorized device and the number of floors in which the unauthorized device is located among the plurality of floors when the unauthorized device determining unit detects the unauthorized device; An alarm unit for bringing a floor plan of the number of floors in which the unauthorized device is located and generating an alarm image by superimposing the location information of the unauthorized device on the floor plan; A device position determining unit determining a position of all devices searched by the search unit and a number of floors in which all the devices are located among the plurality of floors; And Device location history providing unit for providing the floor plan information to the administrator terminal after generating the floor plan information provided to be separated into a plurality of floors;
  • the central processing unit for notifying the detection result and the alarm image to the remote administrator terminal by wire or wireless further includes.
  • a storage unit for storing a plan view of a space separated into a plurality of layers in the 3D, applied AP list information, and detection results of the unauthorized device determination unit.
  • the unauthorized device determination unit it is preferable to detect the rogue AP by comparing the AP information of all devices retrieved by the search unit with the authorized AP list information stored in the storage unit.
  • a location tracking method of a 3D location tracking system of a Wi-Fi user includes a search unit for searching for all devices communicating on a WLAN installed in a space separated by a plurality of layers in three dimensions.
  • step step; (B) the unauthorized device determining unit detects whether there is an unauthorized device among all the devices searched by the step (A); (C) when the unauthorized device is detected by the step (B), the unauthorized device location determining unit determines the location of the unauthorized device and the number of floors in which the unauthorized device is located among the plurality of floors; (D) providing an alarm unit generating a warning image by bringing a floor plan of the number of floors in which the unauthorized device is located and superimposing the location information of the unauthorized device on the floor plan; (F) determining, by a device location determining unit, locations of all devices searched by the step (A) and the number of floors in which all the devices are located among the plurality of floors; And (G) providing the floor plan information to a manager terminal after generating floor plan information provided by the device location history providing unit separated into a plurality of three-dimensional layers for location tracking of each device. It features.
  • the step (E) of notifying the detection result and the alarm image to the remote administrator terminal by wire or wireless further includes.
  • the present invention detects the unauthorized device and determine the location of the unauthorized device to provide and block the location information in the wireless network by This has the advantage of improving the quality of security services.
  • the present invention has evolved in the state of simply checking the basics of the attack traffic, and the present invention detects the unauthorized device and determines the location of the unauthorized device, and primarily provides the location information of the unauthorized device, and secondly, the unauthorized device. By blocking the access of the wireless network security can be surely enhanced.
  • FIG. 1 is a block diagram showing the configuration of a 3D location tracking system for Wi-Fi users according to a preferred embodiment of the present invention.
  • FIG. 2 is a flowchart illustrating a 3D location tracking system of a Wi-Fi user operating according to a preferred embodiment of the present invention.
  • FIG. 1 is a block diagram showing the configuration of a 3D location tracking system of a Wi-Fi user according to a preferred embodiment of the present invention.
  • the 3D location tracking system 100 of a Wi-Fi user includes a search unit 110, an unauthorized device determination unit 120, an unauthorized device position determination unit 130, an alarm unit 140, and a central processing unit 150. , A storage unit 160, a device position determining unit 170, and a device position history providing unit 180.
  • the search unit 110 searches for all devices that communicate on a WLAN installed in a space separated into a plurality of layers in three dimensions. That is, the search unit 110 performs a search for all devices using a wireless LAN standard (eg, 802.11a, 802.11b, 802.11g, 802.11n, etc.).
  • a wireless LAN standard eg, 802.11a, 802.11b, 802.11g, 802.11n, etc.
  • the unauthorized device determiner 120 detects whether there is an unauthorized device among all devices searched by the searcher 110.
  • the unauthorized device determination unit 120 detects rogue APs by comparing AP information of all devices searched by the searcher 110 with authorized AP list information stored in the storage unit. .
  • the unauthorized device location determiner 130 determines the location of the unauthorized device when the unauthorized device determiner 120 detects the unauthorized device.
  • the position of the unlicensed device includes the number of floors in which the unlicensed device is located among the plurality of layers.
  • the alarm unit 140 has a plan view of the number of floors in which unauthorized devices are located among plan views of spaces divided into a plurality of layers of the corresponding 3D stored in the storage unit 160, and superimposes the location information of the unauthorized device on the plan view to display an alarm image. Create and provide.
  • the central processing unit 150 When the unauthorized device determination unit 130 detects the unauthorized device, the central processing unit 150 notifies the remote terminal of the detection result and the alarm image by wire or wirelessly. According to the present invention as described above, there is an advantage that can be quickly removed for an unauthorized device.
  • the central processing unit 150 detects an automatic threat for unauthorized access, blocks illegal traffic, and warns about this.
  • the storage unit 160 stores planar views for each space divided into a plurality of three-dimensional layers, applied AP list information, and detection results of the unauthorized device determination unit.
  • the storage unit 160 may be provided with various storage media such as an EPROM, a flash memory, and an external memory according to the capacity of data to be stored.
  • the device location determiner 170 determines the locations of all devices searched by the searcher 110.
  • the location of all devices includes the number of floors in which all devices among the plurality of floors are located.
  • the device location history providing unit 180 generates floor plan information provided by being separated into a plurality of layers in three dimensions for location tracking of each device, and provides the floor plan information to a manager terminal.
  • FIG. 2 is a flow chart showing the operation of the 3D location tracking system of the Wi-Fi user according to an embodiment of the present invention.
  • the search unit 110 searches for all devices communicating on a WLAN installed in a space separated into a plurality of layers of three dimensions (step S110).
  • the unauthorized device determination unit 120 detects whether there is an unauthorized device among all the devices searched by the step S110 (step S120). More specifically, the unauthorized device determination unit 120 compares AP information of all devices searched by the search unit 110 with authorized AP list information stored in the storage unit and detects rogue APs.
  • the unauthorized device position determination unit 130 determines the position of the unauthorized device (step S130).
  • the position of the unlicensed device means the number of floors in which the unlicensed device is located among the plurality of layers.
  • the alarm unit 140 brings a floor plan of the number of floors in which the unauthorized device is located, generates an alarm image by superimposing the location information of the unauthorized device on the floor plan (step S140). Then, the unlicensed device is finally removed (step S150).
  • step S120 if the unauthorized device is detected in step S120, it is preferable to notify the remote administrator terminal of the detection result and the alarm image by wire or wireless.
  • the device location determination unit 170 determines the locations of all devices retrieved by step S110, and the device location history providing unit 180 is provided separately separated into a plurality of layers of dimensions for location tracking for each device After generating the information, it is preferable to provide the Floor plan information to the administrator terminal.

