公开(公告)号：US11863530B1

公开(公告)日：2024-01-02

申请号：US17307885

申请日：2021-05-04

Applicant: AVIATRIX SYSTEMS, INC.

Inventor： Arvind Sreekumar ,  Ramkrishnan Kunnath ,  Xiaobo Sherry Wei

IPC: H04L29/00 ,  H04L9/40

CPC classification number: H04L63/0272 ,  H04L63/0236 ,  H04L63/0815 ,  H04L63/20

Abstract: A computerized method for establishing a secure channel between a virtual private network (VPN) client processing on a network device for a user and a network gateway is disclosed. The computerized method includes operations of the controller of transmitting an authentication request to an identity provider based on receipt of a resource request from the VPN client, receiving an authentication response from the identity provider, generating an authentication token based on the authentication response and transmitting the authentication token to the VPN client, wherein the controller further stores the authentication token. The method includes operations of the network gateway of receiving a secure connection request from the VPN client that includes the authentication token, validating the authentication token by querying the controller, in response to validation of the authentication token, establishing the secure connection with VPN client, and providing the VPN client with access to resources via the secure connection.

公开(公告)号：US12192177B2

公开(公告)日：2025-01-07

申请号：US18378147

申请日：2023-10-10

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1001 ,  H04L67/1097 ,  H04L67/50 ,  H04L67/51

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US20240179133A1

公开(公告)日：2024-05-30

申请号：US18399698

申请日：2023-12-29

Applicant: Aviatrix Systems, Inc.

Inventor： Arvind Sreekumar ,  Ramakrishnan Kunnath ,  Xiaobo Sherry Wei

IPC: H04L9/40

CPC classification number: H04L63/0272 ,  H04L63/0236 ,  H04L63/0815 ,  H04L63/20

Abstract: A computerized method for establishing a secure channel between a virtual private network (VPN) client processing on a network device for a user and a network gateway is disclosed. The computerized method includes operations of the controller of transmitting an authentication request to an identity provider based on receipt of a resource request from the VPN client, receiving an authentication response from the identity provider, generating an authentication token based on the authentication response and transmitting the authentication token to the VPN client, wherein the controller further stores the authentication token. The method includes operations of the network gateway of receiving a secure connection request from the VPN client that includes the authentication token, validating the authentication token by querying the controller, in response to validation of the authentication token, establishing the secure connection with VPN client, and providing the VPN client with access to resources via the secure connection.

公开(公告)号：US20250141847A1

公开(公告)日：2025-05-01

申请号：US19011511

申请日：2025-01-06

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1001 ,  H04L67/1097 ,  H04L67/50 ,  H04L67/51

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US20240048529A1

公开(公告)日：2024-02-08

申请号：US18378147

申请日：2023-10-10

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1097 ,  H04L67/51 ,  H04L67/50 ,  H04L67/1001

CPC classification number: H04L63/0272 ,  G06F9/455 ,  H04L63/102 ,  H04L63/08 ,  H04L63/20 ,  H04L12/4641 ,  H04L67/1097 ,  H04L63/04 ,  H04L67/51 ,  H04L67/535 ,  H04L67/1001

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US11784976B1

公开(公告)日：2023-10-10

申请号：US17010822

申请日：2020-09-02

Applicant: AVIATRIX SYSTEMS, INC.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1097 ,  H04L67/51 ,  H04L67/50 ,  H04L67/1001

CPC classification number: H04L63/0272 ,  G06F9/455 ,  H04L12/4641 ,  H04L63/04 ,  H04L63/08 ,  H04L63/102 ,  H04L63/20 ,  H04L67/1001 ,  H04L67/1097 ,  H04L67/51 ,  H04L67/535

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.