Managed network device security method and apparatus
First Claim
1. A method for providing security against intrusion in a managed device of a computer network having at least one interconnect device, said method comprising the steps of:
- discovering each of said interconnect devices that is enabled to provide network security;
detecting an unauthorized address on a first port of said managed device and disabling said first port;
notifying each of said security-enabled interconnect devices that the unauthorized address has been detected on said first port; and
reenabling said first port after each of said security-enabled interconnect devices has notified said managed device that a filter has been set to prevent frames with the unauthorized address from flowing through said each security-enabled interconnect device.
2 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and method for providing security against intrusion in the managed devices of a campus LAN network is provided. A managed hub discovers each interconnect device in the network that supports the security feature and maintains an interconnect device list of such devices, which may include token ring switches, Ethernet switches, bridges and routers. The managed hub detects an intrusion by an unauthorized address on one of its ports and notifies the interconnect devices of the intrusion by transmitting a security breach detected frame. After each interconnect device sets a filter on its respective ports against the intruding unauthorized address and sends a filter set frame to the managed hub, the port in the managed hub where the security intrusion occurred is reenabled.
320 Citations
35 Claims
-
1. A method for providing security against intrusion in a managed device of a computer network having at least one interconnect device, said method comprising the steps of:
-
discovering each of said interconnect devices that is enabled to provide network security; detecting an unauthorized address on a first port of said managed device and disabling said first port; notifying each of said security-enabled interconnect devices that the unauthorized address has been detected on said first port; and reenabling said first port after each of said security-enabled interconnect devices has notified said managed device that a filter has been set to prevent frames with the unauthorized address from flowing through said each security-enabled interconnect device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. An apparatus for providing security against intrusion in a managed device of a computer network having at least one interconnect device, said apparatus comprising:
-
means for discovering each of said interconnect devices that is enabled to provide network security; means for detecting an unauthorized address on a first port of said managed device and means for disabling said first port; means for notifying each of said security-enabled interconnect devices that the unauthorized address has been detected on said first port; and means for reenabling said first port after each of said security-enabled interconnect devices has notified said managed device that a filter has been set to prevent frames having the unauthorized address from flowing through said each security-enabled interconnect device. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A method for providing security against intrusion in a managed hub of a computer network having at least one interconnect device, said method comprising the steps of:
-
building and maintaining an authorized address list of addresses that are allowed to connect to each port; discovering each interconnect device that is enabled to provide network security; detecting an unauthorized address on a first port and disabling said first port; notifying each security-enabled interconnect device that the unauthorized address has been detected on said first port; and reenabling said first port after each security-enabled interconnect device has notified said managed hub that a filter has been set to prevent frames with the unauthorized address from flowing through each security-enabled interconnect device. - View Dependent Claims (27, 28, 29, 30)
-
-
31. An apparatus for providing security against intrusion in a managed hub of a computer network having at least one interconnect device, said apparatus comprising:
-
means for building and maintaining an authorized address list of addresses that are allowed to connect to each port; means for discovering each interconnect device that is enabled to provide network security; means for detecting an unauthorized address on a first port and means for disabling said first port; means for notifying each security-enabled interconnect device that the unauthorized address has been detected on said first port; and means for reenabling said first port after each security-enabled interconnect device has notified said managed hub that a filter has been set to prevent frames with the unauthorized address from flowing through each security-enabled interconnect device. - View Dependent Claims (32, 33, 34, 35)
-
Specification