专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明申请

US20080034419A1 Systems and Methods for Application Based Interception of SSL/VPN Traffic 有权
标题翻译：基于应用的拦截SSL / VPN流量的系统和方法
公开(公告)号：US20080034419A1
公开(公告)日：2008-02-07
申请号：US11462329
申请日：2006-08-03
申请人： Amarnath Mullick , Shashi Nanjundaswami , Charu Venkatraman , Junxiao He , James Harris , Ajay Soni
发明人： Amarnath Mullick , Shashi Nanjundaswami , Charu Venkatraman , Junxiao He , James Harris , Ajay Soni
IPC分类号： G06F15/16
CPC分类号： H04L63/10 , H04L63/0272 , H04L63/0876 , H04L63/102 , H04L63/20
摘要： A method for allowing or denying, by an appliance, access to a resource by an application on a client via a virtual private network connection includes basing the decision to allow or deny access on identification of the application. The appliance intercepts a request from an application on a client on a first network to access via a virtual private network connection a resource on a second network. The appliance identifies the application and associates with the intercepted request an authorization policy based on the identity of the application. The appliance determines, using the authorization policy and the identity of the application, to either allow or deny access by the application to the resource.
摘要翻译：允许或拒绝由设备通过虚拟专用网络连接在客户端上的应用访问资源的方法包括基于允许或拒绝对应用标识的访问的决定。设备拦截来自第一网络上的客户端上的应用的请求，以经由虚拟专用网络连接在第二网络上访问资源。设备识别应用程序，并根据应用程序的身份将截获的请求与授权策略相关联。设备使用授权策略和应用程序的身份来确定应用程序是否允许或拒绝资源访问。

12. 发明申请

US20080034418A1 Systems and Methods for Application Based Interception SSI/VPN Traffic 有权
标题翻译：基于应用的拦截SSI / VPN流量的系统和方法
公开(公告)号：US20080034418A1
公开(公告)日：2008-02-07
申请号：US11462321
申请日：2006-08-03
申请人： Charu Venkatraman , Junxiao He , Amarnath Mullick , Shashi Nanjundaswami , James Harris , Ajay Soni
发明人： Charu Venkatraman , Junxiao He , Amarnath Mullick , Shashi Nanjundaswami , James Harris , Ajay Soni
IPC分类号： G06F15/16
CPC分类号： H04L63/0227 , H04L63/0272 , H04L63/0876 , H04L63/102
摘要： A method for intercepting, by an agent of a client, communications from the client to be transmitted via a virtual private network connection includes the step of intercepting communications based on identification of an application from which the communication originates. The agent receives information identifying a first application. The agent determines a network communication transmitted by the client originates from the first application and intercepts that communication. The agent transmits the intercepted communication via the virtual private network connection.
摘要翻译：用于由客户的代理拦截要通过虚拟专用网络连接发送的通信的方法包括基于来自该通信的应用的识别来拦截通信的步骤。代理接收标识第一应用的信息。代理确定由客户端发送的网络通信源自第一应用，并拦截该通信。该代理通过虚拟专用网络连接发送被拦截的通信。

13. 发明授权

US07907621B2 Systems and methods for using a client agent to manage ICMP traffic in a virtual private network environment 有权
标题翻译：在虚拟专用网络环境中使用客户端代理来管理ICMP流量的系统和方法
公开(公告)号：US07907621B2
公开(公告)日：2011-03-15
申请号：US11462253
申请日：2006-08-03
申请人： Amarnath Mullick , Charu Venkatraman , Shashi Nanjundaswamy , Junxiao He , Roy Rajan , Ajay Soni
发明人： Amarnath Mullick , Charu Venkatraman , Shashi Nanjundaswamy , Junxiao He , Roy Rajan , Ajay Soni
IPC分类号： H04L12/28
CPC分类号： H04L12/4641 , H04L41/046 , H04L41/0893 , H04L43/00 , H04L43/0811 , H04L43/0817 , H04L43/10 , H04L63/0272 , H04L63/166
摘要： Systems and methods are described for using a client agent executing on a client to send ICMP messages to an appliance connected via a virtual private network Methods include: establishing, via a client agent executing on a client, a transport layer virtual private network connection with an appliance; intercepting, by the client agent at the network layer, an ICMP request originating from the client; and transmitting, by the client agent via a transport layer connection, the ICMP request to the appliance. Addition methods describe determining, by the appliance, the address identified by the ICMP request corresponds to a second client, the second client also connected via a virtual private network to the remote machine; and transmitting, by the appliance to the second client via the virtual private network connection, the ICMP request. Corresponding systems are also described.
摘要翻译：描述了使用在客户端上执行的客户端代理将ICMP消息发送到经由虚拟专用网连接的设备的系统和方法。方法包括：通过在客户端上执行的客户端代理来建立传输层虚拟专用网络连接器具; 由网络层的客户代理拦截来自客户端的ICMP请求; 以及由所述客户端代理经由传输层连接向所述设备发送所述ICMP请求。附加方法描述了由设备确定由ICMP请求标识的地址对应于第二客户端，第二客户端还经由虚拟专用网络连接到远程机器; 以及由所述设备经由所述虚拟专用网络连接向所述第二客户端发送所述ICMP请求。还描述了相应的系统。

