发明名称 |
Integrity monitoring to detect changes at network device for use in secure network access |
摘要 |
In one embodiment, a method includes initiating integrity monitoring at a network device, continuously monitoring the network device to detect changes at the network device over a period of time, and transmitting information collected during said integrity monitoring to a security device for use in determining if the network device is allowed access to a trusted network. An apparatus and logic are also disclosed. |
申请公布号 |
US8997201(B2) |
申请公布日期 |
2015.03.31 |
申请号 |
US201213471420 |
申请日期 |
2012.05.14 |
申请人 |
Cisco Technology, Inc. |
发明人 |
Wotring Brian |
分类号 |
G06F21/00;H04L29/06;H04W12/10 |
主分类号 |
G06F21/00 |
代理机构 |
|
代理人 |
Kaplan Cindy |
主权项 |
1. A method comprising:
initiating integrity monitoring of a network device by an agent at the network device; continuously monitoring the network device by the agent to detect changes at the network device over a period of time that may indicate possible security threats or policy noncompliance; requesting access to a trusted network by the network device; and transmitting from the agent, a posture assessment report comprising information collected during said integrity monitoring including said changes detected at the network device over said period of time, to a security device located within a data path between the network device and the trusted network, for use in determining if the network device is allowed access to the trusted network; wherein monitoring comprises monitoring the network device before the network device requests access to the trusted network. |
地址 |
San Jose CA US |