Secure mobile office wireless local-area network application integration package running from CD-ROM
First Claim
Patent Images
1. A computer-readable medium storing computer-executable instructions that when executed by a processor cause a computer to perform a method for creating a preconfigured network, the method comprising:
- creating a plurality of nodes on bootable read-only media of a TCP/IP (“
transmission control protocol/internet protocol”
) network capable of encrypted communications as follows;
installing an operating system to a target partition of a computer hard drive mass storage device residing in a computer;
compiling an operating system kernel supporting IPSec (“
Internet Protocol Security”
) and a plurality of virtual disks;
copying the compiled operating system kernel to the target partition;
compiling an authentication server and copying associated files to the target partition;
restarting the computer to boot from the target partition;
initializing the authentication server which will control authentication and authorization functions for the network;
creating instances within the authentication server of specific IP addresses and hostnames;
generating, in a specific directory, multiple unique instances of authentication and authorization information for the authentication server;
configuring parameters for IPSec;
configuring start-up parameters for the operating system;
configuring the authentication server;
configuring the operating system loader;
rebooting to an original instance of the operating system to begin per-node generation of bootable read-only media images to be written to storage media;
moving the authentication and authorization information for the authentication server from the target partition to a local directory;
copying the target partition to a processing partition;
iteratively generating unique bootable read-only media image information, including internet protocol (“
IP”
) address, hostname information, and routing information for the plurality of nodes, from the processing partition;
copying the previously-generated host-specific authentication and authorization information which must conform to the newly generated internet protocol (“
IP”
) address from the local directory into the processing partition; and
writing the generated unique bootable read-only media image information to read-only media;
wherein each bootable image on read-only media, when used as the boot image for a computer, boots the computer into the operating system such that each such computer will have a unique preconfigured IP address.
0 Assignments
0 Petitions
Accused Products
Abstract
This Invention permits very rapid installation of operating systems onto off-the-shelf hardware. Furthermore, this Invention addresses multiple configuration issues pertaining to the creation of unique “InterNet Hosts”, and thus enables the very rapid installation of operating systems preconfigured to boot into a “ready to internetwork” mode with no subsequent configuration needs. It integrates several different existing security and encryption models which are considered robust. Further, the media on which this Invention will be distributed, and from which it will be run, are read-only CD-ROM, providing further defense against InterNet-based attacks.
A variety of scripts generates a series of CD-ROMs which will each boot an Intel-ix86-based PC to an individual network identity, all of which will have the characteristics listed above, and will automatically network if provided with the IEEE 802.11b standard wireless PC Cards.
-
Citations
1 Claim
-
1. A computer-readable medium storing computer-executable instructions that when executed by a processor cause a computer to perform a method for creating a preconfigured network, the method comprising:
creating a plurality of nodes on bootable read-only media of a TCP/IP (“
transmission control protocol/internet protocol”
) network capable of encrypted communications as follows;installing an operating system to a target partition of a computer hard drive mass storage device residing in a computer; compiling an operating system kernel supporting IPSec (“
Internet Protocol Security”
) and a plurality of virtual disks;copying the compiled operating system kernel to the target partition; compiling an authentication server and copying associated files to the target partition; restarting the computer to boot from the target partition; initializing the authentication server which will control authentication and authorization functions for the network; creating instances within the authentication server of specific IP addresses and hostnames; generating, in a specific directory, multiple unique instances of authentication and authorization information for the authentication server; configuring parameters for IPSec; configuring start-up parameters for the operating system; configuring the authentication server; configuring the operating system loader; rebooting to an original instance of the operating system to begin per-node generation of bootable read-only media images to be written to storage media; moving the authentication and authorization information for the authentication server from the target partition to a local directory; copying the target partition to a processing partition; iteratively generating unique bootable read-only media image information, including internet protocol (“
IP”
) address, hostname information, and routing information for the plurality of nodes, from the processing partition;copying the previously-generated host-specific authentication and authorization information which must conform to the newly generated internet protocol (“
IP”
) address from the local directory into the processing partition; andwriting the generated unique bootable read-only media image information to read-only media; wherein each bootable image on read-only media, when used as the boot image for a computer, boots the computer into the operating system such that each such computer will have a unique preconfigured IP address.
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeThomas James Jr. Hardman
-
Original AssigneeThomas James Jr. Hardman
-
InventorsHardman, Thomas James Jr.
-
Primary Examiner(s)CERVETTI, DAVID GARCIA
-
Application NumberUS10/623,631Publication NumberTime in Patent Office1,967 DaysField of Search726/11, 726/3, 726/12, 726/14, 717/168, 713/164US Class Current726/14CPC Class CodesG06F 21/575 Secure bootG06F 9/4403 Processor initialisationG06F 9/44505 Configuring for program ini...H04L 63/029 Firewall traversal, e.g. tu...H04L 63/08 for authentication of entit...H04L 63/164 at the network layerH04L 63/20 for managing network securi...