14. 发明申请

US20080046994A1 Systems and Methods of Providing An Intranet Internet Protocol Address to a Client on a Virtual Private Network 有权
标题翻译：在虚拟专用网络上向客户端提供内部网互联网协议地址的系统和方法
公开(公告)号：US20080046994A1
公开(公告)日：2008-02-21
申请号：US11465980
申请日：2006-08-21
申请人： Charu Venkatraman , Junxiao He , Ajay Soni
发明人： Charu Venkatraman , Junxiao He , Ajay Soni
IPC分类号： G06F15/16
CPC分类号： H04L63/0272 , H04L63/166
摘要： The intranet IP address management solution of the appliance and/or client described herein provides an environment for efficiently assigning, managing and querying virtual private network addresses, referred to as intranet IP (IIP) addresses of virtual private network users, such as a multitude of SSL VPN users on an enterprise network. The appliance provides techniques and policies for assigning previously assigned virtual private network addresses of a user to subsequent sessions of the user as the user logs in multiple times or roams between access points. This technique is referred to IIP stickiness as the appliance attempts to provide the same IIP address to a roaming VPN user. The appliance also provides a configurable user domain naming policy so that one can ping or query the virtual private network address of a user by an easily referenceable host name identifying the user. The appliance and/or client agent also provide techniques to allow applications to seamlessly and transparently communicate on the virtual private network using the virtual private network address of the user or client on the private network.
摘要翻译：本文描述的设备和/或客户端的Intranet IP地址管理解决方案提供了一种用于有效地分配，管理和查询虚拟专用网地址的环境，被称为虚拟专用网络用户的内部网IP（IIP）地址，诸如大量企业网络上的SSL VPN用户。该设备提供用于在用户多次登录或者在接入点之间漫游时将用户先前分配的虚拟专用网地址分配给用户的后续会话的技术和策略。该技术被称为IIP粘性，因为设备试图向漫游VPN用户提供相同的IIP地址。该设备还提供可配置的用户域命名策略，以便可以通过标识用户的易于引用的主机名来ping或查询用户的虚拟专用网络地址。设备和/或客户端代理还提供技术，以允许应用程序使用专用网络上的用户或客户端的虚拟专用网地址在虚拟专用网络上无缝和透明地通信。

15. 发明申请

US20080034413A1 SYSTEMS AND METHODS FOR USING A CLIENT AGENT TO MANAGE HTTP AUTHENTICATION COOKIES 有权
标题翻译：使用客户端管理HTTP认证机构的系统和方法
公开(公告)号：US20080034413A1
公开(公告)日：2008-02-07
申请号：US11462308
申请日：2006-08-03
申请人： Junxiao He , Charu Venkatraman , Roy Rajan , Ajay Soni
发明人： Junxiao He , Charu Venkatraman , Roy Rajan , Ajay Soni
IPC分类号： H04L9/32
CPC分类号： H04L12/4641 , H04L63/0272 , H04L63/08 , H04L63/166 , H04L67/02
摘要： Systems and methods are described for using a client agent to manage HTTP authentication cookies. One method includes intercepting, by a client agent executing on a client, a connection request from the client; establishing, by the client agent, a transport layer virtual private network connection with a network appliance; transmitting, by the client agent via the established connection, an HTTP request comprising an authentication cookie; and transmitting, by the client agent via the connection, the connection request. A second method includes intercepting, by a client agent executing on a client, an HTTP communication comprising a cookie from an appliance on a virtual private network to the client; removing, by the client agent, the cookie from the HTTP communication; storing, by the client agent, the received cookie; transmitting, by the client agent, the modified HTTP communication to an application executing on the client; intercepting, by the client agent, an HTTP request from the client; inserting, by the client agent in the HTTP request, the received cookie; and transmitting the modified HTTP request to the appliance. Corresponding systems are also described.
摘要翻译：描述了使用客户端代理来管理HTTP身份验证cookie的系统和方法。一种方法包括由在客户端上执行的客户端代理截取来自客户端的连接请求; 由客户端代理建立与网络设备的传输层虚拟专用网络连接; 由所述客户端代理经由建立的连接发送包括认证cookie的HTTP请求; 以及由所述客户端代理经由所述连接发送所述连接请求。第二种方法包括由在客户端上执行的客户端代理拦截包括来自虚拟专用网络上的设备到客户端的cookie的HTTP通信; 由客户端代理从HTTP通信中删除该cookie; 由客户代理存储接收到的cookie; 由客户端代理将经修改的HTTP通信传送到在客户机上执行的应用程序; 由客户端代理拦截来自客户端的HTTP请求; 由客户端代理在HTTP请求中插入接收到的cookie; 以及将修改的HTTP请求发送到所述设备。还描述了相应的系统。

