Invention Application
- Patent Title: APPARATUS AND METHODS FOR PROTECTING NETWORK RESOURCES
- Patent Title (中): 用于保护网络资源的装置和方法
-
Application No.: US12577684Application Date: 2009-10-12
-
Publication No.: US20110087882A1Publication Date: 2011-04-14
- Inventor: Ted T. Kuo , Li-Jen Wang , Bo-chieh Yang , Simon E. M. Barber , Diana K. Smetters , Jeffrey D. Abramowitz , Andrea Peiro
- Applicant: Ted T. Kuo , Li-Jen Wang , Bo-chieh Yang , Simon E. M. Barber , Diana K. Smetters , Jeffrey D. Abramowitz , Andrea Peiro
- Applicant Address: US CA Palo Alto
- Assignee: Palo Alto Research Center Incorporated
- Current Assignee: Palo Alto Research Center Incorporated
- Current Assignee Address: US CA Palo Alto
- Main IPC: H04L9/32
- IPC: H04L9/32
Abstract:
Apparatus and methods are provided for protecting network resources, particularly in association with automatic provisioning of new client devices. A global PKI (Public Key Infrastructure) scheme is rooted at a globally available server. Roots of PKIs for individual organizations also reside at this server or another globally available resource. To enable access to an organization's network, one or more authenticators are deployed, which may be co-located with access points or other network components. After a client device enabler (CDE) and an authenticator perform mutual authentication with certificates issued within the global PKI, the CDE is used to provision a new client device for the organization. After the client is provisioned, it and an authenticator use certificates issued within the per-organization PKI to allow the client access to the network.
Public/Granted literature
- US08555054B2 Apparatus and methods for protecting network resources Public/Granted day:2013-10-08
Information query
