Information security – Access control or authentication – Network
Reexamination Certificate
2005-11-01
2008-12-30
Moise, Emmanuel L (Department: 2137)
Information security
Access control or authentication
Network
C726S004000, C713S151000, C713S155000, C713S162000
Reexamination Certificate
active
07472411
ABSTRACT:
An endpoint uses Interactive Connectivity Establishment (ICE) to enable multimedia communications to traverse Network Address Translators (NATs). A security policy enables security devices and asymmetric security devices to forward ICE messages. A management device stores information about an initial message. Later, a security device receives an ICE message and sends and authorization request to the management device. The management device compares information in the authorization request to information in memory. According to the comparison, the management device authorizes the security device to forward the ICE message.
REFERENCES:
patent: 6865681 (2005-03-01), Nuutinen
patent: 2003/0061506 (2003-03-01), Cooper et al.
patent: 2004/0098619 (2004-05-01), Shay
patent: 2007/0124687 (2007-05-01), Wing et al.
Rosenberg et al., STUN—Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators, Network Working Group Request for Comments (IETF RFC) 3489, Mar. 2003.
Rosenberg: Interactive Connectivity Establishment (ICE): A Methodology for Network Address Translator (NAT) Traversal for Offer/Answer Protocols, IETF Internet Draft, Jul. 16, 2005.
Jennings et al., NAT Classification Test Results, BEHAVE Working Group, IETF Internet Draft, Aug. 14, 2005.
J. Rosenberg, http://www.ietf.org/internet-drafts/draft-ietf-mmusic-ice-06.txt, Oct. 19, 2005, 49 pages.
J. Rosenberg, http://www.ietf.org/internet-drafts/draft-ietf-mmusic-ice-05.txt, Jul. 17, 2005, 45 pages.
J. Rosenberg, http://www.jdrosen.net/papers/draft-rosenberg-mmusic-rtp-denialofservice-00.txt , Jun. 23, 2003, 13 pages.
International Searching Authority, International Search Report and Written Opinion, International Application No. PCT/US2006/026651, Nov. 7, 2006, pp. 3-10, International Searching Authority, European Patent Office.
Aoun, et al., NATFirewall NSLP Migration and Intra-Realm Communication Considerations, draft-aoun-nsis-nslp-natfw-migration-00, Internet Draft, Oct. 20, 2003, pp. 1-31, NSIS Working Group.
J. Rosenberg et al., “STUN—Simple Transversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs),” Network Working Group, Request for Comments (RFC) 3489, Mar. 2003, 44 pages.
J. Rosenberg, “Interactive Connectivity Establishment (ICE): A methodology for Network Address Translator (NAT) Transversal for Offer/Answer Protocols,” draft-ietf-mmusic-ice-05, Jul. 17, 2005, 45 pages.
C. Jennings, “NAT Classification Test Results,” draft-jennings-behave-test-results-00, IETF Internet Draft, Feb. 13, 2005, 11 pages.
M. Baugher, et al., The Secure Real-Time Transport Protocol (SRTP), Mar. 2004, p. 1-39.
V. Hilt, et al., A Delivery Mechanism for Session-Specific Session Initiation Protocol (SIP) Session Policies, Jul. 12, 2005, p. 1-14.
V. Hilt, et al., A Framework for Session Initiation Protocol (SIP) Session Policies, Oct. 16, 2005, p. 1-18.
Bell Robert T.
Wing Daniel G.
Callahan Paul
Cisco Technology Inc.
Moise Emmanuel L
Stolowitz Ford Cowger LLP
LandOfFree
Method for stateful firewall inspection of ICE messages does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method for stateful firewall inspection of ICE messages, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method for stateful firewall inspection of ICE messages will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4032983