System and method for supporting persistent secure management key (M—Key) in a network environment

US 9,852,199 B2
Filed: 05/10/2013
Issued: 12/26/2017
Est. Priority Date: 05/10/2012
Status: Active Grant

First Claim

Patent Images

1. A method for supporting security management by a subnet manager (SM) on a network switch in a network environment, the network switch comprising a switch chip comprising a switch chip memory and a processor coupled with the switch chip memory, the method comprising:

setting up a management key (M_Key) on the switch chip memory of the switch chip in the network switch in the network environment;

operating a local monitoring daemon on the network switch;

operating a transactional command line interface (CLI) on the network switch;

persistently storing, via the local monitoring daemon on the network switch, a current M_Key to the switch chip memory of the switch chip as a persistent secret M_Key;

prior to enabling external connectivity between the network switch and the network environment following the network switch becoming unmanageable by the SM relative to secure communication between the network switch and the network environment, initializing the M_Key set up on the switch chip memory of the switch chip to match that of the persistent secret M_Key persistently stored to the switch chip memory of the switch chip by the local monitoring daemon;

preventing any external links of the network switch relative to the network environment from becoming operational unless;

the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch is a recognized M_Key in the network environment, ora refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is a recognized M_Key in the network environment, orthe refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is an M_Key recognized by the local SM; and

authenticating the network switch relative to the network environment by the local SM using;

the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip, orthe refreshed M_Key received via the CLI.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method can support security management in a network environment. A switch in the network environment includes a switch chip, which is configured with a secure management key (M_Key) prior to one or more external links becoming operational. Furthermore, a local daemon in the switch can monitor the secure M_key on the switch chip, and persistently store a current M_key used by a local subnet manager (SM). The current M_key is a state that is dynamically updated in a fabric in the network environment.

Citations

20 Claims

1. A method for supporting security management by a subnet manager (SM) on a network switch in a network environment, the network switch comprising a switch chip comprising a switch chip memory and a processor coupled with the switch chip memory, the method comprising:
- setting up a management key (M_Key) on the switch chip memory of the switch chip in the network switch in the network environment;
  
  operating a local monitoring daemon on the network switch;
  
  operating a transactional command line interface (CLI) on the network switch;
  
  persistently storing, via the local monitoring daemon on the network switch, a current M_Key to the switch chip memory of the switch chip as a persistent secret M_Key;
  
  prior to enabling external connectivity between the network switch and the network environment following the network switch becoming unmanageable by the SM relative to secure communication between the network switch and the network environment, initializing the M_Key set up on the switch chip memory of the switch chip to match that of the persistent secret M_Key persistently stored to the switch chip memory of the switch chip by the local monitoring daemon;
  
  preventing any external links of the network switch relative to the network environment from becoming operational unless;
  
  the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch is a recognized M_Key in the network environment, ora refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is a recognized M_Key in the network environment, orthe refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is an M_Key recognized by the local SM; and
  
  authenticating the network switch relative to the network environment by the local SM using;
  
  the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip, orthe refreshed M_Key received via the CLI.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method according to claim 1, further comprising:
    - initializing the M_Key of the switch to the persistent secret M_Key prior to enabling external link training, when the switch is rebooted.
  - 3. The method according to claim 1, further comprising:
    - configuring a persistence mode for the switch using a management configuration backup/restore.
  - 4. The method according to claim 1, further comprising:
    - persistently storing, as the current M_Key, a current M_Key used by a local subnet manager (SM),wherein the current M_Key used by the local SM is a state that is dynamically updated in a fabric in the network environment.
  - 5. The method according to claim 1, further comprising:
    - using an explicit command line interface (CLI) command to update the switch chip with a current local subnet manager (SM) value or with a value known to the local SM, when the switch becomes unmanageable.
  - 6. The method according to claim 1, further comprising:
    - adding a stale M_Key value to a list of known M_Key values, so that a local subnet manager (SM) can handle the stale M_Key using a SM level update.
  - 7. The method according to claim 1, further comprising:
    - ensuring that all switches in the network environment have a correct active M_Key value before completing an upgrade/configure change.
  - 8. The method according to claim 1, further comprising:
    - using, via the local daemon, a periodic get operation to retrieve the secure M_Key on the switch chip.
  - 9. The method according to claim 8, further comprising:
    - allowing the get operation to be subnet management packet (SMP) based and to use an out-of-band (OOB) interface of the switch chip.
  - 10. The method according to claim 9, further comprising:
    - configuring a poll frequency of the periodic get operation to be high enough to guarantee that no lease time expiration of the persistent secret M_Key happens independent of local subnet manager (SM) activity.

