User-Level Packet Filter for the IP Address Abuse/Counterfeit Problem in Wireless/Wired Networks

It is used to identify users´ connections by using the source IP addresses in the traffic log inside a firewall. In the case with pre-assigned IP addresses, the mapping relationship between IP addresses and users is fixed. However, an IP address can be counterfeited or abused. Therefore, an evil user can do any wicked network behavior with others´ IP addresses when they get off work or take off. Users who originally own the source IP addresses become victims. In case with dynamically assigned IP addresses, it is more difficult for network managers to identify the user of a connection. In a wireless environment, although some authentication mechanisms may be applied, they are, however, used just to control the wireless access right, instead of to authorize the network behavior of a user. It is much more difficult for network managers to identify the user of a connection. In this paper, a user-level packet filter for wireless/wired networks is proposed. Any user must be authorized and register with the user´s current IP address such that the user can use the Internet service. The proposed user-level packet filter solves IP address counterfeit problem. Little overhead is added but without degrading the performance too much.