Abstract

The present invention relates to a system for the 3D location tracking of a Wi-Fi user and to a method for same. More specifically, the system for the 3D location tracking of a Wi-Fi user includes: a searching unit for searching all devices communicating over a wireless LAN which is installed in a space separated in a three-dimensional plurality of floors; a unit for determining the presence of an unauthorized device, which detects the presence of an unauthorized device among all the devices searched by the searching unit; a unit for determining the position of the unauthorized device, which determines the position of the unauthorized device and the level thereof from among the three-dimensional plurality of floors when the unit for determining the presence of an unauthorized device detects the unauthorized device; an alarm unit for generating an alarm image by bringing the floor plan of the floor on which the unauthorized device is positioned, and overlapping the location information of the unauthorized device with the floor plan, and then providing the generated alarm image; a unit for determining the position of a device, which determines the positions of all of the devices searched by the searching unit and the floors on which all of the devices are positioned among the three-dimensional plurality of levels; and a unit for providing device position history, which provides floor plan information to an administrator terminal after generating the provided floor plan information which is separated into the three-dimensional plurality of floors so as to track the position of each of the devices.

Description

WI-FI 사용자의 3D 위치 추적 시스템 및 그 방법WI-FI user's 3D location tracking system and method
본 발명은 Wi -Fi 사용자의 3D 위치 추적 시스템 및 그 방법에 관한 것으로, 더욱 자세하게는 무선 랜 상의 감지된 모든 디바이스들에 대하여 검증을 수행한 뒤, 비인가 디바이스를 탐지하고 그 비인가 디바이스의 위치를 판단하여 그 위치정보를 제공하고 차단할 수 있도록 함으로써 무선 네트워크에서의 보안 서비스의 질을 향상시킬 수 있는 Wi -Fi 사용자의 3D 위치 추적 시스템 및 그 방법에 관한 것이다.The present invention relates to a 3D location tracking system and method for a Wi-Fi user, and more particularly, after verifying all detected devices on a wireless LAN, detecting unauthorized devices and determining the location of the unauthorized devices. The present invention relates to a 3D location tracking system and method for a Wi-Fi user that can improve the quality of security services in a wireless network by providing and blocking the location information.
본 발명은 Wi -Fi 사용자의 3D 위치 추적 시스템 및 그 방법에 관한 것이다.The present invention relates to a 3D location tracking system for a Wi-Fi user and a method thereof.
일반적으로, 인터넷 및 네트워크 관련 기술의 발달로 인하여 각 개인은 필요로 하는 정보를 인터넷 환경 내에서 자유롭게 취득하거나 전달할 수 있게 되었고, 각 기업체에서도 원거리 상에 위치되어 있다 하더라도 인터넷을 통해 각종 정보 자료의 공유가 가능하게 되었다.In general, due to the development of Internet and network related technologies, each individual can freely acquire or transmit the necessary information within the Internet environment, and share various information materials through the Internet even if each company is located at a long distance. Has become possible.
이러한 통신 및 네트워크 기술의 발달에 따라 최근의 네트워크 환경은 동축 케이블 또는 광 케이블과 같은 유선 매체를 이용하는 유선 네트워크 환경으로부터 다양한 주파수 대역의 무선 신호를 이용하는 무선 네트워크 환경으로 변해가고 있다.With the development of such communication and network technology, the recent network environment is changing from a wired network environment using a wired medium such as a coaxial cable or an optical cable to a wireless network environment using wireless signals of various frequency bands.
무선 네트워크는 유선 네트워크와 달리 데이터 전송 경로가 물리적으로 고정되어 있지 않으므로, 무선 네트워크는 유선 네트워크에 비하여 통신의 보안성이 취약하다. Unlike a wired network, a wireless network does not have a physically fixed data transmission path, and thus a wireless network is less secure than a wired network.
한편, 악의적인 사용자들에 의해서 무선 네트워크의 공격 기법은 다양해지고 있으며, 해킹 기법의 발달로 자동화, 지능화된 해킹 툴이 공개적으로 유포되어 국내외 해킹 발생 빈도는 급격히 증가하고 있는 추세이다.On the other hand, attack techniques of wireless networks have been diversified by malicious users, and the development of hacking techniques has led to the spread of automated and intelligent hacking tools openly and the frequency of hacking at home and abroad is increasing rapidly.
특히, 네트워크의 취약점이 지속적으로 증가하고 있으며 웜 바이러스와 같은 치명적인 공격에 의해 네트워크 서비스를 마비시킬 수 있는 서비스 거부(DDoS) 공격이 급증하고 있는 가운데 무선 네트워크 보안을 강화하기 위한 방법이 필요한 실정이다.In particular, as network vulnerabilities continue to increase and denial-of-service (DDoS) attacks that can paralyze network services due to deadly attacks such as worm viruses, there is a need for a method for strengthening wireless network security.
