Methods and apparatus for verifying modules from approved vendors
First Claim
1. In a system having a plurality of network communications devices, each network communications device including a plurality of hardware modules, a method for verifying that the hardware modules are from an approved vendor, comprising:
- i) at each network communications device, determining whether respective vendor data obtained from each hardware module of the network communications device is valid vendor data according to a vendor data checking procedure, wherein valid vendor data includes a valid vendor identifier and a valid module serial number; and
ii) engaging in a counterfeit module detection process among the network communications devices, the counterfeit module detection process including (a) comparing respective valid module serial numbers from respective hardware modules of different ones of the network communications devices to identify duplicate valid module serial numbers among the network communications devices, each duplicate valid module serial number indicating that corresponding hardware modules from the different network communications devices are potentially counterfeit hardware modules not from an approved vendor, and (b) disabling operation of the potentially counterfeit hardware modules on each of the different network communications devices,wherein;
(a) each of the network communications devices maintains a respective device module database containing vendor data obtained from hardware modules of the network communications device;
(b) the system includes a service provider maintaining a central database containing vendor data for hardware modules of the network communications devices of the system, the network module database being populated with vendor data received from the device module databases of the network communications devices;
(c) comparing respective valid module serial numbers from respective hardware modules of different ones of the network communications devices includes comparing valid module serial numbers stored in the central database;
(d) the service provider is operative to generate alert messages to the network communications devices upon identifying duplicate valid module serial numbers, the alert messages inducing the disabling of the potentially counterfeit hardware modules; and
(e) each network communications device is operative in response to each alert message from the service provider to;
include a module serial number from the alert message in a list of module serial numbers maintained by the network communications device;
compare the serial numbers of hardware modules in the network communications device with the module serial numbers in the list; and
upon finding a match between a serial number of a hardware module in the network communications device with a module serial number in the list, take an action with respect to the hardware module having the matching serial number, the action selected from (i) shutting down the hardware module and (ii) notifying a local system administrator.
1 Assignment
0 Petitions
Accused Products
Abstract
A technique verifies a that a module is from an approved vendor. The technique involves obtaining vendor data and a first magic code from a module (e.g., a small form factor pluggable component), and generating a second magic code based on the vendor data. The technique further involves outputting (i) a magic code valid signal when the second magic code matches the first magic code, and (ii) a magic code invalid signal when the second magic code does not match the first magic code. Operation of a computerized device having the module can be based on the valid and invalid signals (e.g., a voltage level, a bit that is set or cleared, a value in a register, etc.). For example, a supplier of the electronic device can configure software running on the computerized device to disable the module if the first and second magic codes do not match.
52 Citations
21 Claims
-
1. In a system having a plurality of network communications devices, each network communications device including a plurality of hardware modules, a method for verifying that the hardware modules are from an approved vendor, comprising:
-
i) at each network communications device, determining whether respective vendor data obtained from each hardware module of the network communications device is valid vendor data according to a vendor data checking procedure, wherein valid vendor data includes a valid vendor identifier and a valid module serial number; and ii) engaging in a counterfeit module detection process among the network communications devices, the counterfeit module detection process including (a) comparing respective valid module serial numbers from respective hardware modules of different ones of the network communications devices to identify duplicate valid module serial numbers among the network communications devices, each duplicate valid module serial number indicating that corresponding hardware modules from the different network communications devices are potentially counterfeit hardware modules not from an approved vendor, and (b) disabling operation of the potentially counterfeit hardware modules on each of the different network communications devices, wherein; (a) each of the network communications devices maintains a respective device module database containing vendor data obtained from hardware modules of the network communications device; (b) the system includes a service provider maintaining a central database containing vendor data for hardware modules of the network communications devices of the system, the network module database being populated with vendor data received from the device module databases of the network communications devices; (c) comparing respective valid module serial numbers from respective hardware modules of different ones of the network communications devices includes comparing valid module serial numbers stored in the central database; (d) the service provider is operative to generate alert messages to the network communications devices upon identifying duplicate valid module serial numbers, the alert messages inducing the disabling of the potentially counterfeit hardware modules; and (e) each network communications device is operative in response to each alert message from the service provider to; include a module serial number from the alert message in a list of module serial numbers maintained by the network communications device; compare the serial numbers of hardware modules in the network communications device with the module serial numbers in the list; and upon finding a match between a serial number of a hardware module in the network communications device with a module serial number in the list, take an action with respect to the hardware module having the matching serial number, the action selected from (i) shutting down the hardware module and (ii) notifying a local system administrator. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system, comprising:
