Information security – Access control or authentication – Network
Reexamination Certificate
2011-03-15
2011-03-15
Pyzocha, Michael (Department: 2437)
Information security
Access control or authentication
Network
C726S011000, C726S014000, C713S153000, C713S160000, C709S227000, C709S228000
Reexamination Certificate
active
07908651
ABSTRACT:
A method of network communication and a network gateway are disclosed. The method and gateway operate between a secure network and remote clients by way of an intermediate transport network, such as the Internet. The remote clients connect through a NAT router so share a common source address on the intermediate transport network. In the secure network, the method analyses packets received from a remote client to identify packets that start a new secure communication session. Then, the method assigns a session-unique address and port to the new secure communication session. Subsequent packets are translated in the secure communication session by exchanging the source address with the local session address. Thus, the secure network perceived each session as originating from a distinct address and port, whereby several such sessions can coexist simultaneously.
REFERENCES:
patent: 6055236 (2000-04-01), Nessett et al.
patent: 6563824 (2003-05-01), Bhatia et al.
patent: 6892245 (2005-05-01), Crump et al.
patent: 7315888 (2008-01-01), Shibata
patent: 7787459 (2010-08-01), Yuan et al.
patent: 2002/0133602 (2002-09-01), Godwin et al.
patent: 2003/0135616 (2003-07-01), Carrico et al.
patent: 2003/0142823 (2003-07-01), Swander et al.
patent: 2003/0149899 (2003-08-01), Boden et al.
patent: 2003/0154306 (2003-08-01), Perry
patent: 2003/0212907 (2003-11-01), Genty et al.
patent: 2003/0233475 (2003-12-01), Maufer et al.
patent: 2004/0044778 (2004-03-01), Alkhatib et al.
patent: 2004/0049585 (2004-03-01), Swander
patent: 2004/0078600 (2004-04-01), Nilsen et al.
patent: 2004/0088537 (2004-05-01), Swander et al.
patent: 2004/0143758 (2004-07-01), Swander et al.
patent: 2004/0203749 (2004-10-01), Iyer et al.
patent: 2004/0205245 (2004-10-01), Le Pennec et al.
patent: 2005/0066035 (2005-03-01), Williams et al.
patent: 2005/0125532 (2005-06-01), Kimchi
patent: 2005/0210292 (2005-09-01), Adams et al.
patent: 2005/0216725 (2005-09-01), Vaarala et al.
patent: 2006/0173968 (2006-08-01), Vaarala et al.
patent: 2006/0185010 (2006-08-01), Sultan
T. Mallory and A. Kullberg, Incremental Updating of the Internet Checksum, IETF Network Working Group RFC 1141, Jan. 1990, Defense Advanced Research Projects Agency, Arlington, VA.
S. Kent and R. Atkinson, IP Encapsulating Security Payload (ESP), IETF Network Working Group RFC 1406, Nov. 1998, Defense Advanced Research Projects Agency, Arlington, VA.
D. Harkins and D. Carrel, The Internet Key Exchange (IKE), IETF Network Working Group RFC 2409, Nov. 1998, Defense Advanced Research Projects Agency, Arlington, VA.
T. Kivinen, B. Swander, A. Huttunen, and V. Volpe, Negotiation of NAT-Traversal in the IKE, IETF Network Working Group RFC 3947, Jan. 2005, Defense Advanced Research Projects Agency, Arlington, VA.
A. Huttunen, B. Swander, V. Volpe, L. DiBurro, and M. Stenberg, UDP Encapsulation of IPsec ESP Packets, IETF Network Working Group RFC 3948, Jan. 2005, Defense Advanced Research Projects Agency, Arlington, VA.
Asavie R&D Limited
Branske Hilary
Maynard Jeffrey C.
Pyzocha Michael
Stone Gregory M.
LandOfFree
Method of network communication does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method of network communication, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method of network communication will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2764026