Transparent security proxy for unreliable message exchange protocols
US5915087A · kind A · utility
Assignee
Inventors
Key dates
| Filing date | Dec 12, 1996 |
| Grant date | Jun 22, 1999 |
| Priority date | — |
| Expiry date | Dec 12, 2016 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/1408
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A proxy which is part of a firewall program controls exchanges of messages between two application entities. The proxy interrogates attempts to send a communication session by requesting entities with a server entity in accordance with defined authentication procedures. The Proxy interfaces with networking software to direct a communication stack to monitor connection messages to any address on specific ports. The requestor's address, and the server's address are extracted from the messages and checked fo compliance with a security policy such as one including an access control list. If either address is invalid, the proxy deletes the message. If both are valid, the message is relayed, and the ports used are tracked for a predetermined time. Reply messages are then sent using the address of the server entity so that the proxy is transparent to the requester.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.