-
公开(公告)号:US07228412B2
公开(公告)日:2007-06-05
申请号:US09900493
申请日:2001-07-06
申请人: Michael Freed , Elango Gannesan , Arun Moorthy
发明人: Michael Freed , Elango Gannesan , Arun Moorthy
CPC分类号: H04L63/0485 , H04L63/0823 , H04L63/166
摘要: A method for enabling secure communication between a client on an open network and a server apparatus on a secure network. The method is generally performed on a intermediary apparatus coupled to the secure network and the open network. The method includes the steps of negotiating a secure communications session with the client apparatus via the open network; negotiating an open communications session with the server via the secure network; receiving encrypted packet application data having a length greater than a packet length via multiple data packets; decrypting the encrypted packet application data in each data packet; forwarding decrypted, unauthenticated application data to the server via the secure network; and authenticating the decrypted packet data on receipt of a final packet of the segment.
摘要翻译: 一种用于实现开放网络上的客户端与安全网络上的服务器设备之间的安全通信的方法。 该方法通常在耦合到安全网络和开放网络的中间设备上执行。 该方法包括以下步骤:经由开放网络与客户端装置协商安全通信会话; 通过安全网络与服务器协商开放通信会话; 经由多个数据分组接收长度大于分组长度的加密分组应用数据; 解密每个数据包中的加密分组应用数据; 通过安全网络将解密的未经身份验证的应用数据转发到服务器; 以及在接收到所述段的最终分组时对所解密的分组数据进行认证。
-
公开(公告)号:US07853781B2
公开(公告)日:2010-12-14
申请号:US09900494
申请日:2001-07-06
申请人: Michael Freed , Elango Gannesan
发明人: Michael Freed , Elango Gannesan
CPC分类号: H04L63/166 , H04L29/06 , H04L63/0281 , H04L63/0471 , H04L63/0853 , H04L67/1002 , H04L67/1008 , H04L2029/06054 , H04L2463/102
摘要: A load balancing SSL acceleration device. The device includes a processor, memory and communications interface. A TCP communications manager capable of interacting with a plurality of client devices and server devices simultaneously is provided, along with a secure communications manager. The apparatus further includes an encryption and decryption engine instructing the processor to encrypt data from a secure communications session and direct it to said second communication session. Still further, the apparatus includes a load balancing engine associating ones of said client devices with ones of said servers for a communications session based on calculated processing loads of each said server. In a further aspect, a method for performing SSL acceleration of data communications between a plurality of customer devices attempting to communicate with an enterprise having a plurality of servers is disclosed.
摘要翻译: 负载平衡SSL加速设备。 该设备包括处理器,存储器和通信接口。 提供了能够与多个客户端设备和服务器设备同时交互的TCP通信管理器以及安全通信管理器。 该装置还包括加密和解密引擎,指示处理器从安全通信会话加密数据并将其引导到所述第二通信会话。 此外,该装置包括负载平衡引擎,其基于所计算的每个所述服务器的处理负载,将所述客户端设备中的一个与用于通信会话的所述服务器中的一个相关联。 在另一方面,公开了一种用于执行尝试与具有多个服务器的企业通信的多个客户设备之间的数据通信的SSL加速的方法。
-
公开(公告)号:US07908472B2
公开(公告)日:2011-03-15
申请号:US09900515
申请日:2001-07-06
申请人: Michael Freed , Elango Gannesan , Praveen Patnala
发明人: Michael Freed , Elango Gannesan , Praveen Patnala
IPC分类号: H04L29/06 , H04L9/32 , H04L9/28 , G06F12/14 , G06F7/04 , G06F17/00 , G06F15/16 , G06F15/173 , H04K1/00
摘要: An acceleration apparatus is adapted to operate in a direct mode and a proxy mode. In the direct mode, the acceleration apparatus decrypts data packets received from a client and forwards the decrypted data packets to a server using a communication session negotiated by the client and the server. In the proxy mode, the acceleration apparatus responds to the client on behalf of the server and forwards the decrypted data packets to the server using a communication session negotiated by the acceleration device and the server. The acceleration apparatus automatically switches from the direct mode to the proxy mode upon detection of a communication error associated with the communication session negotiated by the client and the server.
