公开(公告)号：US20230403345A1

公开(公告)日：2023-12-14

申请号：US18456920

申请日：2023-08-28

Applicant: Lemon Inc.

Inventor： Zhipeng TIAN ,  Mu DU ,  Daniel HAIMANOT ,  Keyi WU ,  Gan FANG ,  Zhengqin LUO

IPC: H04L67/63 ,  H04L9/40

CPC classification number: H04L67/63 ,  H04L63/166

Abstract: A third party gateway for validating egress traffic in a computer network system is provided. The third party gateway includes a proxy and a gateway agent. The proxy includes a termination proxy and a forward proxy. The proxy is configured to terminate Transport Layer Security communication for the egress traffic. The proxy is further configured to forward the egress traffic to the gateway agent. The gateway agent is configured to validate the egress traffic as valid traffic or invalid traffic based on predetermined validation requirements. The proxy is further configured to receive the valid traffic or the invalid traffic from the gateway agent, and to forward the valid traffic to a destination service or to block the invalid traffic.

公开(公告)号：US20250080495A1

公开(公告)日：2025-03-06

申请号：US18456952

申请日：2023-08-28

Applicant: Lemon Inc.

Inventor： Zhipeng TIAN ,  Zhengqin LUO ,  Mu DU ,  Joohwi LEE ,  Chongxin LUO ,  Sen WANG ,  Jianqing ZHANG

IPC: H04L9/40 ,  H04L67/568

Abstract: A security gateway for validating ingress traffic and/or a response to the ingress traffic in a computer network, and a method for validating the same. The security gateway includes a proxy server and a gateway agent. The proxy server receives the ingress traffic and/or the response and forwards the ingress traffic and/or the response to the gateway agent. The gateway agent validates the ingress traffic and/or the response as valid ingress traffic and/or valid response or invalid ingress traffic and/or invalid response based on predetermined validation requirements. The proxy server further receives the valid ingress traffic from the gateway agent and forwards the valid ingress traffic to a backend service and/or receives the valid response from the gateway agent and forwards the valid response to a client device or blocks the invalid ingress traffic and/or invalid response.