Information security – Access control or authentication – Network
Reexamination Certificate
2008-05-06
2008-05-06
Jung, David (Department: 2134)
Information security
Access control or authentication
Network
C726S012000, C726S003000
Reexamination Certificate
active
07370353
ABSTRACT:
For an Internet Access Gateway operative between an area network and a public network, managing dynamic network sessions therebetween whereby a primary server on the public network in a primary session with a client of the area network initiates an additional session with an additional server on the public network, for which an unexpected data packet received at the gateway from the additional server is associated with the primary session, and accordingly allowed access to the area network through the gateway, provided the gateway received the data packet at an input port exceeding 1023, the additional session comprises a pre-defined Session Triggering Event, and at least one internal network component of the area network indicates willingness to receive the data packet. Wherefore, a preferred Application Level Gateway is thereby provided for firewall and NAT implementations to enhance network security.
REFERENCES:
patent: 5826014 (1998-10-01), Coley et al.
patent: 5828833 (1998-10-01), Belville et al.
patent: 5864683 (1999-01-01), Boebert et al.
patent: 5898830 (1999-04-01), Wesinger, Jr. et al.
patent: 5918018 (1999-06-01), Gooderum et al.
patent: 5944823 (1999-08-01), Jade et al.
patent: 5968176 (1999-10-01), Nessett et al.
patent: 5983350 (1999-11-01), Minear et al.
patent: 6003133 (1999-12-01), Moughanni et al.
patent: 6052788 (2000-04-01), Wesinger, Jr. et al.
patent: 6061797 (2000-05-01), Jade et al.
patent: 6061798 (2000-05-01), Coley et al.
patent: 6088796 (2000-07-01), Cianfrocca et al.
patent: 6097948 (2000-08-01), Sjödin
patent: 6098172 (2000-08-01), Coss et al.
patent: 6141749 (2000-10-01), Coss et al.
patent: 6141755 (2000-10-01), Dowd et al.
patent: 6154775 (2000-11-01), Coss et al.
Zwicky, E., “Chapter 15.7 RealAudio and RealVideo,” Building Internet Firewalls, O'Reilly, Jun. 2001.
ConSeal, “PC Firewall Technical Summary,” 1999.
Cisco Security Advisory: Cisco Secure PIX Firewall TCP Reset Vulnerability; Document ID: 13639; http://www.cisco.com/warp/public/707/cisco-sa-20000711-pix-tcp-reset.shtml; Revision 1.0 For Public Release year 2000.
NetCallback 1.3.1 Forwarding TCP and UDP ports behind a firewall Copyright © 2001.
RFC 3093—Firewall Enhnancement Protocol (FEP) Apr. 1, 2001.
Chen Tom
Cisco Technology Inc.
Jung David
MacPherson Kwok & Chen & Heid LLP
LandOfFree
System and method for managing dynamic network sessions does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for managing dynamic network sessions, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for managing dynamic network sessions will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2776361