16. 发明授权

US08561155B2 Systems and methods for using a client agent to manage HTTP authentication cookies 有权
标题翻译：使用客户端代理管理HTTP认证cookie的系统和方法
公开(公告)号：US08561155B2
公开(公告)日：2013-10-15
申请号：US11462300
申请日：2006-08-03
申请人： Junxiao He , Charu Venkatraman , Ajay Soni
发明人： Junxiao He , Charu Venkatraman , Ajay Soni
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/145 , H04L67/02 , H04L67/2842
摘要： Systems and methods are described for using a client agent to manage HTTP authentication cookies. One method includes intercepting, by a client agent executing on a client, a connection request from the client; establishing, by the client agent, a transport layer virtual private network connection with a network appliance; transmitting, by the client agent via the established connection, an HTTP request comprising an authentication cookie; and transmitting, by the client agent via the connection, the connection request. A second method includes intercepting, by a client agent executing on a client, an HTTP communication comprising a cookie from an appliance on a virtual private network to the client; removing, by the client agent, the cookie from the HTTP communication; storing, by the client agent, the received cookie; transmitting, by the client agent, the modified HTTP communication to an application executing on the client; intercepting, by the client agent, an HTTP request from the client; inserting, by the client agent in the HTTP request, the received cookie; and transmitting the modified HTTP request to the appliance. Corresponding systems are also described.
摘要翻译：描述了使用客户端代理来管理HTTP身份验证cookie的系统和方法。一种方法包括由在客户端上执行的客户端代理截取来自客户端的连接请求; 由客户端代理建立与网络设备的传输层虚拟专用网络连接; 由所述客户端代理经由建立的连接发送包括认证cookie的HTTP请求; 以及由所述客户端代理经由所述连接发送所述连接请求。第二种方法包括由在客户端上执行的客户端代理拦截包括来自虚拟专用网络上的设备到客户端的cookie的HTTP通信; 由客户端代理从HTTP通信中删除该cookie; 由客户代理存储接收到的cookie; 由客户端代理将经修改的HTTP通信传送到在客户机上执行的应用程序; 由客户端代理拦截来自客户端的HTTP请求; 由客户端代理在HTTP请求中插入接收到的cookie; 以及将修改的HTTP请求发送到所述设备。还描述了相应的系统。

17. 发明授权

US08392977B2 Systems and methods for using a client agent to manage HTTP authentication cookies 有权
公开(公告)号：US08392977B2
公开(公告)日：2013-03-05
申请号：US11462308
申请日：2006-08-03
申请人： Junxiao He , Charu Venkatraman , Roy Rajan , Ajay Soni
发明人： Junxiao He , Charu Venkatraman , Roy Rajan , Ajay Soni
IPC分类号： H04L29/06
CPC分类号： H04L12/4641 , H04L63/0272 , H04L63/08 , H04L63/166 , H04L67/02
摘要： Systems and methods are described for using a client agent to manage HTTP authentication cookies. One method includes intercepting, by a client agent executing on a client, a connection request from the client; establishing, by the client agent, a transport layer virtual private network connection with a network appliance; transmitting, by the client agent via the established connection, an HTTP request comprising an authentication cookie; and transmitting, by the client agent via the connection, the connection request. A second method includes intercepting, by a client agent executing on a client, an HTTP communication comprising a cookie from an appliance on a virtual private network to the client; removing, by the client agent, the cookie from the HTTP communication; storing, by the client agent, the received cookie; transmitting, by the client agent, the modified HTTP communication to an application executing on the client; intercepting, by the client agent, an HTTP request from the client; inserting, by the client agent in the HTTP request, the received cookie; and transmitting the modified HTTP request to the appliance. Corresponding systems are also described.

