专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08621567B2 Network security and applications to the fabric environment 有权
标题翻译：网络安全和应用到面料环境
公开(公告)号：US08621567B2
公开(公告)日：2013-12-31
申请号：US11198834
申请日：2005-08-05
申请人： James Kleinsteiber , Richard L. Hammons , Dilip Gunawardena , Hung Nguyen , Shankar Balasubramanian , Vidya Renganararayanan
发明人： James Kleinsteiber , Richard L. Hammons , Dilip Gunawardena , Hung Nguyen , Shankar Balasubramanian , Vidya Renganararayanan
IPC分类号： G06F21/00
CPC分类号： H04L63/08 , H04L63/0428 , H04L63/0823 , H04L63/0869 , H04L63/104 , H04L63/20 , H04L2463/102
摘要： A method and apparatus for securing networks, focusing on application in Fibre Channel networks. A combination of unique security techniques are combined to provide overall network security. Responsibility for security in the network is assigned to one or more designated entities. The designated entities deploy management information throughout the network to enhance security by modifying the capabilities and operational permissions of the devices participating in the network. For example, through network control: logical management access or physical I/O access may be limited on a per device or per I/O basis; and all devices and ports in the network operate only with other approved devices and ports. These designated entities can better manage network security by exploiting a unique link authentication system as well as a unique push-model secure distributed time service. The link authentication involves a multi-phase nonce exchange exploiting various derivations of the nonce and other information such as hashes and encryptions. The push-model secure time distribution departs from the traditional Fibre Channel pull mode time distribution and provides for secure and reliable distributed time so that various security attacks may be defeated.
摘要翻译：一种用于保护网络的方法和设备，专注于光纤通道网络中的应用。组合独特的安全技术，提供整体网络安全。将网络中的安全责任分配给一个或多个指定实体。指定实体在整个网络中部署管理信息，通过修改参与网络的设备的功能和操作许可来增强安全性。例如，通过网络控制：逻辑管理访问或物理I / O访问可能在每个设备或每个I / O的基础上受到限制; 并且网络中的所有设备和端口仅与其他已批准的设备和端口一起工作。这些指定实体可以通过利用独特的链路认证系统以及独特的推模型安全分发时间服务来更好地管理网络安全。链路认证涉及利用随机数的各种推导和其他信息（如散列和加密）的多阶段随机交换。推模型安全时间分配与传统的光纤通道拉模式时间分布不符，提供了安全可靠的分发时间，从而可能会破坏各种安全攻击。

2. 发明申请

US20060005233A1 Network security and applications to the fabric environment 有权
公开(公告)号：US20060005233A1
公开(公告)日：2006-01-05
申请号：US11198834
申请日：2005-08-05
申请人： James Kleinsteiber , Richard Hammons , Hung Nguyen , Shankar Balasubramanian , Vidya Renganararayanan
发明人： James Kleinsteiber , Richard Hammons , Hung Nguyen , Shankar Balasubramanian , Vidya Renganararayanan
IPC分类号： G06F15/16 , G06F17/30 , G06F7/04 , G06F7/58 , G06K19/00 , G06K9/00 , H04L9/32
CPC分类号： H04L63/08 , H04L63/0428 , H04L63/0823 , H04L63/0869 , H04L63/104 , H04L63/20 , H04L2463/102
摘要： A method and apparatus for securing networks, focusing on application in Fibre Channel networks. A combination of unique security techniques are combined to provide overall network security. Responsibility for security in the network is assigned to one or more designated entities. The designated entities deploy management information throughout the network to enhance security by modifying the capabilities and operational permissions of the devices participating in the network. For example, through network control: logical management access or physical I/O access may be limited on a per device or per I/O basis; and all devices and ports in the network operate only with other approved devices and ports. These designated entities can better manage network security by exploiting a unique link authentication system as well as a unique push-model secure distributed time service. The link authentication involves a multi-phase nonce exchange exploiting various derivations of the nonce and other information such as hashes and encryptions. The push-model secure time distribution departs from the traditional Fibre Channel pull mode time distribution and provides for secure and reliable distributed time so that various security attacks may be defeated.

3. 发明申请

US20080072309A1 NETWORK SECURITY AND APPLICATIONS TO THE FABRIC ENVIRONMENT 审中-公开
标题翻译：网络安全和应用于织物环境
公开(公告)号：US20080072309A1
公开(公告)日：2008-03-20
申请号：US11860228
申请日：2007-09-24
申请人： JAMES KLEINSTEIBER , Richard Hammons , Dilip Gunawardena , Hung Nguyen , Shankar Balasubramanian , Vidya Renganararayanan
发明人： JAMES KLEINSTEIBER , Richard Hammons , Dilip Gunawardena , Hung Nguyen , Shankar Balasubramanian , Vidya Renganararayanan
IPC分类号： G06F15/16 , H04L9/00
CPC分类号： H04L63/08 , H04L63/0428 , H04L63/0823 , H04L63/0869 , H04L63/104 , H04L63/20 , H04L2463/102
摘要： A method and apparatus for securing networks, focusing on application in Fibre Channel networks. A combination of unique security techniques are combined to provide overall network security. Responsibility for security in the network is assigned to one or more designated entities. The designated entities deploy management information throughout the network to enhance security by modifying the capabilities and operational permissions of the devices participating in the network. For example, through network control: logical management access or physical I/O access may be limited on a per device or per I/O basis; and all devices and ports in the network operate only with other approved devices and ports. These designated entities can better manage network security by exploiting a unique link authentication system as well as a unique push-model secure distributed time service. The link authentication involves a multi-phase nonce exchange exploiting various derivations of the nonce and other information such as hashes and encryptions. The push-model secure time distribution departs from the traditional Fibre Channel pull mode time distribution and provides for secure and reliable distributed time so that various security attacks may be defeated.
摘要翻译：一种用于保护网络的方法和设备，专注于光纤通道网络中的应用。结合独特的安全技术，提供整体网络安全。将网络中的安全责任分配给一个或多个指定实体。指定实体在整个网络中部署管理信息，通过修改参与网络的设备的功能和操作许可来增强安全性。例如，通过网络控制：逻辑管理访问或物理I / O访问可能在每个设备或每个I / O的基础上受到限制; 并且网络中的所有设备和端口仅与其他已批准的设备和端口一起工作。这些指定实体可以通过利用独特的链路认证系统以及独特的推模型安全分发时间服务来更好地管理网络安全。链路认证涉及利用随机数的各种推导和其他信息（如散列和加密）的多阶段随机交换。推模型安全时间分配与传统的光纤通道拉模式时间分布不符，提供了安全可靠的分发时间，从而可能会破坏各种安全攻击。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式