Electrical computers and digital processing systems: multicomput – Computer-to-computer session/connection establishing – Network resources access controlling
Reexamination Certificate
2006-08-29
2006-08-29
Maung, Zarni (Department: 2151)
Electrical computers and digital processing systems: multicomput
Computer-to-computer session/connection establishing
Network resources access controlling
C709S244000, C709S250000, C713S152000, C713S171000, C715S771000, C715S835000
Reexamination Certificate
active
07099947
ABSTRACT:
Access control approaches are disclosed wherein managed object in Simple Network Management Protocol (SNMP) Management Information Bases (MIBs) are accessed on a per-Virtual Private Network (VPN)-basis with no modifications to existing MIBs. A manager and an SNMP Agent operating in a VPN environment agree on a mapping between SNMP securityNames and VPN IDs. Under the agreed mapping, the target VPN of any SNMP management request can be unambiguously determined from the securityName alone. For each securityName, one or more MIB Views are configured using in a View-based Access Control Model MIB (VACM MIB) table; the MIB Views specify which portions of the managed object tree can be viewed or modified by a corresponding VPN. Thereafter, a VPN-enabled device provides SNMP requests in which a VPN ID value is passed in the securityName field of the context string in the community string. The receiving device extracts the securityName, locates corresponding MIB Views using the VACM MIB table, and allows the requesting device to access only objects that are identified in the MIB Views.
REFERENCES:
patent: 6055575 (2000-04-01), Paulsen et al.
patent: 6122639 (2000-09-01), Babu et al.
patent: 6363421 (2002-03-01), Barker et al.
patent: 6418472 (2002-07-01), Mi et al.
patent: 6421714 (2002-07-01), Rai et al.
patent: 6473863 (2002-10-01), Genty et al.
patent: 6502135 (2002-12-01), Munger et al.
patent: 6529513 (2003-03-01), Howard et al.
patent: 6539483 (2003-03-01), Harrison et al.
patent: 6598083 (2003-07-01), Remer et al.
patent: 6611863 (2003-08-01), Banginwar
patent: 6614791 (2003-09-01), Luciani et al.
patent: 6664978 (2003-12-01), Kekic et al.
patent: 6693878 (2004-02-01), Daruwalla et al.
patent: 6765900 (2004-07-01), Peirce et al.
patent: 6772226 (2004-08-01), Bommareddy et al.
patent: 6785728 (2004-08-01), Schneider et al.
patent: 6944183 (2005-09-01), Iyer et al.
patent: 2001/0008525 (2001-07-01), Piepkorn et al.
patent: 2001/0012775 (2001-08-01), Modzelesky et al.
patent: 2002/0099273 (2002-07-01), Bocionek et al.
patent: 2003/0061480 (2003-03-01), Le et al.
Case, J et al., Introduction to Version 3 of the Internet-standard Network Management Framework, RFC 2570, Apr. 1999.
Harrington et al., An Architecture for Describing SNMP Management Frameworks, RFC 2571, Apr. 1999□□.
Case, J et al., Message Processing and Dispatching for the Simple Network Management Protocol(SNMP), RFC 2572, Apr. 1999□□.
Levi, D et al., SNMP Applications, RFC 2573, Apr. 1999.
Blumenthal U., User-based Security Model (USM) for version 3 of the Simple Network Management Protocol(SNMPv3), RFC 2574, Apr. 1999.
Wijnen, B., View-based Access Control Model (VACM) for the Simple Network Management Protocol(SNMP), RFC 2575, Apr. 1999.
B. Wijnen, et al., “View-Based Access Control Model (VACM) for the Simple Network Management Protocol (SNMP)”, Apr. 1999, pp. 1-38.
J. Case, et al., “Message Processing and Dispatching for the Simple Network Management Protocol (SNMP)”, Apr. 1999, pp. 1-44.
D. Harrington, et al., “An Architecture for Describing SNMP Management Frameworks”, Apr. 1999, pp. 1-62.
J. Case, et al., “Introduction to Version 3 of the Internet-standard Network Management Framework”, Apr. 1999, pp. 1-23.
Francisco Dale
Nadeau Thomas D.
Cisco Technology Inc.
Hickman Palermo & Truong & Becker LLP
Maung Zarni
Tiv Backhean
LandOfFree
Method and apparatus providing controlled access of requests... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus providing controlled access of requests..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus providing controlled access of requests... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3627458