JP4609996B2 - 非トラステッド・サーバ環境におけるsan管理のためのセキュア・システムおよび方法 - Google Patents
非トラステッド・サーバ環境におけるsan管理のためのセキュア・システムおよび方法 Download PDFInfo
- Publication number
- JP4609996B2 JP4609996B2 JP2004561479A JP2004561479A JP4609996B2 JP 4609996 B2 JP4609996 B2 JP 4609996B2 JP 2004561479 A JP2004561479 A JP 2004561479A JP 2004561479 A JP2004561479 A JP 2004561479A JP 4609996 B2 JP4609996 B2 JP 4609996B2
- Authority
- JP
- Japan
- Prior art keywords
- san
- server
- san management
- adapter
- untrusted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1097—Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Storage Device Security (AREA)
- Hardware Redundancy (AREA)
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| EP02102852 | 2002-12-20 | ||
| PCT/EP2003/050895 WO2004057798A1 (en) | 2002-12-20 | 2003-11-25 | Secure system and method for san management in a non-trusted server environment |
Publications (3)
| Publication Number | Publication Date |
|---|---|
| JP2006510976A JP2006510976A (ja) | 2006-03-30 |
| JP2006510976A5 JP2006510976A5 (https=) | 2006-12-21 |
| JP4609996B2 true JP4609996B2 (ja) | 2011-01-12 |
Family
ID=32668894
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| JP2004561479A Expired - Fee Related JP4609996B2 (ja) | 2002-12-20 | 2003-11-25 | 非トラステッド・サーバ環境におけるsan管理のためのセキュア・システムおよび方法 |
Country Status (11)
| Country | Link |
|---|---|
| US (1) | US7593413B2 (https=) |
| EP (1) | EP1573962B1 (https=) |
| JP (1) | JP4609996B2 (https=) |
| KR (1) | KR100680626B1 (https=) |
| CN (1) | CN100375434C (https=) |
| AT (1) | ATE502457T1 (https=) |
| AU (1) | AU2003298322A1 (https=) |
| DE (1) | DE60336421D1 (https=) |
| ES (1) | ES2359558T3 (https=) |
| TW (1) | TWI245510B (https=) |
| WO (1) | WO2004057798A1 (https=) |
Families Citing this family (36)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4643198B2 (ja) * | 2004-07-28 | 2011-03-02 | 株式会社日立製作所 | 負荷分散コンピュータシステム、経路設定プログラム及びその方法 |
| US7346685B2 (en) * | 2004-08-12 | 2008-03-18 | Hitachi, Ltd. | Method and apparatus for limiting management operation of a storage network element |
| JP4580195B2 (ja) * | 2004-08-12 | 2010-11-10 | 株式会社日立製作所 | ファイバーチャネルスイッチを含むコンピュータシステムの管理方法、管理プログラム及びそのコンピュータシステム |
| JP4788124B2 (ja) * | 2004-09-16 | 2011-10-05 | 株式会社日立製作所 | データ処理システム |
| US8533777B2 (en) | 2004-12-29 | 2013-09-10 | Intel Corporation | Mechanism to determine trust of out-of-band management agents |
| US20060233174A1 (en) * | 2005-03-28 | 2006-10-19 | Rothman Michael A | Method and apparatus for distributing switch/router capability across heterogeneous compute groups |
| JP4609848B2 (ja) * | 2005-04-06 | 2011-01-12 | 株式会社日立製作所 | 負荷分散コンピュータシステム、経路設定プログラム及びその方法 |
| CN100547515C (zh) * | 2005-07-15 | 2009-10-07 | 联想(北京)有限公司 | 支持可信计算的虚拟机系统及在其上实现可信计算的方法 |
| US7599397B2 (en) * | 2005-12-27 | 2009-10-06 | International Business Machines Corporation | Obtaining multiple port addresses by a fibre channel switch from a network fabric |
| US8909758B2 (en) * | 2006-05-02 | 2014-12-09 | Cisco Technology, Inc. | Physical server discovery and correlation |
| US8176153B2 (en) * | 2006-05-02 | 2012-05-08 | Cisco Technology, Inc. | Virtual server cloning |
| US7706303B2 (en) * | 2006-06-26 | 2010-04-27 | Cisco Technology, Inc. | Port pooling |
| US8442958B2 (en) * | 2006-06-26 | 2013-05-14 | Cisco Technology, Inc. | Server change management |
| WO2008018055A2 (en) * | 2006-08-09 | 2008-02-14 | Neocleus Ltd | Extranet security |
| JP2010512584A (ja) | 2006-12-06 | 2010-04-22 | フュージョン マルチシステムズ,インク.(ディービイエイ フュージョン−アイオー) | 空データトークン指令を有する要求デバイスからのデータを管理する装置、システムおよび方法 |
| EP2130322B1 (en) * | 2007-03-21 | 2014-06-25 | Intel Corporation | Protection against impersonation attacks |
| WO2008114256A2 (en) * | 2007-03-22 | 2008-09-25 | Neocleus Ltd. | Trusted local single sign-on |
| US20080256185A1 (en) * | 2007-04-11 | 2008-10-16 | Netfirms, Inc. | Scalable web hosting network and methods for building and operating same |
| US7689587B1 (en) * | 2007-06-28 | 2010-03-30 | Emc Corporation | Autorep process to create repository according to seed data and at least one new schema |
| US7836226B2 (en) | 2007-12-06 | 2010-11-16 | Fusion-Io, Inc. | Apparatus, system, and method for coordinating storage requests in a multi-processor/multi-thread environment |
