| US 7,542,468 B1 | ||
| Dynamic host configuration protocol with security | ||
| James Brian Sullivan Begley, Tampa, Fla. (US); Tony Thomas, Tampa, Fla. (US); and Franz Badias, Odessa, Fla. (US) | ||
| Assigned to Intuit Inc., Mountain View, Calif. (US) | ||
| Filed on Oct. 18, 2005, as Appl. No. 11/253,434. | ||
| Int. Cl. H04L 12/28 (2006.01); H04L 12/56 (2006.01); H04L 9/32 (2006.01); G06F 15/173 (2006.01); G06F 15/16 (2006.01); G06F 7/04 (2006.01); G06F 17/30 (2006.01); G06K 9/00 (2006.01) | ||
| U.S. Cl. 370—389 [709/225; 709/245; 726/4] | 15 Claims |
| 1. A method performed by a dynamic host configuration protocol (DHCP) security agent executed on a DHCP server to authenticate
a user of a client device prior to providing access to a communication network, the method comprising:
receiving a request from the client device for an IP address, the request including a Media Access Control (MAC) address of
the client device;
determining whether the MAC address is known to the DHCP server;
responsive to the MAC address not being known to the DHCP server, leasing to the client device, a fictitious IP address of
the client device, a fictitious IP address of the DHCP server, and a fictitious IP address of the DHCP server as an address
of a DNS servers wherein the fictitious IP address of the client device, the fictitious IP address of the DHCP server and
the fictitious IP address of the DHCP server as an address of the DNS server identify the devices on a fictitious network,
and wherein the fictitious IP address of the client device allows the device to route its requests only within the fictitious
network;
receiving a web request from the user of the client device at the DHCP server identified by the fictitious IP address of the
DHCP server;
providing an authentication page to the user;
prompting the user to provide user authentication information; and
responsive to authenticating the user, allowing the user to access the communication network.
|