公开(公告)号：US08893259B2

公开(公告)日：2014-11-18

申请号：US12359982

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  Akshat Choudhary

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  Akshat Choudhary

IPC分类号： H04L29/06 ,  H04L29/08

CPC分类号： H04L63/0272 ,  H04L29/08846 ,  H04L63/0281 ,  H04L63/105 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/14 ,  H04L67/2814

摘要： The present disclosure provides solutions that may enable an enterprise providing services to a number of clients to determine whether to establish a client based SSL VPN session or a clientless SSL VPN session with a client based on an information associated with the client. An intermediary establishing SSL VPN sessions between clients and servers may receive a request from a client to access a server. The intermediary may identify a session policy based on the request. The session policy may indicate whether to establish a client based SSL VPN session or clientless SSL VPN session with the server. The intermediary may determine, responsive to the policy, to establish a clientless or client based SSL VPN session between the client and the server.

摘要翻译： 本公开提供了可以使得能够向多个客户端提供服务的企业基于与客户端相关联的信息来确定是否建立与客户端的基于客户端的SSL VPN会话或客户端SSL VPN会话的解决方案。 在客户端和服务器之间建立SSL VPN会话的中间件可以接收客户端访问服务器的请求。 中介可以根据请求识别会话策略。 会话策略可以指示是否与服务器建立基于客户端的SSL VPN会话或客户端SSL VPN会话。 中介可以根据策略确定在客户端和服务器之间建立基于客户端或客户端的SSL VPN会话。

公开(公告)号：US20090193498A1

公开(公告)日：2009-07-30

申请号：US12359982

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  Akshat Choudhary

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  Akshat Choudhary

IPC分类号： H04L9/00

CPC分类号： H04L63/0272 ,  H04L29/08846 ,  H04L63/0281 ,  H04L63/105 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/14 ,  H04L67/2814

摘要： The present disclosure provides solutions that may enable an enterprise providing services to a number of clients to determine whether to establish a client based SSL VPN session or a clientless SSL VPN session with a client based on an information associated with the client. An intermediary establishing SSL VPN sessions between clients and servers may receive a request from a client to access a server. The intermediary may identify a session policy based on the request. The session policy may indicate whether to establish a client based SSL VPN session or clientless SSL VPN session with the server. The intermediary may determine, responsive to the policy, to establish a clientless or client based SSL VPN session between the client and the server.

摘要翻译： 本公开提供了可以使得能够向多个客户端提供服务的企业基于与客户端相关联的信息来确定是否建立与客户端的基于客户端的SSL VPN会话或客户端SSL VPN会话的解决方案。 在客户端和服务器之间建立SSL VPN会话的中间件可以接收客户端访问服务器的请求。 中介可以根据请求识别会话策略。 会话策略可以指示是否与服务器建立基于客户端的SSL VPN会话或客户端SSL VPN会话。 中介可以根据策略确定在客户端和服务器之间建立基于客户端或客户端的SSL VPN会话。

公开(公告)号：US20090193129A1

公开(公告)日：2009-07-30

申请号：US12360014

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

IPC分类号： G06F15/16

CPC分类号： H04L63/0227 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2842

摘要： The present solution enables a client that is not configured to use cookies to access resources of the server that uses cookies for communications with the clients. An intermediary deployed between a client and a server intercepts and modifies transmissions between the client and the server to compensate for the mismatch in configuration of the cookies between the client and the server. The present disclosure relates to a method for managing cookies by an intermediary for a client. An intermediary receives a response from a server to a request of a client. The response may comprise a uniform resource locator (URL) and a cookie. The intermediary may modify the response by removing the cookie from the response and inserting a unique client identifier into the URL. The intermediary may store the removed cookie in association with the unique client identifier and forward the modified response to the client.

