| 发明名称 |
Techniques for Improved Run Time Trustworthiness |
| 摘要 |
Techniques are presented herein for attesting the trustworthiness of devices in a secure network during run-time operation. A security management device is configured to perform network trust attestation operations in order to generate an access control policy that defines access rights for a device in a network. The access control policy is assured by creating a hash value for the access control policy and then signing the hash value to generate a signed hash value. The signed hash value is integrated with the access control policy, and the access control policy is sent with the signed hash value to the operator device for verification. |
| 申请公布号 |
US2015365436(A1) |
申请公布日期 |
2015.12.17 |
| 申请号 |
US201414302681 |
申请日期 |
2014.06.12 |
| 申请人 |
Cisco Technology, Inc. |
发明人 |
Shenefiel Chris A.;Mantilla Montalvo Rafael;Brooks Roy M. |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
at a security management device configured to perform network trust attestation operations, generating an access control policy that defines access rights for a device in a network;
assuring the access control policy by creating a hash value for the access control policy;signing the hash value to generate a signed hash value;integrating the signed hash value with the access control policy; andsending the access control policy with the signed hash value to the device for verification. |
| 地址 |
San Jose CA US |
