[특허]Virtual private network between computing network and remote device

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G06F-011/30
출원번호	UP-0794243 (2004-03-05)
등록번호	US-7673133 (2010-04-21)
발명자 / 주소	Wesemann, Darren L.
출원인 / 주소	Intellisync Corporation
대리인 / 주소	Alston & Bird LLP
인용정보	피인용 횟수 : 4 인용 특허 : 33

초록 ▼

A secure connection between a computer network and a remote device is provided by a carrier network between the computer network and the remote device. The secure connection includes data tunnels that operate as virtual private networks between the corporate network and the carrier network and betwe

A secure connection between a computer network and a remote device is provided by a carrier network between the computer network and the remote device. The secure connection includes data tunnels that operate as virtual private networks between the corporate network and the carrier network and between the remote device and the carrier network. In addition, communication protocols can be used to enable data requests and data transmission over the secure connection, optionally through ports on the computer network that are opened for Web traffic.

대표청구항 ▼

What is claimed is: 1. A method comprising: establishing a first data tunnel leg between a tunneling client of a computing network and a tunneling server of a carrier network; establishing a second data tunnel leg between the tunneling server of the carrier network and the tunneling client of a rem

What is claimed is: 1. A method comprising: establishing a first data tunnel leg between a tunneling client of a computing network and a tunneling server of a carrier network; establishing a second data tunnel leg between the tunneling server of the carrier network and the tunneling client of a remote device; and causing transmission of data between the remote device and the computing network via the first and second data tunnel legs and the carrier network using a first template associated with a first protocol, the first template being used by the tunneling client of the computing network, and a second template associated with the first protocol, the second template being used by the tunneling client of the remote device, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 2. A method as defined in claim 1, wherein the data transmitted between the remote device and the computing network comprises an access request that includes a protocol identifier that allows a firewall and a proxy on the computing network to recognize the data as web traffic and allow passage thereof into the computing network. 3. A method as defined in claim 2, wherein the first protocol comprises a Post Office Protocol (POP) e-mail protocol used in transferring e-mail commands or data between the computing network and the remote device. 4. A method as defined in claim 2, wherein: the first protocol comprises an Instant Messenger protocol; and each of the first template and the second template comprises four inflection points that correspond to four Instant Messenger tasks, including the tasks of: send a message; receive a message; retrieve a buddy list; and login. 5. A method as defined in claim 1, wherein establishing a first data tunnel leg comprises: causing a first connection signal to be sent from the tunneling client of the computing network to a tunneling server of the carrier network; and causing a connection reply signal to be sent from the tunneling server to the tunneling client on the computing network. 6. A method as defined in claim 5, wherein the first connection signal comprises a uniform resource identifier that represents a request for the carrier network to provide access to network data on the computing network. 7. A method as defined in claim 1, further comprising causing a keep alive signal to be sent from the computing network to the carrier network to maintain the first data tunnel leg. 8. A method as defined in claim 1, wherein the first connection signal is to be transmitted via a port that is established through a firewall on the computing network, wherein the port is otherwise specified for being opened and reserved for Internet traffic. 9. A method as defined in claim 5, wherein the first connection signal further comprises a first identification code which authenticates the computing network. 10. A method as defined in claim 9, further comprising causing a session key to be transmitted from the tunneling client of the remote device, wherein the session key is used to set up an encryption protocol that is to be used for communication between the remote device and the computing network. 11. A method as defined in claim 9, further comprising causing a session key to be transmitted from the tunneling client of the computing network, wherein the session key is used to set up an encryption protocol that is to be used for communication between the remote device and the computing network. 12. A method as defined in claim 9, further comprising causing transmission of identification data, from the remote device to the computing network, that is used by the computing network to authenticate the identity of a user operating the remote device. 13. A method as defined in claim 5, wherein establishing the second data tunnel leg second connection signal further comprises causing a second connection signal to be sent from the tunneling client of the remote device to the tunneling server. 14. A method comprising: receiving a first connection signal from a computing network; establishing a first data tunnel leg between a carrier network and the computing network in response to the first connection signal; receiving a second connection signal from a remote device; establishing a second data tunnel leg between the carrier network and the remote device in response to the second connection signal, the first data tunnel leg and the second tunnel leg together operating as a virtual private network; and causing transmission of data between the remote device and the computing network via the first and second data tunnel legs using a first template associated with a first protocol, the first template being used by a tunneling client of the computing network, and a second template associated with the first protocol, the second template being used by a tunneling client of the remote device, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 15. A method as defined in claim 14, wherein the first protocol comprises a Post Office Protocol (POP) e-mail protocol used in transferring e-mail commands or data between the computing network and the remote device. 