이에, 무선 네트워크 보안을 강화하기 위하여, 무선 통신 프로토콜은 전송되는 데이터 패킷에 대한 암호화를 지원한다. 이러한 예로써 무선랜에서 사용되는 WPA(Wi-Fi Protected Access) 방식이나 WEP(Wired Equivalent Privacy) 방식 등이 있다.Thus, to enhance wireless network security, wireless communication protocols support encryption of transmitted data packets. For example, there is a Wi-Fi Protected Access (WPA) method or a Wired Equivalent Privacy (WEP) method used in a WLAN.
그러나, 상기와 바와 같은 보안방법은 외부 공격에 대해 수동적 대응만을 제공하고 있으므로 사용자가 능동적으로 공격침입을 탐지하고 차단할 수 있는 기술이 절실히 요구되고 있는 실정이다.However, the security method as described above only provides a passive response to an external attack, so a technology that enables a user to actively detect and block an attack intrusion is urgently required.
본 발명은 상기 문제점을 해결하기 위하여 발명된 것으로, 본 발명은 무선 랜 상의 감지된 모든 디바이스들에 대하여 검증을 수행한 뒤, 비인가 디바이스를 탐지하고 그 비인가 디바이스의 위치를 판단하여 그 위치정보를 제공하고 차단할 수 있도록 함으로써 무선 네트워크에서의 보안 서비스의 질을 향상시킬 수 있는 Wi -Fi 사용자의 3D 위치 추적 시스템 및 그 방법을 제공하는 것을 목적으로 한다.The present invention has been invented to solve the above problems, the present invention after detecting all the detected devices on the wireless LAN, detecting the unauthorized device and determine the location of the unauthorized device to provide the location information It is an object of the present invention to provide a 3D location tracking system for Wi-Fi users and a method thereof that can improve the quality of security services in a wireless network by enabling the blocking and blocking.
상기의 목적을 달성하기 위하여 본 발명에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템은, 3차원의 다수의 층으로 분리된 공간에 설치된 무선 랜 상에서 통신하는 모든 디바이스를 검색하는 검색부; 상기 검색부에 의해 검색된 모든 디바이스들 중에 비인가 디바이스가 있는지 탐지하는 비인가 디바이스 판단부; 상기 비인가 디바이스 판단부가 비인가 디바이스를 탐지한 경우, 그 비인가 디바이스의 위치, 그리고 상기 다수의 층 중 상기 비인가 디바이스가 위치한 층수를 판단하는 비인가 디바이스 위치 판단부; 상기 비인가 디바이스가 위치한 층수의 평면도를 가지고 와서 그 평면도 위에 비인가 디바이스의 위치정보를 중첩시켜 경보 영상을 생성한 뒤 제공하는 경보부; 상기 검색부에 의해 검색된 모든 디바이스들의 위치, 그리고 상기 다수의 층 중 상기 모든 디바이스가 위치한 층수를 판단하는 디바이스 위치 판단부; 및 상기 디바이스별 위치 추적을 위한 상기 3차원의 다수의 층으로 분리되어 제공되는 Floor plan 정보를 생성한 뒤, 관리자 단말기에 상기 Floor plan 정보를 제공하는 디바이스 위치이력 제공부; 를 포함하는 것을 특징으로 한다. In order to achieve the above object, a 3D location tracking system of a Wi-Fi user according to the present invention includes: a search unit for searching for all devices communicating on a wireless LAN installed in a space separated into a plurality of three-dimensional floors; An unauthorized device determining unit detecting whether an unauthorized device is present among all devices searched by the searching unit; An unauthorized device location determining unit determining the location of the unauthorized device and the number of floors in which the unauthorized device is located among the plurality of floors when the unauthorized device determining unit detects the unauthorized device; An alarm unit for bringing a floor plan of the number of floors in which the unauthorized device is located and generating an alarm image by superimposing the location information of the unauthorized device on the floor plan; A device position determining unit determining a position of all devices searched by the search unit and a number of floors in which all the devices are located among the plurality of floors; And Device location history providing unit for providing the floor plan information to the administrator terminal after generating the floor plan information provided to be separated into a plurality of layers of the three-dimensional for tracking the location of each device; Characterized in that it comprises a.
또한, 상기 비인가 디바이스 판단부가 비인가 디바이스를 탐지한 경우, 그 탐지결과 및 상기 경보 영상을 원격지의 관리자 단말기에 유선 또는 무선으로 알리는 중앙처리부;를 더 포함한다.In addition, when the unauthorized device determination unit detects the unauthorized device, the central processing unit for notifying the detection result and the alarm image to the remote administrator terminal by wire or wireless; further includes.
그리고 상기 3차원의 다수의 층으로 분리된 공간의 평면도, 인가된 AP 리스트 정보 및 상기 비인가 디바이스 판단부의 탐지결과가 저장되는 저장부;를 더 포함한다.And a storage unit for storing a plan view of a space separated into a plurality of layers in the 3D, applied AP list information, and detection results of the unauthorized device determination unit.
한편, 상기 비인가 디바이스 판단부는, 상기 검색부에 의해 검색된 모든 디바이스의 AP 정보와 상기 저장부에 저장된 인가된 AP 리스트 정보를 비교하여 불법 AP(Rouge AP)를 탐지하는 것이 바람직하다.On the other hand, the unauthorized device determination unit, it is preferable to detect the rogue AP by comparing the AP information of all devices retrieved by the search unit with the authorized AP list information stored in the storage unit.