| US8474037B2 (en) * | 2008-01-07 | 2013-06-25 | Intel Corporation | Stateless attestation system |
| US8230435B2 (en) | 2008-02-12 | 2012-07-24 | International Business Machines Corporation | Authenticating a processing system accessing a resource |
| US7865587B1 (en) * | 2008-04-29 | 2011-01-04 | Netapp, Inc. | System and method for reassigning port names on storage controller to minimize host traffic disruption |
| US20090307705A1 (en) * | 2008-06-05 | 2009-12-10 | Neocleus Israel Ltd | Secure multi-purpose computing client |
| US8065422B2 (en) * | 2008-11-26 | 2011-11-22 | Netapp, Inc. | Method and/or apparatus for certifying an in-band management application of an external storage array |
| US8886672B2 (en) * | 2009-03-12 | 2014-11-11 | International Business Machines Corporation | Providing access in a distributed filesystem |
| US20100306834A1 (en) * | 2009-05-19 | 2010-12-02 | International Business Machines Corporation | Systems and methods for managing security and/or privacy settings |
| US9704203B2 (en) | 2009-07-31 | 2017-07-11 | International Business Machines Corporation | Providing and managing privacy scores |
| US20110055276A1 (en) * | 2009-08-26 | 2011-03-03 | Brocade Communications Systems, Inc. | Systems and methods for automatic inclusion of entities into management resource groups |
| US8762730B2 (en) | 2011-04-13 | 2014-06-24 | Lsi Corporation | System and method to establish and/or manage a trusted relationship between a host to storage array controller and/or a storage array to storage array controller |
| CN103001998A (zh) * | 2011-12-19 | 2013-03-27 | 深圳市安云信息科技有限公司 | 一种fc-san存储系统及提高光纤通道稳定性的方法 |
| US9430343B1 (en) * | 2012-05-07 | 2016-08-30 | Emc Corporation | Using affinity to mediate bias in a distributed storage system |
| US8938796B2 (en) | 2012-09-20 | 2015-01-20 | Paul Case, SR. | Case secure computer architecture |
| CN107181641B (zh) * | 2017-05-11 | 2020-05-26 | 苏州浪潮智能科技有限公司 | 一种用于服务器的Citrix系统认证测试方法和系统 |
| US11218447B2 (en) * | 2018-03-02 | 2022-01-04 | Disney Enterprises, Inc. | Firewall rule remediation for improved network security and performance |
| JP7570245B2 (ja) * | 2021-02-01 | 2024-10-21 | 株式会社日立製作所 | サーバ管理システム、サーバ管理方法及びサーバ管理プログラム |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6636981B1 (en) * | 2000-01-06 | 2003-10-21 | International Business Machines Corporation | Method and system for end-to-end problem determination and fault isolation for storage area networks |
| US7103653B2 (en) * | 2000-06-05 | 2006-09-05 | Fujitsu Limited | Storage area network management system, method, and computer-readable medium |
| JP4794068B2 (ja) * | 2000-06-05 | 2011-10-12 | 富士通株式会社 | ストレージエリア・ネットワーク管理システム |
| US6606690B2 (en) * | 2001-02-20 | 2003-08-12 | Hewlett-Packard Development Company, L.P. | System and method for accessing a storage area network as network attached storage |
| US20040233910A1 (en) * | 2001-02-23 | 2004-11-25 | Wen-Shyen Chen | Storage area network using a data communication protocol |
| EP1374056B1 (en) | 2001-03-01 | 2006-06-21 | Storeage Networking Technologies | Storage area network (san) security |
| US7099912B2 (en) * | 2001-04-24 | 2006-08-29 | Hitachi, Ltd. | Integrated service management system |
| US7349961B2 (en) * | 2001-12-07 | 2008-03-25 | Hitachi, Ltd. | Detecting configuration inconsistency in storage networks |
| US7194538B1 (en) * | 2002-06-04 | 2007-03-20 | Veritas Operating Corporation | Storage area network (SAN) management system for discovering SAN components using a SAN management server |
-
2003
- 2003-11-25 DE DE60336421T patent/DE60336421D1/de not_active Expired - Lifetime
- 2003-11-25 ES ES03796056T patent/ES2359558T3/es not_active Expired - Lifetime
- 2003-11-25 AU AU2003298322A patent/AU2003298322A1/en not_active Abandoned
- 2003-11-25 CN CNB200380103553XA patent/CN100375434C/zh not_active Expired - Fee Related
- 2003-11-25 AT AT03796056T patent/ATE502457T1/de not_active IP Right Cessation
- 2003-11-25 WO PCT/EP2003/050895 patent/WO2004057798A1/en not_active Ceased
- 2003-11-25 JP JP2004561479A patent/JP4609996B2/ja not_active Expired - Fee Related
- 2003-11-25 US US10/538,537 patent/US7593413B2/en not_active Expired - Fee Related
- 2003-11-25 EP EP03796056A patent/EP1573962B1/en not_active Expired - Lifetime
