Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network Access Control with Compliance Policy Check

a network access control and compliance policy technology, applied in the direction of transmission, electrical equipment, etc., can solve the problems of security issues still arising in the nac system of proprietary networks

Inactive Publication Date: 2018-12-06
OPSWAT INC
View PDF22 Cites 236 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Benefits of technology

The present invention provides a method and system for authentication and access control in a software-as-a-service server environment. The technical effects of the invention include improved security and compliance with data policies, as well as a better user experience through a more secure login process. The system involves a network access control server, an authentication application, and a device application running on the user device. The device application collects compliance data regarding the user device and sends it to the network access control server, which generates a compliance check result based on the compliance data and a security policy for the software-as-a-service server. The authentication application requests the compliance data from the network access control server and grants or denies access to the server based on the check result. The compliance data may include hardware, software, and configuration data of the user device, such as encryption state, malware infection state, and unwanted application presence. Overall, the invention enhances security and access control in a software-as-a-service server environment.

Problems solved by technology

However, security issues still arise with respect to NAC systems in proprietary networks with large numbers of users and many different, frequently changing, devices that may be used to access the proprietary network.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network Access Control with Compliance Policy Check
  • Network Access Control with Compliance Policy Check
  • Network Access Control with Compliance Policy Check

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0017]Reference now will be made in detail to embodiments of the disclosed invention, one or more examples of which are illustrated in the accompanying drawings. Each example is provided by way of explanation of the present technology, not as a limitation of the present technology. In fact, it will be apparent to those skilled in the art that modifications and variations can be made in the present technology without departing from the spirit and scope thereof. For instance, features illustrated or described as part of one embodiment may be used with another embodiment to yield a still further embodiment. Thus, it is intended that the present subject matter covers all such modifications and variations within the scope of the appended claims and their equivalents.

[0018]An example network computerized system 100 incorporating an embodiment of the present invention is shown in FIG. 1. The network computerized system 100 generally includes one or more network access control (NAC) server ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Embodiments of the present invention include methods involving an authentication application, a client application, or a combination of a network access control server with the authentication application and the client application. The client application collects compliance data regarding the user device and communicates the compliance data to the network access control server. The network access control server generates a compliance check result based on whether the compliance data indicates that the user device is compliant with a security policy for the software-as-a-service server. The authentication application grants access by the user device when the compliance check result is positive; and the authentication application denies access by the user device when the compliance check result is negative. In some embodiments, the compliance check result or a user device identifier is stored in a web browser cookie or a client certificate on the user device.

Description

CROSS REFERENCE TO RELATED APPLICATIONS[0001]This patent application is a continuation of U.S. patent application Ser. No. 15 / 069,459 filed Mar. 14, 2016, which is a continuation-in-part of U.S. patent application Ser. No. 14 / 572,699 filed Dec. 16, 2014, which are incorporated by reference herein.BACKGROUND OF THE INVENTION[0002]Network access control (NAC), also called network admission control, enhances or enables the security of a proprietary network (e.g., a Software-as-a-Service (SAAS) proprietary network server) by restricting the availability of network resources to endpoint user devices that comply with a defined security policy. In some cases, an NAC server performs authentication and authorization functions for the user devices of potential subscribers by verifying login information, e.g. username and password, when the user devices attempt to login to the proprietary network, e.g., through the Internet. In addition, the NAC server may restrict the data that each particula...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(United States)
IPC IPC(8): H04L29/06
CPCH04L63/10H04L63/0428H04L63/1416H04L63/0823H04L63/20
Inventor WINN, ADAM GREGORYCZARNY, BENJAMINMO, JIANPENGMIAO, YIYI
Owner OPSWAT INC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com