Apparatus, system, and method for detecting theft of network devices
First Claim
1. An apparatus comprising:
- a Trusted Platform Module (TPM) chip that securely stores, within a Platform Configuration Register (PCR), an initial geographic location of a network device that has an increased risk of theft due to being deployed in an insecure location; and
a processing unit communicatively coupled to the TPM chip, wherein the processing unit;
determines, in response to detecting a boot up operation of the network device, a current geographic location of the network device;
before the boot up operation is completed, detects evidence of theft of the network device by;
comparing the current geographic location of the network device with the initial geographic location of the network device securely stored in the PCR; and
determining, based at least in part on the comparison, that the current geographic location of the network device does not match the initial geographic location of the network device; and
in response to detecting the evidence of theft of the network device, protects the network device from threats of theft by directing the TPM chip to prevent the boot up operation until the current geographic location of the network device matches the initial geographic location of the network device securely stored in the PCR.
1 Assignment
0 Petitions
Accused Products
Abstract
The disclosed apparatus may include a secure storage device that securely stores an initial geographic location of a network device that facilitates network traffic within a network. This apparatus may also include a processing unit communicatively coupled to the secure storage device. The processing unit may determine a current geographic location of the network device. The policy-enforcement unit may then detect evidence of theft of the network device by (1) comparing the current geographic location of the network device with the initial geographic location of the network device and (2) determining, based at least in part on the comparison, that the current geographic location of the network device does not match the initial geographic location of the network device. Finally, the processing unit may perform at least one security action in response to detecting the evidence of theft of the network device.
24 Citations
14 Claims
-
1. An apparatus comprising:
-
a Trusted Platform Module (TPM) chip that securely stores, within a Platform Configuration Register (PCR), an initial geographic location of a network device that has an increased risk of theft due to being deployed in an insecure location; and a processing unit communicatively coupled to the TPM chip, wherein the processing unit; determines, in response to detecting a boot up operation of the network device, a current geographic location of the network device; before the boot up operation is completed, detects evidence of theft of the network device by; comparing the current geographic location of the network device with the initial geographic location of the network device securely stored in the PCR; and determining, based at least in part on the comparison, that the current geographic location of the network device does not match the initial geographic location of the network device; and in response to detecting the evidence of theft of the network device, protects the network device from threats of theft by directing the TPM chip to prevent the boot up operation until the current geographic location of the network device matches the initial geographic location of the network device securely stored in the PCR. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system comprising:
-
a Trusted Platform Module (TPM) chip that securely stores, within a Platform Configuration Register (PCR), an initial geographic location of a router that has an increased risk of theft due to being deployed in an insecure location; and a processing unit communicatively coupled to the TPM chip, wherein the processing unit; determines, in response to detecting a boot up operation of the router, a current geographic location of the router; before the boot up operation is completed, detects evidence of theft of the router by; comparing the current geographic location of the router with the initial geographic location of the router securely stored in the PCR; and determining, based at least in part on the comparison, that the current geographic location of the router does not match the initial geographic location of the router; and in response to detecting the evidence of theft of the router, protects the router from threats of theft by directing the TPM chip to prevent the boot up operation until the current geographic location of the router matches the initial geographic location of the router securely stored in the PCR. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method comprising:
-
detecting a boot up operation of a network device that has an increased risk of theft due to being deployed in an insecure location; determining, in response to detecting the boot up operation, a current geographic location of the network device; before the boot up operation is completed, detecting evidence of theft of the network device by; comparing the current geographic location of the network device with an initial geographic location of the network device securely stored within a Platform Configuration Register (PCR) of a Trusted Platform Module (TPM) chip, the TPM chip being communicatively coupled to the network device; and determining, based at least in part on the comparison, that the current geographic location of the network device does not match the initial geographic location of the network device; and in response to detecting the evidence of theft of the network device, protecting the network device from threats of theft by directing the TPM chip to prevent the boot up operation until the current geographic location of the network device matches the initial geographic location of the network device securely stored in the PCR.
-
Specification