US 11,757,853 B2
Method for restricting access to a management interface using standard management protocols and software
Balázs Lengyel, Budapest (HU); Joel Halpern, Leesburg, VA (US); and Ignacio Más Ivars, Tullinge (SE)
Assigned to Telefonaktiebolaget LM Ericsson (Publ), Stockholm (SE)
Appl. No. 17/269,429
Filed by Telefonaktiebolaget LM Ericsson (publ), Stockholm (SE)
PCT Filed Aug. 30, 2018, PCT No. PCT/IB2018/056644
§ 371(c)(1), (2) Date Feb. 18, 2021,
PCT Pub. No. WO2020/044082, PCT Pub. Date Mar. 5, 2020.
Prior Publication US 2021/0203646 A1, Jul. 1, 2021
Int. Cl. H04L 29/00 (2006.01); H04L 9/40 (2022.01); H04L 41/28 (2022.01)
CPC H04L 63/0435 (2013.01) [H04L 41/28 (2013.01); H04L 63/083 (2013.01); H04L 63/101 (2013.01)] 17 Claims
OG exemplary drawing
 
1. A method by a network device to restrict access to a management interface, the management interface being defined by a data model, and the network device being provided by an equipment provider to an equipment operator for use by the equipment operator, the method comprising:
receiving a first request from a management system to perform a first management operation that involves accessing a module of the data model, the first request specifying a security credential as a key for a security wrapper defined by the module as a list, the security credential being the key for the list, and the security credential being supplied to the management system by the equipment provider and being inaccessible to the equipment operator;
verifying whether the security credential specified by the first request is valid; and
performing the first management operation in response to verifying that the security credential specified by the first request is valid.