-
a plurality of network communications devices, each network communications device including a plurality of hardware modules that may or may not be from an approved vendor, each network communications device being operative to determine whether respective vendor data obtained from each hardware module of the network communications device is valid vendor data according to a vendor data checking procedure, wherein valid vendor data includes a valid vendor identifier and a valid module serial number; and a system component operative to engage in a counterfeit module detection process among the network communications devices, the counterfeit module detection process including (a) comparing respective valid module serial numbers from respective hardware modules of different ones of the network communications devices to identify duplicate valid module serial numbers among the network communications devices, each duplicate valid module serial number indicating that the corresponding hardware modules from the different network communications devices are potentially counterfeit hardware modules not from an approved vendor, and (b) disabling operation of the potentially counterfeit hardware modules on each of the different network communications devices, wherein; (a) each of the network communications devices maintains a respective device module database containing vendor data obtained from hardware modules of the network communications device; (b) the system component includes a service provider maintaining a central database containing vendor data for hardware modules of the network communications devices of the system, the network module database being populated with vendor data received from the device module databases of the network communications devices; (c) the comparing of respective valid module serial numbers from respective hardware modules of different ones of the network communications devices includes comparing valid module serial numbers stored in the central database; (d) the service provider is operative to generate alert messages to the network communications devices upon identifying duplicate valid module serial numbers, the alert messages inducing the disabling of the potentially counterfeit hardware modules; and (e) each network communications device is operative in response to each alert message from the service provider to; include a module serial number from the alert message in a list of module serial numbers maintained by the network communications device; compare the serial numbers of hardware modules in the network communications device with the module serial numbers in the list; and upon finding a match between a serial number of a hardware module in the network communications device with a module serial number in the list, take an action with respect to the hardware module having the matching serial number, the action selected from (i) shutting down the hardware module and (ii) notifying a local system administrator. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A network communications device, comprising:
-
a plurality of hardware modules that each may or may not be from an approved vendor; and a controller operative to; i) determine whether respective vendor data obtained from each hardware module of the network communications device is valid vendor data according to a vendor data checking procedure, wherein valid vendor data includes a valid vendor identifier and a valid module serial number; and ii) engage in a counterfeit module detection process among the network communications devices, the counterfeit module detection process including (a) providing the valid module serial number to a system component that is operative to compare the valid module serial number with respective valid module serial numbers of other network communications devices to identify duplicate valid module serial numbers, each duplicate valid module serial number indicating that the hardware modules from the different network communications devices are potentially counterfeit hardware modules not from an approved vendor, and (b) disable operation of the potentially counterfeit hardware modules on the network communications device, wherein; (a) the network communications device maintains a device module database containing vendor data obtained from hardware modules of the network communications device; (b) the system component includes a service provider maintaining a central database containing vendor data for hardware modules of the network communications devices, the network module database being populated with vendor data received from the device module databases of the network communications devices; (c) the service provider is operative to compare respective valid module serial numbers from respective hardware modules of different ones of the network communications devices includes comparing valid module serial numbers stored in the central database; (d) the service provider is operative to generate alert messages to the network communications device upon identifying duplicate valid module serial numbers, the alert messages inducing the disabling of the potentially counterfeit hardware modules by the network communications device; and (e) the network communications device is operative in response to each alert message from the service provider to; include a module serial number from the alert message in a list of module serial numbers maintained by the network communications device; compare the serial numbers of hardware modules in the network communications device with the module serial numbers in the list; and upon finding a match between a serial number of a hardware module in the network communications device with a module serial number in the list, take an action with respect to the hardware module having the matching serial number, the action selected from (i) shutting down the hardware module and (ii) notifying a local system administrator. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification