Dynamic Host Configuration Protocol
First Claim
1. A method at a dynamic host configuration protocol (DHCP) client comprising:
- receiving a signed DHCP response message from a DHCP server of a communications network, the signed message comprising at least a freshness indicator, a signature and a public key.validating the freshness indicator;
verifying the signature of the signed message using the public key; and
if the validation and the verification processes are successful, accessing stored settings for use with the network, that access being made on the basis of information at least about the public key.
2 Assignments
0 Petitions
Accused Products
Abstract
Dynamic host configuration protocol (DHCP) is extended in order to assist with secure network location awareness. In an embodiment a DHCP client receives a signed DHCP response message from a DHCP server, the signed message comprising at least a certificate chain having a public key. In that embodiment the DHCP client validates the certificate chain and verifies the signature of the signed message. If this is successful the DHCP client accesses stored settings for use with the server. The stored settings are accessed at least using information about the public key. In some embodiments signed DHCPOFFER messages and signed DHCPACK messages are used. In another embodiment the signed DHCP message comprises a location identifier which is, for example, a domain name system (DNS) suffix of a DHCP server.
-
Citations
20 Claims
-
1. A method at a dynamic host configuration protocol (DHCP) client comprising:
-
receiving a signed DHCP response message from a DHCP server of a communications network, the signed message comprising at least a freshness indicator, a signature and a public key. validating the freshness indicator; verifying the signature of the signed message using the public key; and if the validation and the verification processes are successful, accessing stored settings for use with the network, that access being made on the basis of information at least about the public key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method at a DHCP server of a communications network comprising:
-
receiving a DHCP request message from a DHCP client requiring a response from the DHCP server; sending a signed DHCP response message to the client, the signed message comprising at least a freshness indicator, location identifier, signature, and a certificate chain comprising one or more certificates, the certificate chain having a public key; wherein the sending is arranged such that the signed DHCP response message can be received only in a specified region of the communications network; and wherein the public key is suitable for verifying the signature and the location identifier matches a name in a certificate chain. - View Dependent Claims (16, 17, 18)
-
-
19. A dynamic host configuration protocol (DHCP) signal comprising:
-
a signed DHCP response message which comprises; a location identifier stored in a network name option; and a certificate chain comprising one or more certificates having a public key wherein the location identifier is present in a certificate of the certificate chain. - View Dependent Claims (20)
-
Specification