Information security – Access control or authentication – Network
Reexamination Certificate
2005-12-27
2005-12-27
Morse, Gregory (Department: 2134)
Information security
Access control or authentication
Network
C713S153000, C709S245000, C709S246000, C709S249000
Reexamination Certificate
active
06981278
ABSTRACT:
A server including a dual channel communications module operable to establish a communication session between the server and a client is provided. The server may be operable to receive a dual channel communication packet from the client. In a particular embodiment, the dual channel communication packet may include a header in a data payload. The header includes a client external IP address, and the data payload includes an encoded port command having a client internal IP address and a client data port number. A codec operable to decode the port command may also be provided. The server may also include a translation module for retrieving the client external IP address from the header. In a particular embodiment, the server is operable to establish data channel coordinates including the client external IP address, the client data port number, a server internal IP address and a server data port number.
REFERENCES:
patent: 5793763 (1998-08-01), Mayes et al.
patent: 5958053 (1999-09-01), Denker
patent: 5983350 (1999-11-01), Minear et al.
patent: 6055236 (2000-04-01), Nessett et al.
patent: 6104716 (2000-08-01), Crichton et al.
patent: 6128298 (2000-10-01), Wootton et al.
patent: 6154839 (2000-11-01), Arrow et al.
patent: 6415329 (2002-07-01), Gelman et al.
patent: 6708219 (2004-03-01), Borella et al.
patent: 6751728 (2004-06-01), Gunter et al.
patent: 6781982 (2004-08-01), Borella et al.
patent: 2004/0010712 (2004-01-01), Hui et al.
patent: 909074 (1999-04-01), None
patent: WO 99/48261 (1999-09-01), None
Aboba, Bernard. “NAT and IPSEC”, Jul. 2000.
Allman, M. et al. “FTP Extension for IPv6 and NATs” (RFC2428), Sep. 1998.
Bellovin, S. “Firewall-Friendly FTP” (RFC1579), Feb. 1994.
Borella, Michael et al. “Distributed Network Address Translation”, Oct. 1998.
Briggs, Richard. “NAT FTP (was: Iptables and ipsec)”, Jul. 2000.
Egevang, K. et al. “The IP Network Address Translator (NAT)” (FRC1631), May 1994.
Herscovitz, Eli. “Secure Virtual Private Networks: The Future of Data Communications”, 1999 John Wiley & Sons.
Hoffman, P. “SMTP Service Extension for Secure SMTP over TLS” (RFC2487), Jan. 1999.
Huttunen, Ari. “draft-ipsec-esp-in-udp-00.txt”, Sep. 2000.
Kent, S. et al. “Security Architecture for the Internet Protocol” (RFC2401), Nov. 1998.
Kent, S. et al. “IP Encapsulating Security Payload (ESP)” (RFC2406), Nov. 1998.
Microsoft. “Unicast routing overview”, Feb. 2000.
Phifer, Lisa. “IP Security and NAT: Oil and Water?”, Jun. 2000.
O'Guin, Steven et al. “Application of Virtual Private Networking Technology to Standards-Based Management Protocols Across Heterogeneous Firewall-Protected Networks”, 1999 IEEE.
Srisuresh, P. et al. “Security for IP Network Address Translator (NAT) Domains”, Nov. 1998.
Srisuresh, P. “Security Model with Tunnel-mode IPsec for NAT Domains” (RFC2709), Oct. 1999.
Srisuresh, P. et al. “IP Network Address Translator (NAT) Terminology and Considerations” (RFC2663), Aug. 1999.
Stallings, William. “Network Security Essentials, Applications and Standards” Nov. 1999 (Pub) Jan. 2000 (Reg).
Stevens, W. Richard. TCP/IP Illustrated, vol. 1: The Protocols, 1994 Addison-Wesley.
Tsirtsis, George et al. “NAT Bypass for End 2 End ‘sensitive’ applications”, Jan. 1998.
Baptiste et al. “Transparent Routing between Ipv4/Ipv6 Networks”, Dec. 2002.
Broadband Reports. “Security>> 3. NAT Routers” <http://www.broadbandreports.com/faq/4638>.
