The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Sep. 14, 2004
Filed:
Mar. 27, 2000
John Hopprich, San Francisco, CA (US);
John G. Waclawsky, Fredrick, MD (US);
Dean Hiller, Shrub Oak, NY (US);
Cisco Technology, Inc., San Jose, CA (US);
Abstract
The system of the invention provides a unique address assignment mechanism and technique that allows an address server such as a DHCP server to receive requests for network addresses from computer systems or other requesting devices. Based on an identity of the requesting computer system, or on another criteria, the address server can select an address for use on the network from either a set of local addresses or one or more sets of guest addresses. If the address server identifies the requesting computer system as a guest computer system, then a guest address selected from at least one set of guest addresses is assigned and provided to that computer system, whereas if the address server identifies the requesting computer system a local computer system then the address server selects and assigns a local address (from the set of local addresses) to the requesting local computer system. Data communications devices in the network can be configured to selectively route data portions sent from computer systems depending upon if those data portions contain guest addresses or not. Selective transport provides, for example, restricted access to certain parts of the network if the data portion contains a guest address. If multiple sets of guest addresses are provided, data communications devices in the network can be configured to provide less restrictive access to data portions containing a guest address from one set of guest addresses, while also providing more restrictive access to data portions containing a guest address from another set of guest addresses. Security is also provided via a robust verification and authentication technique that allows two components to securely verify the identity of each other via key encryption techniques during the exchange of information. Also, an address server in a local network can verify the identify of a requesting computer system from a verification computer system in a remote domain with which the requesting computer system purports to be associated.