公开(公告)号：US20070169187A1

公开(公告)日：2007-07-19

申请号：US11703020

申请日：2007-02-06

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Penncc ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Penncc ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/16

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，可以将原始数据分组转发到其原始的接收者。

公开(公告)号：US07543332B2

公开(公告)日：2009-06-02

申请号：US11703020

申请日：2007-02-06

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/00

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，可以将原始数据分组转发到其原始的接收者。

公开(公告)号：US08136152B2

公开(公告)日：2012-03-13

申请号：US12105756

申请日：2008-04-18

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/00

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，可以将原始数据分组转发到其原始的接收者。

公开(公告)号：US20090265553A1

公开(公告)日：2009-10-22

申请号：US12489500

申请日：2009-06-23

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： H04L9/28 ,  H04L9/32 ,  G06F11/14 ,  G06F21/20

CPC分类号： H04L63/0272 ,  H04L63/065 ,  H04L63/08 ,  H04L63/164

摘要： A method and system for implementing secure communications between a plurality of devices are provided. The method and system generally include the provision of at least one common encryption parameter to each of the plurality of devices, as well as an identification of the plurality of devices to one another. This information can be maintained and shared by interaction of the plurality of devices with a designated server device. In this way, a secure, point-to-point connection between at least two of the plurality of devices can be established.

摘要翻译： 提供了用于实现多个设备之间的安全通信的方法和系统。 该方法和系统通常包括向多个设备中的每一个提供至少一个公共加密参数，以及将多个设备彼此的标识。 可以通过多个设备与指定的服务器设备的交互来维护和共享该信息。 以这种方式，可以建立多个设备中的至少两个之间的安全的点对点连接。

公开(公告)号：US07562386B2

公开(公告)日：2009-07-14

申请号：US11703021

申请日：2007-02-06

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/00

CPC分类号： H04L63/0272 ,  H04L63/065 ,  H04L63/08 ,  H04L63/164

摘要： A method and system for implementing secure communications between a plurality of devices are provided. The method and system generally include the provision of at least one common encryption parameter to each of the plurality of devices, as well as an identification of the plurality of devices to one another. This information can be maintained and shared by interaction of the plurality of devices with a designated server device. In this way, a secure, point-to-point connection between at least two of the plurality of devices can be established.

摘要翻译： 提供了用于实现多个设备之间的安全通信的方法和系统。 该方法和系统通常包括向多个设备中的每一个提供至少一个公共加密参数，以及将多个设备彼此的标识。 可以通过多个设备与指定的服务器设备的交互来维护和共享该信息。 以这种方式，可以建立多个设备中的至少两个之间的安全的点对点连接。

公开(公告)号：US07448081B2

公开(公告)日：2008-11-04

申请号：US11525399

申请日：2006-09-22

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/00

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，可以将原始数据分组转发到其原始的接收者。

公开(公告)号：US20070016947A1

公开(公告)日：2007-01-18

申请号：US11525399

申请日：2006-09-22

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/16

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

公开(公告)号：US20070180514A1

公开(公告)日：2007-08-02

申请号：US11703021

申请日：2007-02-06

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/16

CPC分类号： H04L63/0272 ,  H04L63/065 ,  H04L63/08 ,  H04L63/164

摘要： A method and system for implementing secure communications between a plurality of devices are provided. The method and system generally include the provision of at least one common encryption parameter to each of the plurality of devices, as well as an identification of the plurality of devices to one another. This information can be maintained and shared by interaction of the plurality of devices with a designated server device. In this way, a secure, point-to-point connection between at least two of the plurality of devices can be established.

公开(公告)号：US07203957B2

公开(公告)日：2007-04-10

申请号：US10115462

申请日：2002-04-04

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G60F9/00

CPC分类号： H04L63/0272 ,  H04L63/065 ,  H04L63/08 ,  H04L63/164

摘要： A method and system for implementing secure communications between a plurality of devices are provided. The method and system generally include the provision of at least one common encryption parameter to each of the plurality of devices, as well as an identification of the plurality of devices to one another. This information can be maintained and shared by interaction of the plurality of devices with a designated server device. In this way, a secure, point-to-point connection between at least two of the plurality of devices can be established.

摘要翻译： 提供了用于实现多个设备之间的安全通信的方法和系统。 该方法和系统通常包括向多个设备中的每一个提供至少一个公共加密参数，以及将多个设备彼此的标识。 可以通过多个设备与指定的服务器设备的交互来维护和共享该信息。 以这种方式，可以建立多个设备中的至少两个之间的安全的点对点连接。

公开(公告)号：US07188365B2

公开(公告)日：2007-03-06

申请号：US10115554

申请日：2002-04-04

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F9/00

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally-intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，原始数据包可以转发到其原始的接收方。