Network Router Security Method

US 20070076711A1
Filed: 09/11/2006
Published: 04/05/2007
Est. Priority Date: 09/09/2005
Status: Active Grant

First Claim

Patent Images

1. A network routing device for connecting to computer network devices, comprising:

a housing enclosing a circuit configured for connecting a plurality of external network devices to a network;

a non-volatile memory connected to the circuit;

a switch connected to the circuit, wherein the circuit is configured to permit connections to external network devices, to receive MAC addresses for external network devices connected to the circuit, and to store the MAC addresses in the memory as authorized MAC addresses, when the switch is in a first state, and to refuse connections to new external network devices not having an authorized MAC address stored in the memory, when the switch is in a second state different from the first state.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A local network is secured using a router or hub that includes a security switch. During or immediately after initial network configuration, the router or hub records MAC addresses of connected network devices. After initial configuration is completed, the switch is activated. After the switch is activated, the router or hub will not allow connection of additional devices, as determined by the MAC addresses of connected devices. The security switch can be deactivated to permit connection of additional devices.

56 Citations

View as Search Results

22 Claims

1. A network routing device for connecting to computer network devices, comprising:
- a housing enclosing a circuit configured for connecting a plurality of external network devices to a network;
  
  a non-volatile memory connected to the circuit;
  
  a switch connected to the circuit, wherein the circuit is configured to permit connections to external network devices, to receive MAC addresses for external network devices connected to the circuit, and to store the MAC addresses in the memory as authorized MAC addresses, when the switch is in a first state, and to refuse connections to new external network devices not having an authorized MAC address stored in the memory, when the switch is in a second state different from the first state.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The network routing device of claim 1, wherein the switch comprises a remotely-settable memory location.
  - 3. The network routing device of claim 2, wherein the remotely-settable memory location is in a logic device connected to the circuit.
  - 4. The network routing device of claim 1, wherein the switch comprises an electrical switch.
  - 5. The network routing device of claim 4, wherein the electrical switch comprises a mechanical actuator.
  - 6. The network routing device of claim 5, wherein the mechanical actuator is selected from the group consisting of a push-button, a membrane switch, a slide and a rotary actuator.
  - 7. The network routing device of claim 1, wherein the network routing device is configured to operate as a device selected from the group consisting of a switch, a router, and a hub.
  - 8. The network routing device of claim 1, wherein the circuit is configured to connect to the plurality of external network devices via a wired connection.
  - 9. The network routing device of claim 1, wherein the circuit is configured to connect to the plurality of external network devices via a wireless connection.

10. A system for securing a network routing device for connecting to computer network devices, the system comprising:
- a network routing device configured for connecting a plurality of external network devices to a network and having a non-volatile memory, the routing device configured to operate in an unsecured mode and in a secured mode, depending on an external input; and
  
  a computer in communication with the routing device, the computer operative to provide the external input to the routing device thereby determining whether it operates in the secured mode or in the unsecured mode, wherein the routing device is configured to permit connections to external network devices, to receive MAC addresses for external network devices connected to the circuit, and to store the MAC addresses in the memory as authorized MAC addresses, when operating in the unsecured mode, and to refuse connections to new external network devices not having an authorized MAC address stored in the memory, when operating in the secured mode.
- View Dependent Claims (11, 12, 13, 14)
- - 11. The system of claim 10, wherein the computer is configured to provide the external input to the router in response to a single user input to the computer.
  - 12. The system of claim 11, wherein the single user input is selected from the group consisting of a single keystroke and a single pointer action.
  - 13. The system of claim 11, wherein the single user input is a single mouse click.
  - 14. The network routing device of claim 10, wherein the network routing device is configured to operate as a device selected from the group consisting of a switch, a router, and a hub.

15. A network routing device for configured for connecting a plurality of external network devices to a network and having a non-volatile memory, the routing device configured to operate in an unsecured mode and in a secured mode, depending on external input, wherein the routing device is configured to permit connections to external network devices, to receive MAC addresses for external network devices connected to the circuit, and to store the MAC addresses in the memory as authorized MAC addresses, when operating in the unsecured mode, and to refuse connections to new external network devices not having an authorized MAC address stored in the memory, when operating in the secured mode.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
- - 16. The routing device of claim 15, further comprising a housing substantially enclosing the routing device.
  - 17. The routing device of claim 16, further comprising a first mechanical actuator on an exterior of the housing, the first actuator configured to provide external input determining when the routing device begins operating in the secure mode, when actuated by a user.
  - 18. The routing device of claim 17, wherein the first mechanical actuator is selected from the group consisting of a push-button, a membrane switch, a slide and a rotary actuator.
  - 19. The routing device of claim 17, further comprising a second mechanical actuator on an exterior of the housing, the second actuator configured to provide external input determining when the routing device stops operating in the secure mode, when actuated by a user.
  - 20. The routing device of claim 19, wherein the second mechanical actuator is selected from the group consisting of a push-button, a membrane switch, a slide and a rotary actuator.
  - 21. The routing device of claim 15, wherein the routing device is configured to receive the external input as a signal from an authorized administrator connecting to routing device via a secure remote connection.
  - 22. The routing device of claim 15, wherein the routing device is configured to operate as a device selected from the group consisting of a switch, a router, and a hub.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intellectual Ventures Assets 197 LLC (Intellectual Ventures LLC), TP-Link USA Corporation (TP-Link Technologies Co Limited)
Original Assignee
Intellectual Ventures I LLC (Intellectual Ventures LLC)
Inventors
Shuster, Gary

Granted Patent

US 8,594,084 B2
Time in Patent Office

Days
Field of Search
US Class Current

370/389
CPC Class Codes

H04L 45/60   Router architectures

H04L 49/351   for local area network [LAN...

H04L 63/08   for authentication of entit...

H04L 63/0876   based on the identity of th...

H04L 63/10   for controlling access to d...

H04W 12/06   Authentication

H04W 12/08   Access security

Network Router Security Method

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

56 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Network Router Security Method

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

56 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links