Controlling network access
First Claim
Patent Images
1. A method of controlling access to a network by a computer comprising acts of:
- receiving, at a network access device, identity information about the computer at a network access device;
receiving, at the network access device, a health credential from the computer that indicates a security state of the computer; and
determining whether to grant network access to the computer based on the identity information and the health credential.
2 Assignments
0 Petitions
Accused Products
Abstract
One embodiment of the invention is directed to managing access of a host computer to a network. A first communication session with the host computer may be conducted to authenticate the host computer'"'"'s identity. A second communication session with the host computer may be conducted to determine the health status of the host computer.
306 Citations
20 Claims
-
1. A method of controlling access to a network by a computer comprising acts of:
-
receiving, at a network access device, identity information about the computer at a network access device;
receiving, at the network access device, a health credential from the computer that indicates a security state of the computer; and
determining whether to grant network access to the computer based on the identity information and the health credential. - View Dependent Claims (2, 3, 4, 5)
-
-
6. At least one computer-readable medium encoded with instructions that, when executed, perform a method of controlling access to a network by a computer comprising acts of:
-
receiving, at a network access device, identity information about the computer at a network access device;
receiving, at the network access device, a health credential from the computer that indicates a security state of the computer; and
determining whether to grant network access to the computer based on the identity information and the health credential. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A method of obtaining network access comprising acts of:
-
sending, from a computer, a network access request to a network access device, wherein the network access request includes identity information;
receiving, at the computer, in response to the network access request, limited network access, wherein the limited network access permits access to a health credential server;
conducting a communication session between the computer and the health credential server to determine a security state of the computer; and
when it is determined that the computer is in a required security state, receiving a health credential from the health credential server. - View Dependent Claims (12, 13, 14, 15)
-
-
16. At least one computer readable medium encoded with instructions that, when executed, perform a method of obtaining network access comprising acts of:
-
sending, from a computer, a network access request to a network access device, wherein the network access request includes identity information;
receiving, at the computer, in response to the network access request, limited network access, wherein the limited network access permits access to a health credential server;
conducting a communication session between the computer and the health credential server to determine a security state of the computer; and
when it is determined that the computer is in a required security state, receiving a health credential from the health credential server. - View Dependent Claims (17, 18, 19, 20)
-
Specification