Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Patent
1997-12-22
2000-03-07
Butler, Dennis M.
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
709227, 380 25, G06F 1214
Patent
active
060354054
ABSTRACT:
The present invention discloses a method for securely adding a new end station to a local area network (LAN) segmented into a number of virtual local area networks (VLANs). The invention is applicable to various types of LANs such as Ethernet and token ring. The LAN comprises an authentication server (AS) which interacts with each new end station before connection to a VLAN is allowed. The method involves the AS administering a test to the new end station, which may involve prompting the new end station for a password or asking it to encrypt a given number using a secret algorithm known only to the new end station and to the AS. The AS examines the results of this test and determines whether the new end station is permitted to join the VLAN. For added security, the new end station can verify authenticity of the AS by administering a test of its own, which may consist of prompting the AS for a password of its own or asking it to encrypt a new number, the new end station subsequently determining whether the AS is indeed genuine before beginning to transmit any further information. In this way, an end station cannot join a VLAN without authentication by the AS and a legitimate end station can verify whether the test it is asked to pass comes from a legitimate source, thereby avoiding network security breaches.
REFERENCES:
patent: 4823338 (1989-04-01), Chan et al.
patent: 5394402 (1995-02-01), Ross
patent: 5473599 (1995-12-01), Li et al.
patent: 5588119 (1996-12-01), Vincent et al.
patent: 5600644 (1997-02-01), Chang et al.
patent: 5621726 (1997-04-01), Murakimi
patent: 5751812 (1998-05-01), Anderson
patent: 5751967 (1998-05-01), Raab et al.
patent: 5752003 (1998-05-01), Hart
patent: 5764887 (1995-12-01), Kells et al.
patent: 5802047 (1996-05-01), Kinoshita
patent: 5802306 (1995-10-01), Hunt
patent: 5874964 (1996-10-01), Gille
patent: 5892912 (1996-10-01), Suzuki et al.
patent: 5892922 (1997-02-01), Lorenz
patent: 5940597 (1997-10-01), Chung
patent: 5974452 (1997-01-01), Karapetkov et al.
Gage William W. A.
Himbeault Lee
Wollensak Martin
Butler Dennis M.
Mai Rijue
Nortel Networks Corporation
LandOfFree
Secure virtual LANs does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Secure virtual LANs, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Secure virtual LANs will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-373223