16. A method as defined in claim 14, wherein: the first protocol comprises an Instant Messenger protocol; and each of the first template and the second template comprises four inflection points that correspond to four Instant Messenger tasks including the tasks of: send a message; receive a message; retrieve a buddy list; and login. 17. A method as defined in claim 14, wherein the carrier network comprises a tunneling server that includes a user interface service that converts the data into a format that is configured to be visually displayed before sending the data to the remote device. 18. A method as defined in claim 14, wherein establishing the first data tunnel leg further comprises causing a connection reply signal to be sent to the computing network. 19. A method as defined in claim 14, wherein the first connection signal comprises a uniform resource identifier that represents a request for the carrier network to provide access to network data on the computing network. 20. A method as defined in claim 14, further comprising receiving a keep alive signal from the computing network to maintain the first data tunnel leg. 21. A method as defined in claim 20, wherein the first data tunnel leg is maintained substantially continuously and the second data tunnel leg is opened intermittently upon request from the remote device. 22. A method as defined in claim 14, wherein the first connection signal is to be transmitted via a port that is established through a firewall on the computing network, wherein the port is opened and reserved for Internet traffic. 23. A method as defined in claim 14, wherein, upon opening the second data tunnel leg, the first data tunnel leg and the second data tunnel leg comprise a single data tunnel leg wherein the remote device is configured to communicate with the computing network. 24. A method as defined in claim 14, wherein the first connection signal is received by a designated tunneling server on the carrier network, and wherein the designated server is one of multiple tunneling servers of the carrier network. 25. A method as defined in claim 14, further comprising receiving a session key from a device client on the remote device, wherein the session key is used to set up an encryption protocol that is to be used for communication between the remote device and the computing network. 26. A method as defined in claim 25, further comprising causing transmission of identification data, to the computing network from the remote device, that is used by the computing network to authenticate the identity of a user operating the remote device. 27. A method comprising: causing transmission of a connection signal from a tunneling client of a device to a tunneling server of a carrier network, wherein a first data tunnel leg has already been established between the tunneling server and a remote computer network; and causing a data request to be transmitted via the second data tunnel leg to the carrier network using a first template that is associated with a first protocol and is used by the tunneling client of the device, upon the establishment of a second data tunnel leg between the device and the carrier network in response to the connection signal; causing receipt of the data request, at the remote computing network, from the carrier network via the first data tunnel leg; and processing the data request, at the remote computing network, using a second template associated with the first protocol, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 28. A method as defined in claim 27, wherein the first protocol comprises a Post Office Protocol (POP) e-mail protocol used in transferring e-mail commands or data between the remote computing network and the device. 29. A method as defined in claim 27, wherein: the first protocol comprises an Instant Messenger protocol; and each of the first template and the second template comprises four inflection points that correspond to four Instant Messenger tasks, including the tasks of: send a message; receive a message; retrieve a buddy list; and login. 30. A method as defined in claim 27, wherein the connection signal comprises a uniform resource identifier which represents a request for the carrier network to provide to the device access to network data on the remote computing network. 31. A method as defined in claim 27, further comprising causing transmission of a session key from the tunneling client of the device, wherein the session key is used to set up an encryption protocol that is to be used for communication between the device and the remote computing network. 32. A method as defined in claim 31, further comprising causing transmission of identification data, to the remote computing network, that is used by the remote computing network to authenticate the identity of a user operating the device. 33. A method comprising: causing transmission of a first connection signal from a tunneling client of a computing network to a carrier network; transmitting a keep alive signal from the computing network to the carrier network to maintain a first data tunnel leg upon the establishment of the first data tunnel leg between the computing network and the carrier network; and causing receipt of a data request from a remote device via the first data tunnel leg and a second data tunnel leg located between the carrier network and the remote device, wherein the data request is caused to be transmitted using a first template associated with a first protocol, the first template being used by the tunneling client of the computing network, and a second template associated with the first protocol, the second template being used by a tunneling client of the remote device, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 34. A computer program product comprising at least one computer-readable storage medium having computer-readable program code portions stored therein, the computer-readable