Method and apparatus of remote computer management

US 7,343,441 B1
Filed: 09/29/2000
Issued: 03/11/2008
Est. Priority Date: 12/08/1999
Status: Expired due to Fees

First Claim

Patent Images

1. A method for remotely managing a computer coupled to a communication bus, the method comprising:

predetermining one port of the computer as a management port and deeming the management port as the only port automatically authorized for receiving one or more management commands and all other ports as not automatically authorized for receiving any management command;

receiving, via the communication bus, the management command;

determining whether the management command was received at the management port coupled to the communication bus or received at a second port; and

if the management command is received at the management port, executing the management command without requiring further authentication or authorization and if the management command is received at the second port ignoring the management command.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer being controlled is coupled via a communications bus to at least one other device comprising one or more authorized management devices. The one or more authorized management devices are coupled to a management port. Only management commands received from authorized management devices via the management port may be executed or otherwise responded to. Management commands received from other devices are ignored. In a preferred embodiment, the communication bus is an IEEE 1394 serial bus. In this manner, the present invention provides for the use of more direct communication technologies, such as the IEEE 394 serial bus, while simultaneously providing a greater degree of security than previously available.

Citations

24 Claims

1. A method for remotely managing a computer coupled to a communication bus, the method comprising:
- predetermining one port of the computer as a management port and deeming the management port as the only port automatically authorized for receiving one or more management commands and all other ports as not automatically authorized for receiving any management command;
  
  receiving, via the communication bus, the management command;
  
  determining whether the management command was received at the management port coupled to the communication bus or received at a second port; and
  
  if the management command is received at the management port, executing the management command without requiring further authentication or authorization and if the management command is received at the second port ignoring the management command.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising:
    - providing, via the communication bus, data to at least one device coupled to the communication bus in response to the step of executing the management command.
  - 3. A computer-readable medium having stored thereon computer executable instructions for performing the method of claim 2.
  - 4. The method of claim 1, wherein the communication bus is an IEEE 1394-compliant serial bus.
  - 5. A computer-readable medium having stored thereon computer executable instructions for performing the method of claim 1.
  - 6. A computer-readable medium having stored thereon computer executable instructions for performing the method of claim 1.

7. A computer comprising:
- a processor;
  
  an IEEE 1394 interface, coupled to the processor, comprising one or more ports only one of which is a management port deemed to be the only authorized port for receiving one or more management commands and where all the other ports are not authorized for receiving any management command, wherein the IEEE 1394 interface passes the management command received from the management port to the processor and ignores any management command received at any of the other ports other than the management port; and
  
  memory, coupled to the processor, having stored thereon computer executable instructions that, when executed by the processor, cause the computer to;
  
  execute the one or more one management commands received at the management port without requiring further authorization.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The computer of claim 7, wherein the computer executable instructions, when executed by the processor, further cause the computer to:
    - provide data at any of the ports in response to the management command received at the management port.
  - 9. The computer of claim 7, wherein the computer executable instructions, when executed by the processor, further cause the computer to:
    - identify one or more authorized management devices coupled to the management port.
  - 10. A system comprising the computer of claim 7, and further comprising:
    - an IEEE 1394-compliant serial bus coupled to the IEEE 1394 interface; and
      
      a management device coupled either directly or indirectly, via the IEEE 1394-compliant serial bus, to the management port,wherein the management device provides the management command.
  - 11. The system of claim 10, wherein the management device is another computer.

12. A computer-readable medium comprising computer-executable components for enabling remote management of a computer via a communication bus, the computer-executable components comprising:
- a bus interface component that communicates with an IEEE 1394-compliant serial bus and that receives one or more management commands via the IEEE 1394-compliant serial bus via an asynchronous or an isochronous channel; and
  
  a management command authorization component, in communication with the bus interface component, that determines whether each of the one or more management commands is authorized based on whether each of the one or more management commands was received at a management port coupled to the communication bus without requiring further authentication or authorization, and wherein the management port is a predetermined port deemed to be the only port automatically authorized for receiving the one or more management commands.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The computer-readable medium of claim 12, wherein the bus interface component communicates with an IEEE 1394-compliant serial bus.
  - 14. The computer-readable medium of claim 12, further comprising:
    - a host interface component, in communication with the management command authorization component and a host comprising a portion of the computer, that sends the one or more management commands to the host for execution when the one or more management commands are authorized and require host intervention.
  - 15. The computer-readable medium of claim 14, wherein the host interface component executes the one or more management commands when the one or more management commands are authorized and do not require the intervention of the host.
  - 16. The computer-readable medium of claim 14, wherein the host interface component does not send the one or more management commands to the host when the one or more management commands are not authorized.
  - 17. The computer-readable medium according to claim 12, wherein the one or more management commands are received via an asynchronous or isochronous channel.
  - 18. The computer-readable medium according to claim 17, further comprising a host interface component, in communication with the management command authorization component and a host comprising a portion of the computer, that sends the one or more management commands via the isochronous channel to the host for execution when the one or more management commands are authorized and require host intervention.
  - 19. The computer-readable medium of claim 18, wherein the host interface component receives the one or more management commands via the asynchronous channel and executes the one or more management commands when the one or more management commands are authorized and do not require the intervention of the host.
  - 20. The computer-readable medium of claim 17, wherein the host interface component receives the one or more management commands via the asynchronous channel and executes the one or more management commands when the one or more management commands are authorized and do not require the intervention of the host.

21. A method for remotely managing a computer coupled to a communication bus, the method comprising:
- identifying a first device coupled to a first port of the computer and a second device coupled to a second port of the computer, the first port configured to be a management port and deemed to be the only part automatically authorized for receiving one or more management commands such that all other ports are not automatically authorized for receiving any management command;
  
  receiving, via the communication bus, the management command from one of the first and second devices;
  
  determining whether the management command was received at the management port coupled to the communication bus;
  
  when the management command was received at the management port, automatically authorizing the execution of the management command irrespective of an identifier of the first device and without requiring further authentication or authorization, and executing the authorized management command, andwhen a management command was received at the second port, not authorizing the management command.
- View Dependent Claims (22, 23, 24)
- - 22. The method of claim 21, further comprising a step of providing, via the communication bus, data to the first device in response to the step of executing the management command.
  - 23. The method of claim 21, further comprising a step of when the management command was not received at the management port, ignoring the management command.
  - 24. The method of claim 21, wherein the communication bus is an IEEE 1394-compliant serial bus.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Chrysanthakopoulos, Georgios, DeMaio, Pasquale, See, Valerie R.
Primary Examiner(s)
Rinehart; Mark H.
Assistant Examiner(s)
DALEY, CHRISTOPHER ANTHONY

Application Number

US09/676,544
Time in Patent Office

2,720 Days
Field of Search

709/222, 709/223, 709/234, 709/237, 709/236, 370/252, 370/254, 710/313, 713/159, 713/171, 713/172
US Class Current

710/313
CPC Class Codes

G06F 11/2294   by remote test

H04L 12/40058   Isochronous transmission

H04L 12/40104   Security; Encryption; Conte...

H04L 12/40123   Interconnection of computer...

Method and apparatus of remote computer management

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus of remote computer management

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links