18. 发明申请

US20080034417A1 SYSTEMS AND METHODS FOR USING AN HTTP-AWARE CLIENT AGENT 有权
标题翻译：使用HTTP-AWARE客户端代理的系统和方法
公开(公告)号：US20080034417A1
公开(公告)日：2008-02-07
申请号：US11462267
申请日：2006-08-03
申请人： Junxiao He , Charu Venkatraman , Ajay Soni
发明人： Junxiao He , Charu Venkatraman , Ajay Soni
IPC分类号： G06F15/16
CPC分类号： H04L63/0272 , H04L63/0227 , H04L63/08 , H04L67/02 , H04L67/42
摘要： Systems and methods are described for using a client agent operating in a virtual private network environment to intercept HTTP communications. Methods include: intercepting at the network layer, by a client agent executing on a client, an HTTP request from an application executing on the client; modifying the HTTP request; and transmitting, via a transport layer connection, the modified HTTP request to a server. Additional methods may comprise adding, removing, or modifying at least one cookie in the HTTP request. Still other methods may comprise modifying at least one name-value pair contained in the HTTP request. Corresponding systems are also described.
摘要翻译：描述了使用在虚拟专用网络环境中操作的客户端代理拦截HTTP通信的系统和方法。方法包括：在客户端上执行的客户端代理在网络层拦截来自在客户机上执行的应用的HTTP请求; 修改HTTP请求; 以及经由传输层连接将经修改的HTTP请求发送到服务器。附加方法可以包括在HTTP请求中添加，删除或修改至少一个cookie。还有其他方法可以包括修改包含在HTTP请求中的至少一个名称 - 值对。还描述了相应的系统。

19. 发明申请

US20080034198A1 SYSTEMS AND METHODS FOR USING A CLIENT AGENT TO MANAGE HTTP AUTHENTICATION COOKIES 有权
公开(公告)号：US20080034198A1
公开(公告)日：2008-02-07
申请号：US11462300
申请日：2006-08-03
申请人： Junxiao He , Charu Venkatraman , Ajay Soni
发明人： Junxiao He , Charu Venkatraman , Ajay Soni
IPC分类号： H04L9/00
CPC分类号： H04L63/08 , H04L63/145 , H04L67/02 , H04L67/2842
摘要： Systems and methods are described for using a client agent to manage HTTP authentication cookies. One method includes intercepting, by a client agent executing on a client, a connection request from the client; establishing, by the client agent, a transport layer virtual private network connection with a network appliance; transmitting, by the client agent via the established connection, an HTTP request comprising an authentication cookie; and transmitting, by the client agent via the connection, the connection request. A second method includes intercepting, by a client agent executing on a client, an HTTP communication comprising a cookie from an appliance on a virtual private network to the client; removing, by the client agent, the cookie from the HTTP communication; storing, by the client agent, the received cookie; transmitting, by the client agent, the modified HTTP communication to an application executing on the client; intercepting, by the client agent, an HTTP request from the client; inserting, by the client agent in the HTTP request, the received cookie; and transmitting the modified HTTP request to the appliance. Corresponding systems are also described.

20. 发明授权

US08943304B2 Systems and methods for using an HTTP-aware client agent 有权
标题翻译：使用HTTP感知客户端代理的系统和方法
公开(公告)号：US08943304B2
公开(公告)日：2015-01-27
申请号：US11462267
申请日：2006-08-03
申请人： Junxiao He , Charu Venkatraman , Ajay Soni
发明人： Junxiao He , Charu Venkatraman , Ajay Soni
IPC分类号： H04L29/06 , H04L29/08
CPC分类号： H04L63/0272 , H04L63/0227 , H04L63/08 , H04L67/02 , H04L67/42
摘要： Systems and methods are described for using a client agent operating in a virtual private network environment to intercept HTTP communications. Methods include: intercepting at the network layer, by a client agent executing on a client, an HTTP request from an application executing on the client; modifying the HTTP request; and transmitting, via a transport layer connection, the modified HTTP request to a server. Additional methods may comprise adding, removing, or modifying at least one cookie in the HTTP request. Still other methods may comprise modifying at least one name-value pair contained in the HTTP request. Corresponding systems are also described.
摘要翻译：描述了使用在虚拟专用网络环境中操作的客户端代理拦截HTTP通信的系统和方法。方法包括：在客户端上执行的客户端代理在网络层拦截来自在客户机上执行的应用的HTTP请求; 修改HTTP请求; 以及经由传输层连接将经修改的HTTP请求发送到服务器。附加方法可以包括在HTTP请求中添加，删除或修改至少一个cookie。还有其他方法可以包括修改包含在HTTP请求中的至少一个名称 - 值对。还描述了相应的系统。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式