Integrated network security system
First Claim
1. An integrated security system for a network having a server and at least one client comprising:
- means for normally locking each client to restrict in a selected way use of the client itself and use of the client in gaining access to the network;
means at the client for receiving at least one coded input from a user;
means at the client for transmitting to the server signals which are a representation of at least a selected portion of the coded input;
means at the server for utilizing the received signal representation to authenticate the user, for retrieving unlock inputs for the user and, when the user has been authenticated, for sending to the client signals representative of the unlock inputs; and
means at the client for utilizing the unlock input signals to unlock the client.
7 Assignments
0 Petitions
Accused Products
Abstract
An integrated network security system is provided which permits log-on to a normally locked client on the network in response to at least one coded non-public input to the client by a user. At least a selected portion of the coded input is encrypted and sent to a network server where the user is authenticated. After authentication, the server preferably returns a decryption key, an encryption key for future use and any critical files previously stored at the server to the client. The decryption key is utilized to decrypt any material at the client which were encrypted when the client was locked, including any material sent from the server, thereby unlocking the client. The decryption key may be combined with untransmitted portions of the original coded input in a variety of ways to generate an encryption key for the next time the terminal is to be locked. When one of a variety of client locking conditions occurs, the previously generated encryption key is utilized to encrypt at least selected critical material at the client. Critical directories or the like in encrypted form may be sent to the server and a message is sent to the server that the client is locked, which message is utilized by the server to inhibit the client from further access to at least selected resources on the network.
-
Citations
52 Claims
-
1. An integrated security system for a network having a server and at least one client comprising:
-
means for normally locking each client to restrict in a selected way use of the client itself and use of the client in gaining access to the network; means at the client for receiving at least one coded input from a user; means at the client for transmitting to the server signals which are a representation of at least a selected portion of the coded input; means at the server for utilizing the received signal representation to authenticate the user, for retrieving unlock inputs for the user and, when the user has been authenticated, for sending to the client signals representative of the unlock inputs; and means at the client for utilizing the unlock input signals to unlock the client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A method for providing integrated security on a network having a server and at least one client comprising the steps of:
-
normally locking each client to restrict in a selected way use of the client itself and use of the client in gaining access to the network; receiving at the client at least one coded input from a user; transmitting signals which are a representation of at least a selected portion of the coded input from the client to the server; utilizing the received representation signals at the server to authenticate the user, to retrieve unlock inputs for the user and, when the user has been authenticated, to send the unlock inputs to the client; and utilizing the unlock inputs at the client to unlock the client. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52)
-
Specification