Authentication in virtual private networks

Assignee

• International Business Machines Corporation · US

Inventors

• Eric J. Barkie · Cary, US
• Benjamin L. Fletcher · Denver, US
• Marco Pistoia · Amawalk, US
• John Ponzo · Yorktown Heights, US
• Andrew P. Wyskida · Fishkill, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/107
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Systems and methods are provided for controlling access to a network. An access request is received from a client application running on a computing device for accessing a remote network. The access request is received over a secure virtual private network (VPN) connection established by a user-mode VPN client running in non-privileged user space of the computing device. The access request includes contextual information for use in authenticating a user to access a remote network, wherein the contextual information includes contextual information about the client application requesting access to the remote network. An authentication process is performed using the contextual information to authenticate the user, and a secure VPN connection is established between the client application and the remote network, if the user is authenticated.