Network message security method and apparatus
First Claim
Patent Images
1. In a local area network having a plurality of input/output devices coupled to a multiport repeater, a method for securing data on the network comprising the steps of:
- receiving at the repeater a data frame having a data field and a frame check sequence field; and
replacing a content of said data field with a substitute bit pattern to form a secured data field.
1 Assignment
0 Petitions
Accused Products
Abstract
A security system for local area networks (LAN) to prevent eavesdropping of or to control access to LAN traffic at repeater or concentrator ports. The security system determines which repeater ports are to have security activated according to a given set of criteria. For ports with security activated, the contents of the data field of data frame transmitted from the repeater port to the local device are replaced with an arbitrary bit pattern.
-
Citations
27 Claims
-
1. In a local area network having a plurality of input/output devices coupled to a multiport repeater, a method for securing data on the network comprising the steps of:
-
receiving at the repeater a data frame having a data field and a frame check sequence field; and replacing a content of said data field with a substitute bit pattern to form a secured data field. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 17, 18)
-
-
9. In a local area network having a plurality of input/output devices coupled to a multiport repeater, a repeater structure for securing data on the local area network comprising:
means for replacing a content of a data field of a data frame received at said repeater with a substitute bit pattern to form a secured data field. - View Dependent Claims (10)
-
11. In a local area network having a plurality of input/output devices coupled to a multiport repeater, a repeater structure for securing data on the local area network comprising:
-
means for replacing a content of a data field of a data frame received at said repeater with a substitute bit pattern to form a secured data field; a security selection logic circuit, coupled to a local area network management system, to said means for replacing a content of a data field and to a receive port of said repeater, having; (i) means for identifying given ones of a plurality of data frames received at said receive port to be secured; and (ii) means for activating said means for replacing. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
19. A secure repeater for use in a local area data network that utilizes data frames of preset format having in a predetermined position in the frame a destination address segment, the repeater including:
-
means for receiving incoming data frames and for retransmitting data frames during a time interval that begins before a complete frame of data has been received; means for storing identifications for transmitting/receiving devices connected to the repeater; means for reading at least one portion of the destination address segment of each incoming data frame and comparing the portion so read with the identification to determine whether the frame is permitted; and means for corrupting the frame in retransmission to predetermined ones of the transmitting/receiving devices if the frame is not permitted. - View Dependent Claims (20, 21, 22, 23)
-
-
24. Apparatus having a number of ports coupled to a plurality of data transmitting/receiving devices to communicate data received at one of the number of ports from a sending one of the plurality of data transmitting/receiving devices for retransmission from the other of the number of ports to other, including a receiving one, of the plurality of data transmitting/receiving devices, the apparatus including structure for securing the data, comprising:
-
means for examining the data; means, coupled to the examining means, for determining which of the other of the number of ports are selected to retransmit the data; and means coupled to the determining means for replacing a portion of the data communicated from the other of the number of ports not selected to retransmit the data. - View Dependent Claims (25, 26, 27)
-
Specification