CA2473326C - Method to block unauthorized access to tftp server configuration files - Google Patents

Method to block unauthorized access to tftp server configuration files Download PDF

Info

Publication number
CA2473326C
CA2473326C CA2473326A CA2473326A CA2473326C CA 2473326 C CA2473326 C CA 2473326C CA 2473326 A CA2473326 A CA 2473326A CA 2473326 A CA2473326 A CA 2473326A CA 2473326 C CA2473326 C CA 2473326C
Authority
CA
Canada
Prior art keywords
cable modem
authentication key
authentication
tftp
cable
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
CA2473326A
Other languages
French (fr)
Other versions
CA2473326A1 (en
Inventor
Andrew Danforth
Kenneth Gould
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Time Warner Cable Enterprises LLC
Original Assignee
Time Warner Cable Enterprises LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Time Warner Cable Enterprises LLC filed Critical Time Warner Cable Enterprises LLC
Priority to CA2473326A priority Critical patent/CA2473326C/en
Publication of CA2473326A1 publication Critical patent/CA2473326A1/en
Application granted granted Critical
Publication of CA2473326C publication Critical patent/CA2473326C/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Small-Scale Networks (AREA)

Abstract

The present invention teaches methods and systems for blocking unauthorized access to cable modem configuration files stored on trivial file transfer protocol (TFTP) servers. Filenames are modified by the DHCP to incorporate an authentication key (and optional cloaking) prior to transmission to the cable modem. When the TFTP server receives a modified filename, it also generates an authentication key. The authentication keys must match in order for the cable modem to receive the configuration file requested. At a minimum, authentication keys depend upon the un-modified filename, the cable modem IP address and a "coordination pass phrase" known to the TFTP server and DHCP server, but not known to the cable modem. Variations include optional cloaking, various actions performed for non-matching authentication keys, selection of authentication key generating algorithm and inclusion of cable modem MAC address in the authentication key for all cable modems or for premium service customer cable modems.
CA2473326A 2004-07-08 2004-07-08 Method to block unauthorized access to tftp server configuration files Expired - Lifetime CA2473326C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CA2473326A CA2473326C (en) 2004-07-08 2004-07-08 Method to block unauthorized access to tftp server configuration files

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CA2473326A CA2473326C (en) 2004-07-08 2004-07-08 Method to block unauthorized access to tftp server configuration files

Publications (2)

Publication Number Publication Date
CA2473326A1 CA2473326A1 (en) 2006-01-08
CA2473326C true CA2473326C (en) 2014-12-23

Family

ID=35610379

Family Applications (1)

Application Number Title Priority Date Filing Date
CA2473326A Expired - Lifetime CA2473326C (en) 2004-07-08 2004-07-08 Method to block unauthorized access to tftp server configuration files

Country Status (1)

Country Link
CA (1) CA2473326C (en)

Also Published As

Publication number Publication date
CA2473326A1 (en) 2006-01-08

Similar Documents

Publication Publication Date Title
WO2004023716A3 (en) Secure content delivery system
WO2007106687A3 (en) Role aware network security enforcement
WO2000068836A3 (en) Methods for managing the distribution of client bits to client computers
EP1494429A3 (en) Method for implementing secure corporate communication
IL172054A0 (en) Distributed filesystem network security extension
WO2007107868A3 (en) A method of securely login to remote servers
AU4267999A (en) Preventing unauthorized use of service
US9240993B1 (en) Method and system for in-field recovery of security when a certificate authority has been compromised
US20100064048A1 (en) Firmware/software validation
WO2007098314A3 (en) Techniques for authenticating a subscriber for an access network using dhcp
WO2003079642A3 (en) A ddns server, a ddns client terminal and a ddns system, and a web server terminal, its network system and an access control method
WO2006105491A3 (en) Distributed cryptographic managment for computer systems
HK1036707A1 (en) User specific automatic data redirection system
WO2003032603A3 (en) Ip hopping for secure data transfer
WO2006086929A8 (en) System and method of mobile anti-pharming and improving two factor usage
WO2000059177A8 (en) Server computer for guaranteeing files integrity
TWI264213B (en) Method and network for controlling access by a client of a network of computer systems
WO2008017008A3 (en) Systems and methods for policy based triggering of client-authentication of directory level granularity
WO2008109661A3 (en) Method and system for securely caching authentication elements
WO2003027924A1 (en) Content usage authority management system and management method
PL363770A1 (en) Method and system designed to authenticate user for sub-location of network location
WO2002037331A8 (en) System and method for hashing digital images
MY148705A (en) Method and system for securely provisioning a client device
WO2000030323A3 (en) Methods and apparatus for secure content delivery over broadband access networks
WO2007084863A3 (en) Privacy protection in communication systems

Legal Events

Date Code Title Description
EEER Examination request