11. A system for supporting security management by a subnet manager (SM) on a network switch in a network environment, the system comprising:
- one or more processors;
  
  a local monitoring daemon, running on the one or more processors;
  
  a transactional command line interface (CLI) running on the one or more processors; and
  
  a switch chip in a switch comprising a switch chip memory operatively coupled with the one or more processors,wherein the switch chip memory of the switch chip is configured with a management key (M_Key),wherein the local monitoring daemon operates to persistently store a current M_key to the switch chip memory of the switch chip as a persistent secret M_Key,wherein prior to enabling one or more external links between the network switch and the network environment a following the network switch becoming unmanageable by the SM relative to secure communication between the network switch and the network environment, the M_Key configured on the switch chip memory of the switch chip is initialized to match the persistent secret M_Key persistently stored to the switch chip memory of the switch chip by the local monitoring daemon,wherein any external links of the network switch are prevented from becoming operational relative to the network environment unless;
  
  the persistent secret M_Key initialized to the M_Key configured on the switch chip memory of the switch is a recognized M_Key in the network environment, ora refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key configured on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is a recognized M_Key in the network environment, orthe refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key configured on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is an M_Key recognized by the local SM,wherein the network switch is authenticated relative to the network environment by the local SM using;
  
  the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip, orthe refreshed M_Key received via the CLI.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The system according to claim 11, wherein:
    - when the switch is rebooted, the M_Key of the switch is selectively initialized to the persistent secret M_Key persistently stored in the switch chip prior to enabling external link training.
  - 13. The system according to claim 11, wherein:
    - a persistence mode can be configured for the switch using a management configuration backup/restore.
  - 14. The system according to claim 11, wherein:
    - the local daemon operates to persistently store, as the secure M_Key, a current M_Key used by a local subnet manager (SM),wherein the current M_Key is a state that is dynamically updated in a fabric in the network environment.
  - 15. The system according to claim 11, wherein:
    - an explicit command line interface (CLI) command is selectively used to update the secure M_Key on the switch chip with a current local subnet manager (SM) value or with a value known to the SM, when the switch becomes unmanageable.
  - 16. The system according to claim 11, wherein:
    - a stale M_Key value can be added to a list of known M_Key values so that a local subnet manager (SM) can handle the stale M_Key using a SM level update.
  - 17. The system according to claim 11, wherein:
    - all switches in the network environment operate to have a correct active M_Key value before completing an upgrade/configure change.
  - 18. The system according to claim 11, wherein:
    - the local daemon operates to use a periodic get operation to retrieve the secure M_Key value on the switch chip,wherein the get operation is subnet management packet (SMP) based and uses an out-of-band (00B) interface of the switch chip.
  - 19. The system according to claim 18, wherein:
    - the periodic get operation is configured with a poll frequency that is high enough to guarantee that no lease time expiration of the secure M_Key happens independent of local subnet manager (SM) activity.

20. A non-transitory machine readable storage medium having instructions stored thereon that when executed cause a system to perform steps for supporting security management by a subnet manager (SM) on a network switch in a network environment, the network switch comprising a switch chip comprising a switch chip memory and a processor coupled with the switch chip memory, the steps comprising:
- setting up a management key (M_Key) on the switch chip memory of the switch chip in the network switch in the network environment;
  
  operating a local monitoring daemon on the network switch;
  
  operating a transactional command line interface (CLI) on the network switch;
  
  persistently storing, via the local monitoring daemon on the network switch, the secure a current M_Key to the switch chip memory of the switch chip as a persistent secret M_Key;
  
  prior to enabling external connectivity between the network switch and the network environment following the network switch becoming unmanageable by the SM relative to secure communication between the network switch and the network environment, initializing the M_Key set up on the switch chip memory of the switch chip to match that of the persistent secret M_Key persistently stored to the switch chip memory of the switch chip by the local monitoring daemon;
  
  preventing any external links of the network switch relative to the network environment from becoming operational unless;
  
  the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch is a recognized M_Key in the network environment, ora refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is a recognized M_Key in the network environment, orthe refreshed M_Key, selectively received via the CLI operating on the network switch responsive to the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip being an unrecognized M-Key in the network environment, is an M_Key recognized by the local SM; and
  
  authenticating the network switch relative to the network environment by the local SM using;
  
  the persistent secret M_Key initialized to the M_Key set up on the switch chip memory of the switch chip, orthe refreshed M_Key received via the CLI.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Johnsen, Bjrn Dag, Moxnes, Dag Georg, Hodoba, Predrag
Primary Examiner(s)
Taylor, Nicholas
Assistant Examiner(s)
PENA-SANTANA, TANIA M

Application Number

US13/892,152
Publication Number

US 20130304908A1
Time in Patent Office

1,691 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/27   Replication, distribution o...

G06F 16/278   Data partitioning, e.g. hor...

H04L 41/00   Arrangements for maintenanc...

H04L 41/046   comprising network manageme...

H04L 41/0806   for initial configuration o...

H04L 41/0873   Checking configuration conf...

H04L 41/24   using dedicated network man...

H04L 43/00   Arrangements for monitoring...

H04L 49/358   Infiniband Switches

H04L 63/061   for key exchange, e.g. in p...

H04L 63/20   for managing network securi...

H04L 67/1051   Group master selection mech...

System and method for supporting persistent secure management key (M—Key) in a network environment

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for supporting persistent secure management key (M—Key) in a network environment

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links