Ford-Hutchinson, Paul. “FTP/TLS Friendly Firewalls”, Nov., 2000, <draft-fordh-ftp-ssl-firewall-00.txt>.
Indy Project. “How do I use FTP with SSL behind a NAT”, <http://www.indyproject.org/KB/index.html?ftpsslbehindnat.htm>.
Justin. “When NAT becomes NOT”, <http://www.dslreports.com/shownews/131>.
Kostick, Chris. “IP Masquerading with Linux”, 1996.
Lampe, Jonathan G. “MOVEit DMZ”, <http://www.stdnet.com/uploads/media/MOVEit-DMZ-FTPS-NAT-Whitepaper.PDF>.
Leledy, Ph. “FTP and NAT: solutions”, Sep. 2001, <http://daemonnews.org/200109/ftpnal.html>.
Mail-Production.com. “FTP Active and Passive Modes”, <http://mail-production.com/passive.html>.
Nystron, Thomas. “KTELNET Version 2.01”, Jul. 2000.
Oppenheimer, Priscilla. “Anallysis of the File Transfer Control Protocol (FTP)”, <http://www.troubleshootingnetworks.com/ftpinfo.html>.
Phifer, Lisa. “The Trouble with NAT”, Dec. 2000.
Postel et al. “File Transfer Protocol (FTP)”, Oct. 1985 <RFC 959>.
Raz et al. “An SNMP Application Level Gateway for Payload Address Translation”, Oct. 2000, <RFC 392>.
SSH. “Forwarding FTP”, <http://www.ssh.com/support/documentation/online/ssh/winhelp/32/Forwarding—FTP.html>.
Tsirtsis et al. “Network Address Translation—Protocol Translation (NAT-PT)”, Feb. 2000, <RFC 2766>.
Wikipedia. “Network Address Translation”.
CERT. “CERT Advisory CA-1997-27 FTP Bounce”, Dec. 1997, <http://www.cert.org/advisories/CA-1997-27.html>.
Ford-Hutchinson, Paul et al. “Securing FTP with TLS”, Jan. 2000, <draft-murray-auth-ftp-ssl-05.txt>.
Hobbit. “The FTP Bounce Attack”, Jul. 1995, <http://www.insecure.org
map/hobbit.ftpbounce.txt>.
Housley, R. et al. “Encryption using KEA and SKIPJACK”, Feb. 2000, RFC 2773.
Internet Security System. “advICE :Intrusions: 2001323”, <http://www.iss.net/security—center/advice/Intrusions/2001323/default.htm>.
Tsuchiya, Paul F. et al. “Extending the IP Internet Through Address Reuse”, ACM SIGCOMM.
M. Norifusa, “Internet security: difficulties and solutions,”International Journal of Medical Informatics, Elsevier Scientific Publishers, Shannon, IR, vol. 49, No. 1, Mar. 1998, XP004149463, ISSN: 1386-5056, 6 pages.
M. Leech, et al., “RFC 1928: SOCKS Protocol Version 5,”Requestion for CommentsOnline, Mar. 1996, XP002198150, retrieved from Internet May, 6, 2000, 9 page, Mar. 1998.
R. Hunt, “Internet/Intranet firewall security-policy, architecture and transaction services,”Computer Communications, Butterworths & Co. Publishers Ltd., GB, vol. 21, No. 13, Sep. 1, 1998, XP004146571, ISSN: 0141-3664, 17 pages.
“Sterling Commerce's CONNECT: Mailbox,”Software Economics Letter, Aug. 1999,Computer Economics, USA, vol. 8, No. 8, XP008002282, ISSN: 1065-6146, 2 pages.
Sterling Commerce, “Connect: Mailbox and Secure FTP The Revolution is On,”Sterling Commerce White PaperOnline, Dec. 31, 1999, XP002198149, retrieved from the Internet Apr. 8, 2002, 20 pages.
PCT International Search Report in International Application No. PCT/US 01/27595, date May 31, 2002, 7 pages.
Minnig Jeffrey T.
Pullen Glenn L.
Morse Gregory
Simitoski Michael J.
Sterling Commerce Inc.
LandOfFree
System and method for secure dual channel communication... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for secure dual channel communication..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for secure dual channel communication... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3500225