- 2003-11-25 KR KR1020057008956A patent/KR100680626B1/ko not_active Expired - Fee Related
- 2003-12-02 TW TW092133933A patent/TWI245510B/zh not_active IP Right Cessation
Also Published As
| Publication number | Publication date |
|---|---|
| TWI245510B (en) | 2005-12-11 |
| TW200423616A (en) | 2004-11-01 |
| EP1573962B1 (en) | 2011-03-16 |
| ATE502457T1 (de) | 2011-04-15 |
| KR100680626B1 (ko) | 2007-02-09 |
| EP1573962A1 (en) | 2005-09-14 |
| US7593413B2 (en) | 2009-09-22 |
| JP2006510976A (ja) | 2006-03-30 |
| KR20050086732A (ko) | 2005-08-30 |
| US20060114917A1 (en) | 2006-06-01 |
| DE60336421D1 (de) | 2011-04-28 |
| AU2003298322A1 (en) | 2004-07-14 |
| CN1714537A (zh) | 2005-12-28 |
| CN100375434C (zh) | 2008-03-12 |
| WO2004057798A1 (en) | 2004-07-08 |
| ES2359558T3 (es) | 2011-05-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP4609996B2 (ja) | 非トラステッド・サーバ環境におけるsan管理のためのセキュア・システムおよび方法 | |
| US8228820B2 (en) | Port expander for fibre channel fabrics in storage area networks | |
| US8135858B2 (en) | Isolation switch for fibre channel fabrics in storage area networks | |
| US7500069B2 (en) | System and method for providing secure access to network logical storage partitions | |
| US10135827B2 (en) | Secure access to remote resources over a network | |
| CN103597795B (zh) | 无限带宽(ib)网络中认证所发现的组件的身份的系统和方法 | |
| US20110280252A1 (en) | Managing Virtual Ports in an Information Processing System | |
| US7770208B2 (en) | Computer-implemented method, apparatus, and computer program product for securing node port access in a switched-fabric storage area network | |
| US20040025166A1 (en) | Server computer and a method for accessing resources from virtual machines of a server computer via a fibre channel | |
| US8713649B2 (en) | System and method for providing restrictions on the location of peer subnet manager (SM) instances in an infiniband (IB) network | |
| JP2004516590A (ja) | ネットワーク装置による不正アクセスを防止するための方法および装置 | |
| US7136907B1 (en) | Method and system for informing an operating system in a system area network when a new device is connected | |
| US20030200247A1 (en) | Server computer and a method for accessing resources from virtual machines of a server computer via a fibre channel | |
| US20060109850A1 (en) | IP-SAN network access control list generating method and access control list setup method | |
| WO2006096875A1 (en) | Smart tunneling to resources in a remote network | |
| Gandhi | An approach to secure storage area networks using Diffie Hellman Challenge Handshake Authentication Protocol and PCI express host bus adapter |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20061030 |
|
| A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20061030 |
|
| RD03 | Notification of appointment of power of attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7423 Effective date: 20090206 |
|
| A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20090929 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A821 Effective date: 20091027 Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20091027 |
|
| RD12 | Notification of acceptance of power of sub attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7432 Effective date: 20091027 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A821 Effective date: 20091029 |
|
| A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20091217 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A821 Effective date: 20100209 Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20100209 |
|
| TRDD | Decision of grant or rejection written | ||
| A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20101005 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A821 Effective date: 20101005 |
|
| RD14 | Notification of resignation of power of sub attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7434 Effective date: 20101005 |
|
| A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 |
|
| A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20101008 |
|
| FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20131022 Year of fee payment: 3 |
|
| R150 | Certificate of patent or registration of utility model |
Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
| LAPS | Cancellation because of no payment of annual fees |