Establishing consistent, end-to-end protection for a user datagram
Number of patents in Portfolio can not be more than 2000
United States of America Patent
Stats
-
Aug 16, 2005
Grant Date -
Jul 11, 2002
app pub date -
Jan 5, 2001
filing date -
Jan 5, 2001
priority date (Note) -
Expired
status (Latency Note)
Importance
Abstract
A method, system, and computer program product for providing consistent, end-to-end protection within a computer network for user datagrams (i.e. packets) traveling through the network. The network may comprise network segments that are conventionally assumed to be secure (such as those found in a corporate intranet) as well as network segments in non-secure networks (such as the public Internet or corporate extranets). Because security breaches may in fact happen in any network segment when datagrams are unprotected, the present invention discloses a technique for protecting datagrams throughout the entire network path by establishing cascaded tunnels. The datagrams may be exposed in cleartext at the endpoints of each tunnel, thereby enabling security gateways to perform services that require content inspection (such as network address translation, access control and authorization, and so forth). The preferred embodiment is used with the 'IPSec' (Internet Protocol Security Protocol) and 'IKE' (Internet Key Exchange) protocols, thus providing a standards-based solution.
First Claim
Family
International Classification(s)
Cited Art Landscape
Patent Citation Ranking
Advertisement
Advertisement
Advertisement
Recipient Email Address
Recipient Email Address
Comment
Recipient Email Address
Add to Portfolio(s)
To add this patent to one, or more, of your portfolios, simply click the add button.
This Patent is in these Portfolios:
Add to additional portfolios:
Last Refreshed On:
Changes done successfully