Patent · US Expired

Method and arrangement for providing security through network address translations using tunneling and compensations

US6957346B1 · kind B1 · utility

64Cited by

4References

24Claims

0Family size

Assignee

SSH COMMUNICATIONS SECURITY CORP. · US

Inventors

Tero Kivinen · Helsinki, FI
Tatu J. Ylonen · Espoo, FI

Key dates

Filing date	Jun 15, 1999
Grant date	Oct 18, 2005
Priority date	—
Expiry date	Jun 15, 2019

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/663
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.