Title:
METHOD AND APPARATUS FOR NETWORK ASSESSMENT AND AUTHENTICATION
Document Type and Number:
WIPO Patent Application WO2002003178
Kind Code:
A3
Abstract:
Providing a user with assurance that a networked computer is secure, typically before completion of the log-in operation. This can be accomplished by extending the local log-in process to perform a host assessment of the workstation prior to requesting the user's credentials. If the assessment finds a vulnerability, the log-in process can inform the user that the machine is or may be compromised, or repair the vulnerability, prior to completion of the log in operation. By performing vulnerability assessment at the level of the workstation, a network server is able to determine whether the workstation is a "trusted" platform from which to accept authentication requests. If the vulnerability assessment shows that the workstation is compromised, or if the possibility of remote compromise is high, the network server can elect to fail the authentication on the grounds that the workstation cannot be trusted. Optionally, a vulnerability assessment tool may be able to repair the vulnerability of the workstation, and then allow the authentication to proceed.
Inventors:
IDE CURTIS E
BRASS PHILIP C
DOTY THEODORE R
BRASS PHILIP C
DOTY THEODORE R
Application Number:
PCT/US2001/017275
Publication Date:
March 20, 2003
Filing Date:
May 29, 2001
Export Citation:
Assignee:
INTERNET SECURITY SYSTEMS INC (US)
International Classes:
G06F21/00; G06F21/57; H04L29/06; (IPC1-7): G06F1/00
Domestic Patent References:
| WO1999000720A2 | 1999-01-07 | |||
| WO1999050734A1 | 1999-10-07 | |||
| WO1998041919A1 | 1998-09-24 | |||
| WO1999053391A1 | 1999-10-21 |
Foreign References:
| US5919257A | 1999-07-06 |
Download PDF:
Previous Patent: IDENTIFYING PERSONS SEEKING ACCESS TO COMPUTERS AND NETWORKS
Next Patent: ONLINE DIGITAL CONTENT LIBRARY
Next Patent: ONLINE DIGITAL CONTENT LIBRARY