상기의 목적을 달성하기 위하여 본 발명에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템의 위치 추적 방법은, 검색부가 3차원의 다수의 층으로 분리된 공간에 설치된 무선 랜 상에서 통신하는 모든 디바이스를 검색하는 (A)단계; 비인가 디바이스 판단부가 상기 (A)단계에 의해 검색된 모든 디바이스들 중에 비인가 디바이스가 있는지 탐지하는 (B)단계; 상기 (B)단계에 의해 비인가 디바이스가 탐지된 경우, 비인가 디바이스 위치 판단부가 그 비인가 디바이스의 위치, 그리고 상기 다수의 층 중 상기 비인가 디바이스가 위치한 층수를 판단하는 (C)단계; 경보부가 상기 비인가 디바이스가 위치한 층수의 평면도를 가지고 와서 그 평면도 위에 비인가 디바이스의 위치정보를 중첩시켜 경보 영상을 생성한 뒤 제공하는 (D)단계; 디바이스 위치 판단부가 상기 (A)단계에 의해 검색된 모든 디바이스들의 위치, 그리고 상기 다수의 층 중 상기 모든 디바이스가 위치한 층수를 판단하는 (F)단계; 및 디바이스 위치이력 제공부가 디바이스별 위치 추적을 위한 3차원의 다수의 층으로 분리되어 제공되는 Floor plan 정보를 생성한 뒤, 관리자 단말기에 상기 Floor plan 정보를 제공하는 (G)단계;를 포함하는 것을 특징으로 한다.In order to achieve the above object, a location tracking method of a 3D location tracking system of a Wi-Fi user according to the present invention includes a search unit for searching for all devices communicating on a WLAN installed in a space separated by a plurality of layers in three dimensions. (A) step; (B) the unauthorized device determining unit detects whether there is an unauthorized device among all the devices searched by the step (A); (C) when the unauthorized device is detected by the step (B), the unauthorized device location determining unit determines the location of the unauthorized device and the number of floors in which the unauthorized device is located among the plurality of floors; (D) providing an alarm unit generating a warning image by bringing a floor plan of the number of floors in which the unauthorized device is located and superimposing the location information of the unauthorized device on the floor plan; (F) determining, by a device location determining unit, locations of all devices searched by the step (A) and the number of floors in which all the devices are located among the plurality of floors; And (G) providing the floor plan information to a manager terminal after generating floor plan information provided by the device location history providing unit separated into a plurality of three-dimensional layers for location tracking of each device. It features.
또한, 상기 (B)단계에 의해 비인가 디바이스가 탐지된 경우, 그 탐지결과 및 상기 경보 영상을 원격지의 관리자 단말기에 유선 또는 무선으로 알리는 (E)단계;를 더 포함한다. In addition, when the unauthorized device is detected by the step (B), the step (E) of notifying the detection result and the alarm image to the remote administrator terminal by wire or wireless; further includes.
본 발명에 따르면, 본 발명은 무선 랜 상의 감지된 모든 디바이스들에 대하여 검증을 수행한 뒤, 비인가 디바이스를 탐지하고 그 비인가 디바이스의 위치를 판단하여 그 위치정보를 제공하고 차단할 수 있도록 함으로써 무선 네트워크에서의 보안 서비스의 질을 향상시킬 수 있는 장점이 있다.According to the present invention, after the verification of all the detected devices on the wireless LAN, the present invention detects the unauthorized device and determine the location of the unauthorized device to provide and block the location information in the wireless network by This has the advantage of improving the quality of security services.
또한, 종래의 단순히 공격 트래픽의 기본적인 사항만을 체크하던 상태에서 발전하여 본 발명에서는 비인가 디바이스를 탐지하고 그 비인가 디바이스의 위치를 판단하며, 일차적으로 그 비인가 디바이스의 위치정보를 제공하며 이차적으로 해당 비인가 디바이스의 접속을 차단함으로써 확실하게 무선 네트워크 보안을 강화할 수 있는 장점이 있다.In addition, the present invention has evolved in the state of simply checking the basics of the attack traffic, and the present invention detects the unauthorized device and determines the location of the unauthorized device, and primarily provides the location information of the unauthorized device, and secondly, the unauthorized device. By blocking the access of the wireless network security can be surely enhanced.
도 1은 본 발명의 바람직한 실시예에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템의 구성을 도시한 블럭도.1 is a block diagram showing the configuration of a 3D location tracking system for Wi-Fi users according to a preferred embodiment of the present invention.
도 2는 본 발명의 바람직한 실시예에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템이 동작하는 모습을 도시한 순서도.FIG. 2 is a flowchart illustrating a 3D location tracking system of a Wi-Fi user operating according to a preferred embodiment of the present invention. FIG.
[부호의 설명][Description of the code]
100 : Wi -Fi 사용자의 3D 위치 추적 시스템 100: 3D location tracking system for Wi-Fi users
110 : 검색부 110: search unit
120 : 비인가 디바이스 판단부 120: unauthorized device determination unit
130 : 비인가 디바이스 위치 판단부130: unauthorized device position determination unit
140 : 경보부140: alarm unit
150 : 중앙처리부 150: central processing unit
160 : 저장부160: storage unit
170 : 디바이스 위치 판단부 170: device position determination unit
180 : 디바이스 위치이력 제공부180: device position history providing unit
