Method and system for including network security information in a frame
First Claim
Patent Images
1. A method comprising:
- receiving an authentication request at an authentication server, whereinthe authentication server is configured to receive the authentication request from a network device by virtue of comprising a network interface configured to be communicatively coupled to the network device,the authentication request comprisesan identifier, andthe identifier is configured to identify an entity requesting authentication via the network device;
authenticating the entity, whereinthe authenticating comprisesdetermining network security information for the entity, wherein the determining uses the identifier,the network security information comprises a user group identifier,the user group identifier is configured to be used to maintain security of a network to which the network device is communicatively coupled, by virtue of being configured to be included in a secure portion of a frame, andthe secure portion of the frame is secured using frame security information of the frame; and
sending a response to the network device via the network interface, whereinthe response comprisesthe network security information.
0 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for including network security information in a frame is disclosed. Network security information is included in a secure portion of overhead of a frame. The network security information is configured to facilitate network security. A network device configured to process a frame is also disclosed. The frame includes frame security information and network security information. The frame security information is configured to facilitate securing a portion of overhead of the frame, and the network security information is located in the secure portion of the overhead of the frame and is configured to facilitate network security.
97 Citations
20 Claims
-
1. A method comprising:
-
receiving an authentication request at an authentication server, wherein the authentication server is configured to receive the authentication request from a network device by virtue of comprising a network interface configured to be communicatively coupled to the network device, the authentication request comprises an identifier, and the identifier is configured to identify an entity requesting authentication via the network device; authenticating the entity, wherein the authenticating comprises determining network security information for the entity, wherein the determining uses the identifier, the network security information comprises a user group identifier, the user group identifier is configured to be used to maintain security of a network to which the network device is communicatively coupled, by virtue of being configured to be included in a secure portion of a frame, and the secure portion of the frame is secured using frame security information of the frame; and sending a response to the network device via the network interface, wherein the response comprises the network security information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A computer networking system comprising:
an authentication server, comprising a processor, a network interface, coupled to the processor, a non-transitory computer-readable storage medium, coupled to the processor, and a plurality of instructions, encoded in the non-transitory computer-readable storage medium and configured to cause the processor to receive an authentication request at an authentication server, wherein
the authentication server is configured to receive the authentication request from a network device by virtue of comprising a network interface configured to be communicatively coupled to the network device,
the authentication request comprisesan identifier, and
the identifier is configured to identify an entity requesting authentication via the network device,authenticate the entity, wherein
the authenticating comprisesdetermining network security information for the entity, wherein
the determining uses the identifier,
the network security information comprises a user group identifier,
the user group identifier is configured to be used to maintain security of a network to which the network device is communicatively coupled, by virtue of being configured to be included in a secure portion of a frame, and
the secure portion of the frame is secured using frame security information of the frame, andsend a response to the network device via the network interface, wherein
the response comprisesthe network security information. - View Dependent Claims (16, 17, 18, 19)
-
20. A computer program product comprising:
-
a plurality of instructions, comprising a first set of instructions, executable on a network device, configured to receive an authentication request at an authentication server, wherein the authentication server is configured to receive the authentication request from a network device by virtue of comprising a network interface configured to be communicatively coupled to the network device, the authentication request comprises an identifier, and the identifier is configured to identify an entity requesting authentication via the network device, a second set of instructions, executable on the network device, configured to authenticate the entity, wherein the authenticating comprises determining network security information for the entity, wherein the determining uses the identifier,
the network security information comprises a user group identifier,
the user group identifier is configured to be used to maintain security of a network to which the network device is communicatively coupled, by virtue of being configured to be included in a secure portion of a frame, and
the secure portion of the frame is secured using frame security information of the frame,a third set of instructions, executable on the network device, configured to send a response to the network device via the network interface, wherein the response comprises
the network security information; anda non-transitory computer-readable storage medium, wherein the instructions are encoded in the non-transitory computer-readable storage medium.
-
Specification