-
公开(公告)号:US09239915B2
公开(公告)日:2016-01-19
申请号:US11904322
申请日:2007-09-26
申请人: Avigdor Eldar , Tal Roth , Hormuzd Khosravi , Tal Shustak , Yael Yanai
发明人: Avigdor Eldar , Tal Roth , Hormuzd Khosravi , Tal Shustak , Yael Yanai
CPC分类号: G06F21/33 , G06F21/71 , G06F21/85 , H04L63/0227 , H04L63/08 , H04L63/162
摘要: In network access controlled networks, it is desirable to prevent access to the network by any non-authenticated entities. Access control may be established through a trusted agent that, in some embodiments, may be implemented with a management co-processor. In some cases, active management technology may establish a connection while a host is inactive. Then, after the host becomes active, the host can attempt to use the management co-processor connection without obtaining the necessary authentications. This may be prevented, in some embodiments, by scanning for an active host and, if such an active host is found, blocking the host from using a layer 2 authentication channel unless the host is properly authenticated and has a proper Internet Protocol address.
-
2.发明申请Synchronizing between host and management co-processor for network access control 有权同步主机和管理协处理器进行网络访问控制公开(公告)号:US20090083844A1
公开(公告)日:2009-03-26
申请号:US11904322
申请日:2007-09-26
申请人: Avigdor Eldar , Tal Roth , Hormuzd Khosravi , Tal Shustak , Yael Yanai
发明人: Avigdor Eldar , Tal Roth , Hormuzd Khosravi , Tal Shustak , Yael Yanai
IPC分类号: G06F21/20 , G06F15/173
CPC分类号: G06F21/33 , G06F21/71 , G06F21/85 , H04L63/0227 , H04L63/08 , H04L63/162
摘要: In network access controlled networks, it is desirable to prevent access to the network by any non-authenticated entities. Access control may be established through a trusted agent that, in some embodiments, may be implemented with a management co-processor. In some cases, active management technology may establish a connection while a host is inactive. Then, after the host becomes active, the host can attempt to use the management co-processor connection without obtaining the necessary authentications. This may be prevented, in some embodiments, by scanning for an active host and, if such an active host is found, blocking the host from using a layer 2 authentication channel unless the host is properly authenticated and has a proper Internet Protocol address.
摘要翻译: 在网络访问控制网络中,期望防止任何未经认证的实体访问网络。 访问控制可以通过可信代理来建立,在一些实施例中,可以使用管理协处理器来实现。 在某些情况下,主动管理技术可能会在主机处于非活动状态时建立连接。 然后,在主机变为活动状态之后,主机可以尝试使用管理协处理器连接,而无需获得必要的认证。 在一些实施例中,可以通过扫描活动主机来防止这种情况,并且如果发现这样的活动主机,则阻止主机使用第2层认证信道,除非主机被正确认证并具有适当的因特网协议地址。
-
搜索结果
2 条记录 (耗时 0.016 秒)