이하에서는 상기한 바와 같은 본 발명에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템의 바람직한 실시예를 첨부된 도면을 참고로 하여 상세하게 설명한다.Hereinafter, a preferred embodiment of a 3D location tracking system of a Wi-Fi user according to the present invention as described above will be described in detail with reference to the accompanying drawings.
도 1에는 본 발명의 바람직한 실시예에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템의 구성을 도시한 블럭도가 도시되어 있다.1 is a block diagram showing the configuration of a 3D location tracking system of a Wi-Fi user according to a preferred embodiment of the present invention.
본 발명에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템(100)은 검색부(110), 비인가 디바이스 판단부(120), 비인가 디바이스 위치 판단부(130), 경보부(140), 중앙처리부(150), 저장부(160), 디바이스 위치 판단부(170) 및 디바이스 위치이력 제공부(180)를 포함한다.The 3D location tracking system 100 of a Wi-Fi user according to the present invention includes a search unit 110, an unauthorized device determination unit 120, an unauthorized device position determination unit 130, an alarm unit 140, and a central processing unit 150. , A storage unit 160, a device position determining unit 170, and a device position history providing unit 180.
검색부(110)는 3차원의 다수의 층으로 분리된 공간에 설치된 무선 랜 상에서 통신하는 모든 디바이스를 검색한다. 즉, 검색부(110)는 무선랜 표준(예컨대, 802.11a, 802.11b, 802.11g, 802.11n 등)을 사용하는 모든 디바이스에 대한 검색을 수행하는 것이다.The search unit 110 searches for all devices that communicate on a WLAN installed in a space separated into a plurality of layers in three dimensions. That is, the search unit 110 performs a search for all devices using a wireless LAN standard (eg, 802.11a, 802.11b, 802.11g, 802.11n, etc.).
비인가 디바이스 판단부(120)는 검색부(110)에 의해 검색된 모든 디바이스들 중에 비인가 디바이스가 있는지 탐지한다.The unauthorized device determiner 120 detects whether there is an unauthorized device among all devices searched by the searcher 110.
좀 더 구체적으로, 비인가 디바이스 판단부(120)는 검색부(110)에 의해 검색된 모든 디바이스의 AP 정보와 상기 저장부에 저장된 인가된 AP 리스트 정보를 비교하여 불법 AP(Rouge AP)를 탐지하는 것이다.More specifically, the unauthorized device determination unit 120 detects rogue APs by comparing AP information of all devices searched by the searcher 110 with authorized AP list information stored in the storage unit. .
비인가 디바이스 위치 판단부(130)는 비인가 디바이스 판단부(120)가 비인가 디바이스를 탐지한 경우, 그 비인가 디바이스의 위치를 판단한다. 여기서, 비인가 디바이스의 위치는, 상기 다수의 층 중 비인가 디바이스가 위치한 층수를 포함한다. The unauthorized device location determiner 130 determines the location of the unauthorized device when the unauthorized device determiner 120 detects the unauthorized device. Here, the position of the unlicensed device includes the number of floors in which the unlicensed device is located among the plurality of layers.
경보부(140)는 저장부(160)에 저장된 해당 3차원의 다수의 층으로 분리된 공간의 평면도 중 비인가 디바이스가 위치한 층수의 평면도를 가지고 와서 그 평면도 위에 비인가 디바이스의 위치정보를 중첩시켜 경보 영상을 생성한 뒤 제공한다. The alarm unit 140 has a plan view of the number of floors in which unauthorized devices are located among plan views of spaces divided into a plurality of layers of the corresponding 3D stored in the storage unit 160, and superimposes the location information of the unauthorized device on the plan view to display an alarm image. Create and provide.
중앙처리부(150)는 비인가 디바이스 판단부(130)가 비인가 디바이스를 탐지한 경우, 그 탐지결과 및 상기 경보 영상을 원격지의 관리자 단말기에 유선 또는 무선으로 알린다. 상술한 바와 같은 본 발명에 따르면, 비인가 디바이스에 대한 신속한 제거가 가능한 장점이 있다.When the unauthorized device determination unit 130 detects the unauthorized device, the central processing unit 150 notifies the remote terminal of the detection result and the alarm image by wire or wirelessly. According to the present invention as described above, there is an advantage that can be quickly removed for an unauthorized device.
또한, 중앙처리부(150)는 비인가 접속에 대한 자동 위협을 탐지하고, 불법 트래픽을 차단하고, 이에 대한 경고를 수행한다.In addition, the central processing unit 150 detects an automatic threat for unauthorized access, blocks illegal traffic, and warns about this.
저장부(160)에는 3차원 다수의 층으로 분리된 공간별 평면도, 인가된 AP 리스트 정보 및 상기 비인가 디바이스 판단부의 탐지결과가 저장된다. 상기 저장부(160)에는 저장되는 데이터의 용량에 따라, 이이피롬(EPROM), 플래쉬메모리, 외장형메모리와 같은 다양한 저장매체가 제공될 수 있다.The storage unit 160 stores planar views for each space divided into a plurality of three-dimensional layers, applied AP list information, and detection results of the unauthorized device determination unit. The storage unit 160 may be provided with various storage media such as an EPROM, a flash memory, and an external memory according to the capacity of data to be stored.
