Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Reexamination Certificate
2007-10-30
2007-10-30
Moazzami, Nasser (Department: 2136)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
C726S006000, C713S184000, C709S222000
Reexamination Certificate
active
10089506
ABSTRACT:
A system and method for initializing a SNMP agent in SNMPv3 mode. In one aspect of the invention, a method is provided that allows an operator to securely enter the initial SNMPv3 privacy and authentication keys into a SNMPv3 device and cause the device to enter in SNMPv3 mode. The SNMP manager and SNMP agent both generate an associated random number and public value. The SNMP manager passes its public value to the SNMP agent in a configuration file, which causes a proprietary MIB element in the SNMPv3 device to be set with the public value of the SNMP manager. The SNMP manager reads the public value of the SNMP agent through a SNMP request using an initial valid user having access to the public value of the SNMP agent. The SNMP agent and SNMP manager each independently compute a shared secret using the Diffie-Hellman key exchange protocol. The SNMP manager and SNMP agent each independently convert the shared secret into the same readable password, convert the readable password into the same secret key and set the initial authentication key and the initial privacy key to the value of the secret key.
REFERENCES:
patent: 6044468 (2000-03-01), Osmond
patent: 6047072 (2000-04-01), Field et al.
patent: 6067621 (2000-05-01), Yu et al.
patent: RE37178 (2001-05-01), Kingdon
patent: 6263437 (2001-07-01), Liao et al.
patent: 6292790 (2001-09-01), Krahn et al.
patent: 6539479 (2003-03-01), Wu
patent: 6757825 (2004-06-01), MacKenzie et al.
patent: 7047408 (2006-05-01), Boyko et al.
Cryptography and Network Security Principles and Practices, William Stallings, pp. 190-192, 454-457, Second Edition, Prentice Hall, 1998.
Passwords—Strengths and Weaknesses, Gary C Kessler, pp. 1-8, Auerbach, 1997.
SNMPv3: A Security Enhancement for SNMP, William Stallings, pp. 2-17, IEEE, 1998.
SNMPv3: A security enhancement for SNMP, william stallings, IEEE, 1998.
Diffie-Helman key change MIB, pp. 1-14, Michael C StJohns, Internet draft, 1998.
Internet Security Architecture, Refik Molva, Computer networks, 1999.
Key Derivation for Network Management Applications, pp. 26-29, Uri Blumenthal et al, IEEE, 1997.
Key Derivation for Network Management Application, Uri Blumenthal et al, pp. 26-29, IEEE, 1997.
O. Cherakaoui, N. Rico and A. Serhrouchni, “SNMPv3 can still be simple?”, Proceedings of the Sixth IFIP/IEEE International Syposium on Integrated Network Management, May 24-29, 1999, pp. 501-515.
C. Wenli, J. Nitin and S. Singh, “ANMP: Ad Hoc Network Management Protocol”, IEEE Journal Sel. Areas Commun. (USA), IEEE Journal on Selected Areas in Communications, Aug. 1, 1999, pp. 1506-1531.
R. Sellin, “Fortsetzung einer Erfolgsstory. Architektur und Funktionalitaet von SNMP Version 3”, Net—Zeitschrift Fuer Komunikationalsmanagement, de, Huthig Verlag, Heilderberg, vol. 53, No. 5, 1999, pp. 56-61.
R. Grimm et al., “Security policies in OSI-management experiences from the DeTeBerkom project BMSsec”, Computer Networks and ISDN Systems, NL, North Holland Publishing, Amsterdam, vol. 28, No. 4, Feb. 1, 1996, pp. 499-511.
Abedin Shanto M Z
Eriksen Guy H.
Moazzami Nasser
Thomas Licensing
LandOfFree
System and method for initializing a simple network... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for initializing a simple network..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for initializing a simple network... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3830269