| 摘要 |
The present invention provides the advantages of confirming and detecting whether an unauthorized illegal AP is connected to a user's communication network even in a wireless environment of a secure mode and a router mode. To this end, disclosed is an illegal AP detection system comprising: a sensor for detecting a data packet wirelessly transmitted to a user terminal through at least one AP; and a wireless intrusion prevention system (WIPS) server for determining whether the AP is an unauthorized illegal AP connected to an internal network by receiving the detected data packet from the sensor, wherein the WIPS server comprises: a packet generation unit which generates a data packet of specific length that is to be transmitted to the user terminal through the AP so as to transmit the data packet a specific number of times for a predetermined time; a packet analysis unit for determining whether the AP is an AP connected to the internal network by analyzing the number of times at which the data packet of the specific length has been detected by the sensor for a predetermined time; and a database unit for storing MAC address information of the AP. |