디바이스 위치 판단부(170)는 검색부(110)에 의해 검색된 모든 디바이스들의 위치를 판단한다. 여기서, 모든 디바이스들의 위치는, 상기 다수의 층 중 모든 디바이스가 위치한 층수를 포함한다. The device location determiner 170 determines the locations of all devices searched by the searcher 110. Here, the location of all devices includes the number of floors in which all devices among the plurality of floors are located.
디바이스 위치이력 제공부(180)는 디바이스별 위치 추적을 위한 3차원의 다수의 층으로 분리되어 제공되는 Floor plan 정보를 생성한 뒤, 관리자 단말기에 상기 Floor plan 정보를 제공한다.The device location history providing unit 180 generates floor plan information provided by being separated into a plurality of layers in three dimensions for location tracking of each device, and provides the floor plan information to a manager terminal.
이하에서는 상기한 바와 같은 본 발명에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템의 동작과정을 첨부된 도면을 참고로 하여 상세하게 설명하기로 한다.Hereinafter, the operation of the 3D location tracking system of the Wi-Fi user according to the present invention as described above will be described in detail with reference to the accompanying drawings.
도 2에는 본 발명의 바람직한 실시예에 의한 Wi -Fi 사용자의 3D 위치 추적 시스템이 동작하는 모습을 도시한 순서도가 도시되어 있다.2 is a flow chart showing the operation of the 3D location tracking system of the Wi-Fi user according to an embodiment of the present invention.
우선, 검색부(110)가 3차원의 다수의 층으로 분리된 공간에 설치된 무선 랜 상에서 통신하는 모든 디바이스를 검색한다(단계 S110).First, the search unit 110 searches for all devices communicating on a WLAN installed in a space separated into a plurality of layers of three dimensions (step S110).
그리고 비인가 디바이스 판단부(120)가 단계 S110에 의해 검색된 모든 디바이스들 중에 비인가 디바이스가 있는지 탐지한다(단계 S120). 좀 더 구체적으로 비인가 디바이스 판단부(120)는 검색부(110)에 의해 검색된 모든 디바이스의 AP 정보와 상기 저장부에 저장된 인가된 AP 리스트 정보를 비교하여 불법 AP(Rouge AP)를 탐지하는 것이다.The unauthorized device determination unit 120 detects whether there is an unauthorized device among all the devices searched by the step S110 (step S120). More specifically, the unauthorized device determination unit 120 compares AP information of all devices searched by the search unit 110 with authorized AP list information stored in the storage unit and detects rogue APs.
이후, 단계 S120에 의해 비인가 디바이스가 탐지된 경우, 비인가 디바이스 위치 판단부(130)가 그 비인가 디바이스의 위치를 판단한다(단계 S130). 여기서, 비인가 디바이스의 위치는 상기 다수의 층 중 상기 비인가 디바이스가 위치한 층수를 의미한다.Thereafter, when the unauthorized device is detected in step S120, the unauthorized device position determination unit 130 determines the position of the unauthorized device (step S130). Here, the position of the unlicensed device means the number of floors in which the unlicensed device is located among the plurality of layers.
그리고 경보부(140)가 상기 비인가 디바이스가 위치한 층수의 평면도를 가지고 와서 그 평면도 위에 비인가 디바이스의 위치정보를 중첩시켜 경보 영상을 생성한 뒤 제공한다(단계 S140). 그리고 나서 최종적으로 그 비인가 디바이스를 제거한다(단계 S150).Then, the alarm unit 140 brings a floor plan of the number of floors in which the unauthorized device is located, generates an alarm image by superimposing the location information of the unauthorized device on the floor plan (step S140). Then, the unlicensed device is finally removed (step S150).
한편, 단계 S120에 의해 비인가 디바이스가 탐지된 경우, 그 탐지결과 및 상기 경보 영상을 원격지의 관리자 단말기에 유선 또는 무선으로 알리는 것이 바람직하다.On the other hand, if the unauthorized device is detected in step S120, it is preferable to notify the remote administrator terminal of the detection result and the alarm image by wire or wireless.
또한, 디바이스 위치 판단부(170)가 단계 S110에 의해 검색된 모든 디바이스들의 위치를 판단하고, 디바이스 위치이력 제공부(180)가 디바이스별 위치 추적을 위한 차원의 다수의 층으로 분리되어 제공되는 Floor plan 정보를 생성한 뒤, 관리자 단말기에 상기 Floor plan 정보를 제공하는 것이 바람직하다.In addition, the device location determination unit 170 determines the locations of all devices retrieved by step S110, and the device location history providing unit 180 is provided separately separated into a plurality of layers of dimensions for location tracking for each device After generating the information, it is preferable to provide the Floor plan information to the administrator terminal.
이상에서는 본 발명을 특정의 바람직한 실시예에 대해서 도시하고 설명하였다. 그러나 본 발명은 상술한 실시예에만 국한되는 것은 아니며, 본 발명이 속하는 기술분야에서 통상의 지식을 가진 자라면 본 발명의 기술적 사상을 벗어남이 없이 얼마든지 다양하게 변경 실시할 수 있을 것이다. 따라서 본 발명의 권리범위는 특정 실시예에 한정되는 것이 아니라, 첨부된 특허청구범위에 의해 정해지는 것으로 해석되어야 할 것이다.In the above, the present invention has been shown and described with respect to certain preferred embodiments. However, the present invention is not limited only to the above-described embodiment, and those skilled in the art to which the present invention pertains can make various changes without departing from the technical spirit of the present invention. Therefore, the scope of the present invention should not be limited to the specific embodiments, but should be construed as defined by the appended claims.

