SECURE MANAGEMENT ACCESS CONTROL FOR COMPUTERS, EMBEDDED AND CARD EMBODIMENT
First Claim
1. In a computer system having one or more processors, memory, one or more data buses, and one or more user data interfaces, a management apparatus for securing access to one or more device management functions provided by said computer system or said management apparatus and for providing for secure communication of management traffic between said devise management functions and one or more management function communication partners utilizing one or more communication networks, said management apparatus comprising:
- (a) one or more management processors for controlling access to said device management functions;
(b) one or more management interfaces for communication with said management processor, said management interfaces operatively coupled to said management processor and capable of being operatively coupled to one or more of said communication networks; and
(c) one or more operative couplings between said management processor and one or more of said data buses;
wherein access to said device management functions and communication of management traffic between said device management functions and said management function communication partners utilizes one or more of said management interfaces and said management processor.
4 Assignments
0 Petitions
Accused Products
Abstract
A computer network management apparatus and method for remotely managing a networked device. The apparatus and method includes a management processor which is in direct communication with the networked device. The apparatus and method provides access for remotely and securely managing a networked device. The apparatus and method further separates management communications from user communications to ensure the security of the management communications. The apparatus and method further includes network and power monitoring and notification systems. The apparatus and method further provides authentication and authorization capabilities for security purposes.
122 Citations
23 Claims
-
1. In a computer system having one or more processors, memory, one or more data buses, and one or more user data interfaces, a management apparatus for securing access to one or more device management functions provided by said computer system or said management apparatus and for providing for secure communication of management traffic between said devise management functions and one or more management function communication partners utilizing one or more communication networks, said management apparatus comprising:
-
(a) one or more management processors for controlling access to said device management functions;
(b) one or more management interfaces for communication with said management processor, said management interfaces operatively coupled to said management processor and capable of being operatively coupled to one or more of said communication networks; and
(c) one or more operative couplings between said management processor and one or more of said data buses;
wherein access to said device management functions and communication of management traffic between said device management functions and said management function communication partners utilizes one or more of said management interfaces and said management processor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A method of handling communications in a computer system having one or more processors, memory, one or more data buses, one or more user data interfaces, and one or more management apparatus wherein said computer system provides one or more device management functions to support remote management activities of said computer system generating management traffic between said device management functions and management function communication partners and further wherein said management apparatus comprising one or more management processor and one or more management interfaces and further wherein said management apparatus is operatively coupled to one or more of said data buses, the method comprising:
-
(a) handling said management traffic generated by said device management functions by;
(i) routing said management traffic generated by said device management functions from one or more of said processors of said computer system to one or more of said management processors;
(ii) testing said management traffic for allowability by said management processor according to a set of filtering rules; and
(iii) forwarding said management traffic that is acceptable to one or more of said management function communication partners using one or more of said management interfaces; and
(b) handling said management traffic generated by management function communication partners by;
(i) receiving said management traffic generated by said management function communication partners over one or more of said management interfaces;
(ii) testing said management traffic for allowability by said management processor according to a set of filtering rules; and
(iii) forwarding said management traffic that is acceptable to one or more of said processors of said computer system for processing;
-
-
23. A method of handling communications in a computer system having one or more processors, memory, one or more data buses, one or more user data interfaces, and one or more management apparatus wherein said management apparatus provides one or more device management functions to support remote management activities of said computer system generating management traffic between said device management functions and management function communication partners and further wherein said management apparatus comprising one or more management processor and one or more management interfaces and further wherein said management apparatus is operatively coupled to one or more of said data buses, the method comprising:
-
(a) handling said management traffic generated by said device management functions by;
(i) testing said management traffic for allowability by said management processor according to a set of filtering rules; and
(ii) forwarding said management traffic that is acceptable to one or more of said management function communication partners using one or more of said management interfaces; and
(b) handling said management traffic generated by management function communication partners by;
(i) receiving said management traffic generated by said management function communication partners over one or more of said management interfaces;
(ii) testing said management traffic for allowability by said management processor according to a set of filtering rules; and
(iii) processing said management traffic that is acceptable by one or more of said management processors.
-
Specification