摘要翻译: 加速装置适于以直接模式和代理模式操作。 在直接模式中,加速装置解密从客户端接收的数据分组,并使用由客户机和服务器协商的通信会话将解密的数据分组转发到服务器。 在代理模式中,加速装置代表服务器对客户端进行响应,并使用由加速设备和服务器协商的通信会话将解密的数据分组转发到服务器。 在检测到与客户机和服务器协商的通信会话相关联的通信错误时,加速设备自动地从直接模式切换到代理模式。
-
公开(公告)号:US07827404B1
公开(公告)日:2010-11-02
申请号:US11556951
申请日:2006-11-06
申请人: Michael Freed , Elango Gannesan
发明人: Michael Freed , Elango Gannesan
CPC分类号: H04L69/163 , H04L63/0281 , H04L63/0428 , H04L63/0471 , H04L63/166 , H04L69/16 , H04L69/161
摘要: A method for secure communications between a client and one of a plurality of servers performed on an intermediate device coupled to the client and the plurality of servers.
摘要翻译: 一种在与客户机和多个服务器耦合的中间设备上执行的客户机与多个服务器中的一个服务器之间的安全通信的方法。
-
公开(公告)号:US07149892B2
公开(公告)日:2006-12-12
申请号:US09900496
申请日:2001-07-06
申请人: Michael Freed , Elango Gannesan
发明人: Michael Freed , Elango Gannesan
CPC分类号: H04L69/163 , H04L63/0281 , H04L63/0428 , H04L63/0471 , H04L63/166 , H04L69/16 , H04L69/161
摘要: A method for secure communications between a client and one of a plurality of servers performed on an intermediary device coupled to the client and said plurality of servers. In one aspect, the method comprises: establishing an open communications session between the intermediary device and the client via an open network; negotiating a secure communications session with the client; establishing an open communications session with said one of said plurality of servers via a secure network; receiving encrypted data from the client via the secure communications session; decrypting encrypted application data; forwarding decrypted application data to the server via the secure network; receiving application data from the server via the secure network; encrypting the application data; and sending encrypted application data to the client. In a further aspect, an apparatus including a network interface communicating with the public network and the secure network at least one processor, programmable dynamic memory addressable by the processor, and a communications channel coupling the processor, memory and the network communications interface is provided. The apparatus further includes a proxy TCP communications engine, a proxy SSL communications engine, a server TCP communications engine; and a packet data encryption and decryption engine.
-
公开(公告)号:US07082464B2
公开(公告)日:2006-07-25
申请号:US09900482
申请日:2001-07-06
申请人: Taqi Hasan , Elango Gannesan , Allen B. Rochkind , Sagar Golla
发明人: Taqi Hasan , Elango Gannesan , Allen B. Rochkind , Sagar Golla
IPC分类号: G06F15/173
CPC分类号: H04L41/22 , H04L41/0213 , H04L41/046 , H04L41/082 , H04L41/0856 , H04L41/0883 , H04L67/02 , H04L67/16 , H04L67/26 , H04L67/34 , H04L69/329
摘要: A virtual management system for a network facility, such as a data center, or any facility having a plurality of components which can be organized as objects for presentation in a virtualized environment, is disclosed. The system includes a management topology presenting devices, facilities, subscribers, log servers, and services as objects to an administrative interface; and a configuration manager implementing changes to objects in the topology responsive to configuration input from an administrator via the administrative interface. In an exemplary embodiment, the user interface is a graphical user interface designed to work in a platform independent environment. The system may include a management server coupled to the plurality of objects. In one aspect, the management server communicates with the devices, downloading configuration data to and uploading configuration data from, the devices. The management server and the interface may communicate via a LAN, WAN or the Internet.
-
-
-
-
-
搜索结果
6 条记录 (耗时 0.019 秒)
