Information security – Access control or authentication – Network
Reexamination Certificate
2003-06-13
2008-03-04
Zia, Syed A. (Department: 2131)
Information security
Access control or authentication
Network
C726S003000, C726S011000, C726S013000, C726S015000, C726S002000, C713S153000, C713S154000, C709S225000, C709S227000, C709S238000
Reexamination Certificate
active
07340771
ABSTRACT:
A communications system and method for dynamically creating at least one pinhole in a firewall are provided. The communications system includes a protected node capable of initiating a communication session with an outside node. In this regard, the protected node is capable of receiving flow parameters regarding the communication session as the communication session is setup. The system also includes a firewall disposed along a communications path between the protected node and the outside node. The protected node is capable of sending at least a portion of the flow parameters to a firewall-controlled proxy, which in turn, is capable of forwarding the portion of the flow parameters to the firewall. Thereafter, the firewall is capable of creating at least one pinhole based upon the portion of the flow parameters to thereby permit the transmission of information between the outside node and the protected node during the communication session.
REFERENCES:
patent: 2002/0124189 (2002-09-01), Bakke
patent: 2004/0034793 (2004-02-01), Yuan
patent: 2004/0128554 (2004-07-01), Maher et al.
patent: WO 02/103981 (2002-12-01), None
P. Srisuresh, J. Kuthan, J. Rosenberg, A. Molitor, A.Rayhan;Middlebox communication architecture and framework; Aug. 2002; 35 pages; Network Working Group; The Internet Society.
Victor Paulsamy, Samir Chatterjee;Network Convergence and the NAT/Firewall Problems; 2003; 10 pages; Proceedings of the 36thHawaii International Conference on System Sciences (HICSS '03).; IEEE Computer Society; 0-7695-1874-5/03.
K. Umschaden, J. Stadler, I. Miladinovic;End-to-end Security for Firewall/NAT Traversal within the Session Initiation Protocol(SIP); May 2003; 38 pages; Internet Engineering Task Force.
M. Stiemerling, J. Quittek;Middlebox Configuration Protocol Design; Jul. 2002; pp. 222-226; IEEE; 0-7803-7658-07/02.
Paul Henry;An Examination of Firewall Architectures—A CiberGuard Corporation White Paper; 2001; 16 pages; CyberGuard Corporation.
M. Handley, V. Jacobson;SDP: Session Description Protocol;1998; 40 pages; Available at <http://www.ietf.org/rfc/rfc2327.txt?number=2327> (visited Apr. 9, 2003).
D. Yon;Connection-Oriented Media Transport in SDP<draft-ietf-mmusic-sdp-comedia-01.txt>; 2001; 11 pages; Available at <http://www.dmn.tzi.org/ietf/mmusic/52/id/draft-ietf-mmusic.sdp-comedia-01.txt> (visited May 8, 2003).
Chan Tat Keung
Narayanan, Sr. Ram Gopal Lakshmi
Alston & Bird LLP
Besrour Saoussen
Nokia Corporation
Zia Syed A.
LandOfFree
System and method for dynamically creating at least one... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for dynamically creating at least one..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for dynamically creating at least one... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3965947