Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
2006-12-12
2006-12-12
Sheikh, Ayaz (Department: 2131)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
C713S155000, C713S152000, C713S160000, C713S150000, C714S004110, C709S228000
Reexamination Certificate
active
07149892
ABSTRACT:
A method for secure communications between a client and one of a plurality of servers performed on an intermediary device coupled to the client and said plurality of servers. In one aspect, the method comprises: establishing an open communications session between the intermediary device and the client via an open network; negotiating a secure communications session with the client; establishing an open communications session with said one of said plurality of servers via a secure network; receiving encrypted data from the client via the secure communications session; decrypting encrypted application data; forwarding decrypted application data to the server via the secure network; receiving application data from the server via the secure network; encrypting the application data; and sending encrypted application data to the client. In a further aspect, an apparatus including a network interface communicating with the public network and the secure network at least one processor, programmable dynamic memory addressable by the processor, and a communications channel coupling the processor, memory and the network communications interface is provided. The apparatus further includes a proxy TCP communications engine, a proxy SSL communications engine, a server TCP communications engine; and a packet data encryption and decryption engine.
REFERENCES:
patent: 5293424 (1994-03-01), Holtey et al.
patent: 5613136 (1997-03-01), Casavant et al.
patent: 5721855 (1998-02-01), Hinton et al.
patent: 5825890 (1998-10-01), Elgamal et al.
patent: 5841873 (1998-11-01), Lockhart et al.
patent: 5978918 (1999-11-01), Scholnick et al.
patent: 6009502 (1999-12-01), Boeuf
patent: 6052728 (2000-04-01), Fujiyama et al.
patent: 6052785 (2000-04-01), Lin et al.
patent: 6094485 (2000-07-01), Weinstein et al.
patent: 6101543 (2000-08-01), Alden et al.
patent: 6157955 (2000-12-01), Narad et al.
patent: 6223260 (2001-04-01), Gujral et al.
patent: 6240513 (2001-05-01), Friedman et al.
patent: 6253337 (2001-06-01), Maloney et al.
patent: 6373857 (2002-04-01), Ma
patent: 6374329 (2002-04-01), McKinney et al.
patent: 6377990 (2002-04-01), Slemmer et al.
patent: 6389462 (2002-05-01), Cohen et al.
patent: 6397259 (2002-05-01), Lincke et al.
patent: 6400724 (2002-06-01), Yao
patent: 6405289 (2002-06-01), Arimilli et al.
patent: 6415329 (2002-07-01), Gelman et al.
patent: 6434687 (2002-08-01), Huppenthal
patent: 6442687 (2002-08-01), Savage
patent: 6449658 (2002-09-01), Lafe et al.
patent: 6470027 (2002-10-01), Birrell, Jr.
patent: 6473425 (2002-10-01), Bellaton et al.
patent: 6484257 (2002-11-01), Ellis
patent: 6490251 (2002-12-01), Yin et al.
patent: 6539494 (2003-03-01), Abramson et al.
patent: 6578074 (2003-06-01), Bahlmann
patent: 6584567 (2003-06-01), Bellwood et al.
patent: 6598167 (2003-07-01), Devine et al.
patent: 6606708 (2003-08-01), Devine et al.
patent: 6654344 (2003-11-01), Toporek et al.
patent: 6681327 (2004-01-01), Jardin
patent: 6732175 (2004-05-01), Abjanic
patent: 6732269 (2004-05-01), Baskey et al.
patent: 6785719 (2004-08-01), Jacobson et al.
patent: 6799202 (2004-09-01), Hankinson et al.
patent: 6820215 (2004-11-01), Harper et al.
patent: 6952768 (2005-10-01), Wray
patent: 6993651 (2006-01-01), Wray et al.
patent: 2001/0042190 (2001-11-01), Tremblay et al.
patent: 2002/0007443 (2002-01-01), Gharachorloo et al.
Freier, Karlton, Kocher, The SSL Protocol Version 3.0, Nov. 18, 1996, Netscape Communications, Transport Layer Security Working Group.
Harmon, William “32-Bit Bus Master Ethernet Interface for the 68030 (Using the Macintosh SE/30),” Apr. 1993.
Troutman, Denise “DP83916EB-AT: High Performance AT Compatible Bus Master Ethernet Adapter Card,” Nov. 1992.
“Why Do We Need Cryptographic Accelerators?” Accelerated Encryption Processing, 1999, http://www.aep.ie/technical/ITC7/html.
“SSL Primer” CacheFlow Technical Note, CacheFlow Inc., Oct. 2000.
“SSL 3.0 Specification”, http://home.netscape.com/eng/ssl3/3-SPEC.HTM.
Kegel, Dan “SSL Acceleration”, Mar. 28, 2001, http://www.kegel.com/ssl/hw.html.
MacVittie, Lori “E-Commerce Security Gets a Boost”, Mar. 20, 2000, http://www.networkcomputing.com/shared/printArticle?article=nc/1105/1105f3ffull.html&pub.
MacVittie, Lori “Web Server Director Comes Out on Top of the Pile”, Feb. 5, 2001, http://www.networkcomputing.com/shared/printArticle?article=nc/1203/1203f1bfull.html&pub.
MacVittie, Lori “Crytographic Accelerators Provide Quick Encryption”, Apr. 19, 1999, http:/
etworkcomputing.com/shared/printArticle?article=nc/1008/1008r1full.html&pub.
Freier, Karlton, Kocher, The SSL Protocol Version 3.0, Netscape Communications, Transport Layer Security Working Group, Nov. 18, 1996. http://wp.netscape.com/eng/ssl3/draft302.txt.
Douglas E. Comer, “Internetworking with TCP/IP: Principles, Protocols, and Architectures,” 2000, Prentice Hall, 4thEdition, pp. 101-106.
“Integrated SSL Processing and Intelligent Traffic Management” F5 Networks, Inc., http://www.f5.com/f5products/bigip/sslaccelerator/index.html.
“SSL Accelerator Frequently Asked Questions” F5 Networks, Inc., http://www.f5.com/f5products/bigip/sslaccelerator/sslacceleratorfaq.html.
“SSL Accelerator Frequently Asked Questions” F5 Networks, Inc., http://www.f5.com/f5products/bigip/sslaccelerator/sslacceleratorfaq.html.
Freed Michael
Gannesan Elango
Chen Shin-Hon
Juniper Networks, Inc.
Sheikh Ayaz
Shumaker & Sieffert P.A.
LandOfFree
Secure sockets layer proxy architecture does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Secure sockets layer proxy architecture, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Secure sockets layer proxy architecture will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3657895