Client computer self health check
First Claim
1. A method comprising:
- coupling a server to a network;
defining a plurality of security requirements required to be implanted by a client computer before the client computer is authorized to log onto the network;
receiving at the server a request for a network address from the client computer, the network address enabling the client computer to log onto the network, the request for the network address including a security descriptor tag that describes a status of compliance, by the client computer, with the required security requirements;
comparing the security descriptor tag to a network security descriptor, the network security descriptor describing the status of compliance with the security requirements that is required for the client computer to log onto the network; and
providing the client computer the requested network address only if the security descriptor tag matches the network security descriptor.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and system for defining every operation required of a client PC before being authorized to obtain an IP address that will enable the client PC to join a network serviced by specified DHCP servers. Each successful operation generates a value that is stored on a pre-determined location on the client PC'"'"'s hard drive. A hash is created from all of the stored values, and after being encrypted, the hash is sent to the DHCP server when requesting an IP address. The DHCP server has a hash string indicative of the required status of operations that should be performed by any client PC requesting an IP address to join the network serviced by the DHCP server. If the DHCP'"'"'s has string does not match with the hash sent by the client PC, then the DHCP server will not provide the requisite IP address to the client PC.
-
Citations
20 Claims
-
1. A method comprising:
-
coupling a server to a network;
defining a plurality of security requirements required to be implanted by a client computer before the client computer is authorized to log onto the network;
receiving at the server a request for a network address from the client computer, the network address enabling the client computer to log onto the network, the request for the network address including a security descriptor tag that describes a status of compliance, by the client computer, with the required security requirements;
comparing the security descriptor tag to a network security descriptor, the network security descriptor describing the status of compliance with the security requirements that is required for the client computer to log onto the network; and
providing the client computer the requested network address only if the security descriptor tag matches the network security descriptor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer program product, residing on a computer usable medium, the computer program product comprising:
-
program code for coupling a server to a network;
program code for defining a plurality of security requirements required to be implanted by a client computer before the client computer is authorized to log onto the network;
program code for receiving at the server a request for a network address from the client computer, the network address enabling the client computer to log onto the network, the request for the network address including a security descriptor tag that describes a status of compliance, by the client computer, with the required security requirements;
program code for comparing the security descriptor tag to a network security descriptor, the network security descriptor describing the status of compliance with the security requirements that is required for the client computer to log onto the network; and
program code for providing the client computer the requested network address only if the security descriptor tag matches the network security descriptor. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A system comprising:
-
a server coupled to a network;
a network interface in the server for receiving at the server a request for a network address from a client computer, the network address enabling the client computer to log onto the network, the request for the network address including a security descriptor tag that describes a current security level of the client computer;
a comparator in the server for comparing the security descriptor tag to a network security descriptor, the network security descriptor describing a current security level required by the network to allow the client computer to log onto the network; and
an address provider in the server for providing the client computer the requested network address only if the security descriptor tag matches the network security descriptor. - View Dependent Claims (19, 20)
-
Specification