Intrusion control in repeater based networks
First Claim
1. A method for securing a local area network, the local area network having a plurality of nodes, a plurality of end stations, each end station having an end station address, and a repeater, the repeater having a plurality of ports, the method comprising:
- (a) receiving a data packet, the data packet including a source address;
(b) utilizing a plurality of intruder control circuits, with one intruder control circuit per port of the repeater, for comparing the source address to at least one of the plurality of end station addresses; and
(c) disabling, on an individual basis via the plurality of intruder control circuits, each of the plurality of ports on the repeater based on the comparison between the source address and at least one of the plurality of end station addresses.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for securing a network from access by unauthorized end stations. A port in a multiport repeater can be disabled automatically upon detection of an unknown source address in a data packet. In addition, an interrupt signal is provided to the indicate the detection of an intruder. Further, the disabling of the port can be done substantially immediately to interrupt the re-transmission of a single packet. Alternatively, the disabling of a port can be done programmably after a predetermined number of intruder packets have been detected, or after the verification of packet integrity.
61 Citations
32 Claims
-
1. A method for securing a local area network, the local area network having a plurality of nodes, a plurality of end stations, each end station having an end station address, and a repeater, the repeater having a plurality of ports, the method comprising:
-
(a) receiving a data packet, the data packet including a source address; (b) utilizing a plurality of intruder control circuits, with one intruder control circuit per port of the repeater, for comparing the source address to at least one of the plurality of end station addresses; and (c) disabling, on an individual basis via the plurality of intruder control circuits, each of the plurality of ports on the repeater based on the comparison between the source address and at least one of the plurality of end station addresses. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus for securing a local area network having a plurality of nodes and end stations, each end station having an end station address, the apparatus comprising:
-
a controller means; a memory comparison means coupled to the controller means for storing the end station addresses and performing a comparison on at least one of the stored end station addresses and a source address of a data packet; and a plurality of intrusion control means coupled to the memory comparison means and the controller means, each one of the plurality of intrusion control means coupled to one of a plurality of ports for disabling each port on a port-by-port basis based upon a comparison between the source address and the stored end station addresses. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A system for securing a local area network having a plurality of nodes and a plurality of end stations, each end station having an end station address, the system comprising:
-
a memory comparator means for storing a plurality of end station addresses and comparing the end station addresses to a source address of a data packet, the memory comparator means having a preferred source address register means and a last source address register means; and a plurality of intrusion control means coupled to the memory comparator means, each one of the plurality of intrusion control means coupled to one of a plurality of ports for disabling each port on a port-by-port basis when the source address does not match the stored end station addresses. - View Dependent Claims (22, 23, 24, 25, 26)
-
-
27. An intrusion control system for a secure repeater, the repeater having a plurality of ports and used in a network to route data packets between end stations, each data packet having a destination address and a source address, the system comprising:
-
means for storing one or more preferred source addresses for the plurality of ports in the repeater; means for comparing a source address of an incoming data packet received at a first port of the plurality of ports to the stored preferred source addresses; means for indicating detection of a predetermined number of mismatches between the stored preferred source addresses and the incoming source address; means for individually disabling the reception by the first port after detection of the predetermined number of mismatches; and means for storing the incoming source address causing the predetermined number of mismatches. - View Dependent Claims (28, 29)
-
-
30. A system for securing a local area network having a plurality of nodes and a plurality of end stations, each end station having an end station address, the system comprising:
-
a memory comparator means for storing a plurality of end station addresses and comparing the end station addresses to a source address of a data packet, the memory comparator means having a preferred source address register means and a last source address register means, the preferred source address register means and last source address register means being programmable; and a plurality of intrusion control means coupled to the memory comparator means, each one of the plurality of intrusion control means coupled to one of a plurality of ports for disabling each port on a port-by-port basis when the source address does not match the stored end station addresses. - View Dependent Claims (31, 32)
-
Specification