摘要翻译： 本解决方案使未配置为使用Cookie的客户端访问使用Cookie与客户端通信的服务器的资源。 部署在客户端和服务器之间的中间人拦截并修改客户端和服务器之间的传输，以补偿客户端和服务器之间的Cookie配置不匹配。 本公开涉及一种用于由客户端的中间人管理cookie的方法。 中介从服务器接收到客户端请求的响应。 响应可以包括统一的资源定位符（URL）和cookie。 中间人可以通过从响应中删除cookie并将唯一的客户端标识符插入到URL中来修改响应。 中介可以将删除的cookie与唯一的客户端标识符相关联地存储，并将修改的响应转发给客户端。

公开(公告)号：US08769660B2

公开(公告)日：2014-07-01

申请号：US12360019

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

IPC分类号： G06F15/16

CPC分类号： H04L63/0227 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2842

摘要： The present application enables the enterprise to configure various policies to address various subsets of the traffic based on various information relating the client, the server, or the details and nature of the interactions between the client and the server. An intermediary deployed between clients and servers may establish an SSL VPN session between a client and a server. The intermediary may receiving a response from a server to a request of a client via the clientless SSL VPN session. The response may comprise one or more cookies. The intermediary may identify an access profile for the clientless SSL VPN session. The access profile may identify one or more policies for proxying cookies. The intermediary may determine, responsive to the one or more policies of the access profile, whether to proxy or bypass proxying for the client the one or more cookies.

摘要翻译： 本应用使得企业能够基于与客户端，服务器或客户端与服务器之间的交互的细节和性质相关的各种信息来配置各种策略来处理流量的各种子集。 部署在客户端和服务器之间的中介可以在客户端和服务器之间建立SSL VPN会话。 中间人可以通过无客户端SSL VPN会话从服务器接收到客户端的请求的响应。 响应可以包括一个或多个cookie。 中介可以识别无客户端SSL VPN会话的访问配置文件。 访问配置文件可以标识用于代理Cookie的一个或多个策略。 中介可以响应于访问简档的一个或多个策略来确定是否为客户端代理或绕过代理一个或多个cookie。

公开(公告)号：US08090877B2

公开(公告)日：2012-01-03

申请号：US12360014

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

IPC分类号： G07F15/16

CPC分类号： H04L63/0227 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2842

摘要： The present solution enables a client that is not configured to use cookies to access resources of the server that uses cookies for communications with the clients. An intermediary deployed between a client and a server intercepts and modifies transmissions between the client and the server to compensate for the mismatch in configuration of the cookies between the client and the server. The present disclosure relates to a method for managing cookies by an intermediary for a client. An intermediary receives a response from a server to a request of a client. The response may comprise a uniform resource locator (URL) and a cookie. The intermediary may modify the response by removing the cookie from the response and inserting a unique client identifier into the URL. The intermediary may store the removed cookie in association with the unique client identifier and forward the modified response to the client.

摘要翻译： 本解决方案使未配置为使用Cookie的客户端访问使用Cookie与客户端通信的服务器的资源。 部署在客户端和服务器之间的中间人拦截并修改客户端和服务器之间的传输，以补偿客户端和服务器之间的Cookie配置不匹配。 本公开涉及一种用于由客户端的中间人管理cookie的方法。 中介从服务器接收到客户端请求的响应。 响应可以包括统一的资源定位符（URL）和cookie。 中间人可以通过从响应中删除cookie并将唯一的客户端标识符插入到URL中来修改响应。 中介可以将删除的cookie与唯一的客户端标识符相关联地存储，并将修改的响应转发给客户端。

公开(公告)号：US20090199285A1

公开(公告)日：2009-08-06

申请号：US12360019

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

IPC分类号： H04L9/32

CPC分类号： H04L63/0227 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2842

摘要： The present application enables the enterprise to configure various policies to address various subsets of the traffic based on various information relating the client, the server, or the details and nature of the interactions between the client and the server. An intermediary deployed between clients and servers may establish an SSL VPN session between a client and a server. The intermediary may receiving a response from a server to a request of a client via the clientless SSL VPN session. The response may comprise one or more cookies. The intermediary may identify an access profile for the clientless SSL VPN session. The access profile may identify one or more policies for proxying cookies. The intermediary may determine, responsive to the one or more policies of the access profile, whether to proxy or bypass proxying for the client the one or more cookies.

摘要翻译： 本应用使得企业能够基于与客户端，服务器或客户端与服务器之间的交互的细节和性质相关的各种信息来配置各种策略来处理流量的各种子集。 部署在客户端和服务器之间的中介可以在客户端和服务器之间建立SSL VPN会话。 中间人可以通过无客户端SSL VPN会话从服务器接收到客户端的请求的响应。 响应可以包括一个或多个cookie。 中介可以识别无客户端SSL VPN会话的访问配置文件。 访问配置文件可以标识用于代理Cookie的一个或多个策略。 中介可以响应于访问简档的一个或多个策略来确定是否为客户端代理或绕过代理一个或多个cookie。