发明名称 |
STORAGE AREA NETWORK SYSTEM USING INTERNET PROTOCOL, SECURITY SYSTEM, SECURITY MANAGEMENT PROGRAM, AND STORAGE DEVICE |
摘要 |
PROBLEM TO BE SOLVED: To cancel vulnerability of security in an IP-SAN, and eliminate unauthorized access by spoofing. SOLUTION: Firewalls 23 are installed in servers SV-1 to n of authorized users and storage devices STR-1 to n, and a distributed firewall manager 27 is installed in an IP-SAN for their general management. The distributed firewall manager 27 acquires discovery domain information 29 of an iSNS 21, considers that nodes registered in the iSNS 21 is a regular user's node, and automatically creates security policy by a set of iSCSI name and portal information. The security policy is assigned to all firewalls 23 as a common policy, and performs access control to refuse a TCP connection request itself for unauthorized access. COPYRIGHT: (C)2005,JPO&NCIPI |
申请公布号 |
JP2005269486(A) |
申请公布日期 |
2005.09.29 |
申请号 |
JP20040082202 |
申请日期 |
2004.03.22 |
申请人 |
HITACHI LTD |
发明人 |
MIYAWAKI TOI;ISHIZAKI TAKESHI;KOBAYASHI EMIKO |
分类号 |
G06F13/10;G06F3/06;G06F12/00;G06F12/14;G06F13/00;G06F21/24;H04L9/00;H04L12/66;H04L29/06;H04L29/08;H04L29/12;(IPC1-7):H04L12/66 |
主分类号 |
G06F13/10 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|