Claims (2)

  1. 3차원의 다수의 층으로 분리된 공간에 설치된 무선 랜 상에서 통신하는 모든 디바이스를 검색하는 검색부;A search unit for searching for all devices communicating on a wireless LAN installed in a space separated into a plurality of three-dimensional floors;
    상기 검색부에 의해 검색된 모든 디바이스들의 위치 및 상기 다수의 층 중 상기 모든 디바이스가 위치한 층수를 판단하는 디바이스 위치 판단부;A device location determining unit determining a location of all devices searched by the search unit and a number of floors in which all devices are located among the plurality of floors;
    상기 디바이스별 위치 추적을 위해 상기 3차원의 다수의 층으로 분리된 공간에 대해 각각의 Floor plan 정보를 생성하고, 생성된 Floor plan 정보를 관리자 단말기에 제공하는 디바이스 위치 이력 제공부;Device location history providing unit for generating each floor plan information for the space separated into a plurality of floors of the three-dimensional for location tracking for each device, and provides the generated floor plan information to the administrator terminal;
    상기 검색부에 의해 검색된 모든 디바이스들 중 비인가 디바이스가 있는지 탐지하는 비인가 디바이스 판단부;An unauthorized device determining unit detecting whether an unauthorized device is present among all devices searched by the searching unit;
    상기 비인가 디바이스 판단부가 비인가 디바이스를 탐지한 경우, 탐지한 비인가 디바이스의 위치 및 상기 다수의 층 중 상기 비인가 디바이스가 위치한 층수를 판단하는 비인가 디바이스 위치 판단부;An unauthorized device location determining unit determining the location of the detected unauthorized device and the number of floors in which the unauthorized device is located among the plurality of floors when the unauthorized device determining unit detects the unauthorized device;
    상기 비인가 디바이스 위치 판단부에서 판단된 비인가 디바이스의 위치정보를 상기 디바이스 위치 이력 제공부에서 제공하는 Floor plan 정보에 중첩시켜 경보 영상을 생성하고, 생성된 경보 영상을 출력시키는 경고부;A warning unit generating an alarm image by superimposing the location information of the unauthorized device determined by the unauthorized device location determining unit on the floor plan information provided by the device location history providing unit, and outputting the generated alarm image;
    상기 비인가 디바이스 위치 판단부에서 판단된 결과 및 상기 경고부에서 생성된 경보 영상을 원격지의 관리자 단말기에 무선 또는 유선으로 전송하는 중앙처리부; 및A central processing unit which transmits the result determined by the unauthorized device position determining unit and the alarm image generated by the warning unit to a manager terminal at a remote location by wireless or wired; And
    상기 3차원의 다수의 층으로 분리된 공간에 대한 Floor plan 정보, 인가된 디바이스에 대한 리스트 정보 및 상기 비인가 디바이스 판단부의 탐지결과가 저장되는 저장부; 를 포함하고,A storage unit for storing floor plan information, a list information on an authorized device, and a detection result of the unauthorized device determination unit of a space separated into a plurality of layers in the 3D; Including,
    상기 비인가 디바이스 판단부는 상기 검색부에 의해 검색된 모든 디바이스의 정보와 상기 저장부에 저장된 인가된 디바이스에 대한 정보를 비교하여 비인가 디바이스를 탐지하는 것을 특징으로 하는 Wi-Fi 사용자의 3D 위치 추적 시스템.The unauthorized device determination unit detects the unauthorized device by comparing the information of all the devices retrieved by the search unit with the information on the authorized device stored in the storage unit 3D location tracking system of the Wi-Fi user.
  2. 3차원의 다수의 층으로 분리된 공간에 설치된 무선 랜 상에서 통신하는 모든 디바이스를 검색하는 (A)단계;Searching for all devices communicating on a wireless LAN installed in a space separated into a plurality of floors in three dimensions;
    상기 3차원의 다수의 층으로 분리된 공간에 대한 각각의 Floor plan 정보를 생성하는 (B)단계;(B) generating each floor plan information for the space separated into a plurality of layers of the 3D;
    상기 (A)단계에 의해 검색된 모든 디바이스들의 위치 및 상기 다수의 층 중 상기 모든 디바이스가 위치한 층수를 판단하는 (C)단계;(C) determining the location of all devices searched by step (A) and the number of floors in which all devices are located among the plurality of floors;
    상기 (A)단계에서 검색된 모든 디바이스들 중 비인가 디바이스가 있는지 탐지하는 (D)단계;(D) detecting whether there is an unauthorized device among all the devices found in the step (A);
    상기 (D)단계에서 비인가 디바이스가 탐지된 경우, 탐지된 비인가 디바이스의 위치 및 상기 다수의 층 중 상기 비인가 디바이스가 위치한 층수를 판단하는 (E)단계;(E) determining the location of the detected unauthorized device and the number of floors in which the unauthorized device is located among the plurality of floors when the unauthorized device is detected in the step (D);
    상기 (E)단계에서 판단된 비인가 디바이스의 위치정보를 상기 (B)단계에서 생성된 Floor plan 정보에 중첩시켜 경보 영상을 생성하여 출력하는 (F)단계; 및(F) generating and outputting an alarm image by superimposing the location information of the unlicensed device determined in the step (E) on the floor plan information generated in the step (B); And
    상기 (E)단계에서 판단된 결과 및 상기 (F)단계에서 생성된 경보 영상을 원격지의 관리자 단말기에 무선 또는 유선으로 전송하는 (G)단계; 를 포함하는 것을 특징으로 하는 Wi-Fi 사용자의 3D 위치 추적 방법.(G) transmitting the result determined in the step (E) and the alarm image generated in the step (F) by wireless or wired to a remote administrator terminal; 3D location tracking method of a Wi-Fi user comprising a.
PCT/KR2011/008871 2010-11-22 2011-11-21 System for the 3d location tracking of a wi-fi user and method for same WO2012070814A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2013532738A JP2013543321A (en) 2010-11-22 2011-11-21 Wi-Fi user 3D location tracking system and method

