Electrical computers and digital processing systems: multicomput – Distributed data processing – Client/server
Reexamination Certificate
1999-01-29
2003-03-04
Sheikh, Ayaz (Department: 2155)
Electrical computers and digital processing systems: multicomput
Distributed data processing
Client/server
C709S217000, C709S218000, C709S219000, C709S220000, C709S227000, C709S228000, C709S229000, C713S152000
Reexamination Certificate
active
06529937
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field of the Invention
This invention pertains to communications in a client/server session. More particularly, it pertains to communication of client IP addresses to server applications in a TCP/IP Telnet environment.
2. Background Art
TCP/IP Telnet is an application which provides a terminal to a user, which is used to gain access to machines and run other applications as the user desires. In today's environment, more and more users are taking advantage of the increased security offered by firewalls, socks server and secured sockets layer (SSL) servers to protect their data transmissions to and from their terminals. Because of these new secure accesses, the actual client IP address is hidden or remapped, and thus not available to Telnet or other applications. However, over the years thousands of applications have been developed on the TCP/IP Client/Server model and in many cases they've become dependent upon knowing the IP address of the remote Telnet client. With security spoofing of the IP address, it is not safe to make any decisions at the server side based on the client IP address.
It is an object of the invention to enable applications to audit, track and log true client IP addresses over secure protocols.
It is an object of the invention to provide an improved system and method for making available to all applications the actual Client IP address.
It is a further object of the invention to provide a system and method for allowing decisions to be made at the server side in the TCP/IP Client/Server system based on client IP address in a safe manner.
SUMMARY OF THE INVENTION
In accordance with the invention, a system and method is provided for communicating a client IP address to server applications in a secure Telnet client/server system. During a client/server session, the secure connection handshake, including certificate authentication, occurs. Upon successful completion of this handshake, the terminal type is first negotiated, followed by negotiation of environment options, including requesting and receiving the client IP address. Upon creating a virtual device for the session, the client address is stored in device associated space where it becomes available to the server applications.
Other features and advantages of this invention will become apparent from the following detailed description of the presently preferred embodiment of the invention, taken in conjunction with the accompanying drawings.
REFERENCES:
patent: 4625081 (1986-11-01), Lotito et al.
patent: 4885789 (1989-12-01), Burger et al.
patent: 5764887 (1998-06-01), Kells et al.
patent: 5768510 (1998-06-01), Gish
patent: 5790548 (1998-08-01), Sistanizadeh et al.
patent: 5793763 (1998-08-01), Mayers et al.
patent: 5812819 (1998-09-01), Rodwin et al.
patent: 5931913 (1999-08-01), Meriwhether et al.
patent: 5958053 (1999-09-01), Denker
patent: 6011915 (2000-01-01), Aaker et al.
patent: 6076110 (2000-06-01), Murphy, Jr. et al.
patent: 6091737 (2000-07-01), Hong et al.
patent: 6154768 (2000-11-01), Chen et al.
patent: 6182220 (2001-01-01), Chen et al.
patent: 6216159 (2001-04-01), Chintakrindl et al.
patent: 6317838 (2001-11-01), Baize
patent: 6334146 (2001-12-01), Parasnis et al.
U.S. patent application Ser. No. 08/808,264, filed Feb. 28, 1997, for “Managing Connection Requests in a Dialup Computer Network”.
U.S. patent application Ser. No. 08/897,505, filed Jul. 21, 1997 for “Single Server Access in a Multiple TCP/IP Instance Enviroments”.
U. S. patent application Ser. No. 08/198,381, filed Nov. 24, 1998, for “Systems Methods and Computer Program Products for Employing Presumptive Negotiation in a Data Communications Protocol”.
Kolban,N. “Intercepting Telnet Data”, IBM Technical Disclosure Bulletin, vol. 36, n. 6A, 06-93 pp 505-508.
Kolban, N. “Applications for the TCP/IP Telnet Protocols”, IBM Technical Disclosure Bulletin, n. 4B, 09-92, pp. 258-260.
Chintakrindi, R.S. et al, “Method and System for IP Address Accessibility to Server Applications”, US patent application Ser. No. 08/978,252 filed Nov. 25, 1997.
S. Alexander, “Telnet Environment Option”, RFC 1572, Jan. 1994.
Murphy, Jr. Thomas E.
Orzel Francine M.
Rieth Paul F.
Stevens Jeffrey S.
Beckstrand Shelley M
International Business Machines - Corporation
Jean Frantz B.
Sheikh Ayaz
LandOfFree
System and method for communicating client IP addresses to... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for communicating client IP addresses to..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for communicating client IP addresses to... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3071149