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2010-0116103 2010-11-22
KR1020100116103A KR101070615B1 (en) 2010-11-22 2010-11-22 System and method to detecting wi- fi user's 3d location

Publications (2)

Publication Number Publication Date
WO2012070814A2 true WO2012070814A2 (en) 2012-05-31
WO2012070814A3 WO2012070814A3 (en) 2012-09-27

Family

ID=45032386

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2011/008871 WO2012070814A2 (en) 2010-11-22 2011-11-21 System for the 3d location tracking of a wi-fi user and method for same

Country Status (3)

Country Link
JP (1) JP2013543321A (en)
KR (1) KR101070615B1 (en)
WO (1) WO2012070814A2 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20060009795A (en) * 2004-07-26 2006-02-01 삼성전자주식회사 Method for location based service in coordinator-based wireless network
KR20090039154A (en) * 2007-10-17 2009-04-22 주식회사 케이티프리텔 System and method for controlling unauthorized traffic in mobile communication network
KR20090049870A (en) * 2007-11-14 2009-05-19 엘지전자 주식회사 Method for connecting with wireless local area network and mobile terminal thereof
KR20100067419A (en) * 2008-12-11 2010-06-21 엘지전자 주식회사 Mobile terminal and method of setting web access route using same

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3792154B2 (en) * 2001-12-26 2006-07-05 インターナショナル・ビジネス・マシーンズ・コーポレーション Network security system, computer apparatus, access point recognition processing method, access point check method, program, and storage medium
US7295119B2 (en) * 2003-01-22 2007-11-13 Wireless Valley Communications, Inc. System and method for indicating the presence or physical location of persons or devices in a site specific representation of a physical environment
JP4525417B2 (en) * 2005-03-29 2010-08-18 サクサ株式会社 Unauthorized access detection method and apparatus
JP4697278B2 (en) * 2008-08-26 2011-06-08 沖電気工業株式会社 Access point device detection method and control method, access point detection device, access point device, and wireless LAN system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20060009795A (en) * 2004-07-26 2006-02-01 삼성전자주식회사 Method for location based service in coordinator-based wireless network
KR20090039154A (en) * 2007-10-17 2009-04-22 주식회사 케이티프리텔 System and method for controlling unauthorized traffic in mobile communication network
KR20090049870A (en) * 2007-11-14 2009-05-19 엘지전자 주식회사 Method for connecting with wireless local area network and mobile terminal thereof
KR20100067419A (en) * 2008-12-11 2010-06-21 엘지전자 주식회사 Mobile terminal and method of setting web access route using same

Also Published As

Publication number Publication date
JP2013543321A (en) 2013-11-28
WO2012070814A3 (en) 2012-09-27
KR101070615B1 (en) 2011-10-07

Similar Documents

Publication Publication Date Title
KR101429177B1 (en) System for detecting unauthorized AP and method for detecting thereof
US7970894B1 (en) Method and system for monitoring of wireless devices in local area computer networks
KR102157661B1 (en) Wireless intrusion prevention system, wireless network system, and operating method for wireless network system
US9439131B2 (en) Detecting and disabling rogue access points in a network
US20140130155A1 (en) Method for tracking out attack device driving soft rogue access point and apparatus performing the method
AU2005203581A1 (en) An automated sniffer apparatus and method for wireless local area network security
CN104580152A (en) Protection method and system against wifi (wireless fidelity) phishing
CN104852894A (en) Wireless message monitor detecting method, system and central control server
US10171421B2 (en) Intrusion prevention and detection in a wireless network
KR102323712B1 (en) Wips sensor and method for preventing an intrusion of an illegal wireless terminal using wips sensor
Boob et al. Wireless intrusion detection system
US20150138013A1 (en) Apparatus and method for positioning wlan terminal
CN106878992B (en) Wireless network security detection method and system
WO2014094489A1 (en) Preventing clients from accessing a rogue access point
KR102359801B1 (en) Wireless intrusion prevention system and operating method thereof
KR101447469B1 (en) System and method of wireless intrusion prevention and wireless service
WO2012070814A2 (en) System for the 3d location tracking of a wi-fi user and method for same
US9100429B2 (en) Apparatus for analyzing vulnerability of wireless local area network
CN106851646A (en) A kind of wifi accesses safety detection method and device, wifi access systems
WO2013100433A1 (en) Method for operating wireless intrusion detection system of wired and wireless integration system
KR101553827B1 (en) System for detecting and blocking illegal access point
KR101335293B1 (en) System for blocking internal network intrusion and method the same
Komanduri et al. Experimental assessment of wireless lans against rogue access points
US20160100315A1 (en) Detecting and disabling rogue access points in a network
KR101575341B1 (en) Sensor for wireless intrusion prevention system and its channel monitoring method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11842667

Country of ref document: EP

Kind code of ref document: A2

ENP Entry into the national phase

Ref document number: 2013532738

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11842667

Country of ref document: EP

Kind code of ref document: A2