program code portions comprising: program code instructions for establishing a first data tunnel leg between a carrier network and a computing network upon receiving a first connection signal from the computing network; program code instructions for establishing a second data tunnel leg between the carrier network and a remote device, the first data tunnel leg and the second data tunnel leg together operating as a virtual private network; and program code instructions for causing transmission of data between the remote device and the computing network via the first and second data tunnel legs using a first template associated with a first protocol, the first template being used by a tunneling client of the computing network, and a second template associated with the first protocol, the second template being used by a tunneling client of the remote device, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 35. A computer program product as defined in claim 34, wherein the first protocol comprises a Post Office Protocol (POP) e-mail protocol used in transferring e-mail commands or data between the computing network and the remote device. 36. A computer program product as defined in claim 34, wherein: the first protocol comprises an Instant Messenger protocol; and each of the first template and the second template comprises four inflection points that correspond to four Instant Messenger tasks including the tasks of: send a message; receive a message; retrieve a buddy list; and login. 37. A computer program product as defined in claim 34, further comprising program code instructions for maintaining substantially continuously the first data tunnel leg and the second data tunnel leg is opened intermittently upon request from the remote device. 38. A computer program product as defined in claim 34, further comprising program code instructions for causing transmission of the first connection signal via a port that is established through a firewall on the computing network, wherein the port is opened and reserved for Internet traffic. 39. A system for enabling a user of a remote device to access network data and software applications stored on a computer network, the system comprising: a first tunneling client on the computer network; a tunneling server on a carrier network, wherein: the first tunneling client and the tunneling server are configured to communicate with each other and maintain a first data tunnel leg therebetween; the tunneling server is configured to, upon receiving a connection signal from the remote device, establish a second data tunnel leg between the carrier network and the remote device which comprises a second tunneling client, the first data tunnel leg and the second data tunnel leg together operating as a virtual private network; and wherein the second tunneling client is configured to cause transmission of data between the remote device and the computing network via the first and second data tunnel legs using a second template associated with a first protocol, the second template being used by the second tunneling client, and a first template associated with the first protocol, the first template being used by the first tunneling client, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 40. A system as defined in claim 39, wherein the second tunneling client is configured to generate the connection signal. 41. A method as defined in claim 1, wherein the tunneling client of the computing network comprises the first template and the tunneling client of the remote device comprises the second template. 42. A method as defined in claim 41, wherein the first template comprises a protocol code corresponding to the first protocol and the second template comprises a protocol format corresponding to the first protocol but not the protocol code. 43. A method as defined in claim 33, wherein the tunneling client of the computing network comprises the first template and the tunneling client of the remote device comprises the second template. 44. A method as defined in claim 43, wherein the first template comprises a protocol code corresponding to the first protocol and the second template comprises a protocol format corresponding to the first protocol but not the protocol code. 45. An apparatus comprising: at least one processor; and at least one memory including computer program code, the at least one memory and the computer program code configured to with the at least one processor, cause the apparatus at least to perform at least the following; communicate with a first tunneling client on a computer network and maintain a first data tunnel leg therebetween; establish a second data tunnel leg between the carrier network and the remote device upon receiving a connection signal from a remote device which comprises a second tunneling client, the first data tunnel leg and the second data tunnel leg together operating as a virtual private network; and cause data to be transmitted between the remote device and the computing device via the first and second data tunnel legs using a second template associated with a first protocol, the second template being used by the second tunneling client of the remote device, and a first template associated with the first protocol, the first template being used by the first tunneling client of the computing network, wherein each of the first template and the second template comprises one or more inflection points that correspond to commands or other data aspects that are unique to the first protocol. 46. The apparatus of claim 45, wherein the first tunneling client of the computing network comprises the first template and the second tunneling client of the remote device comprises the second template.

LOADING...

이 특허에 인용된 특허 (33) 인용/피인용 타임라인 분석

Gilbrech Sidney A., Apparatus for implementing virtual private networks.
상세보기
Ben Itzhak,Yuval, Application-layer security method and system.
상세보기
Bots Henk J. ; Hunt William E. ; Palma Derek ; Lawler John, Architecture for virtual private networks.
상세보기
Salo, Randy; Van Hamersveld, Chris; Shelton, Barry K.; Herbinaux, Larry; Deacon, D. Brian; Fayal, Jr., Kenneth Eugene, CLIENTS REMOTE ACCESS TO ENTERPRISE NETWORKS EMPLOYING ENTERPRISE GATEWAY SERVERS IN A CENTRALIZED DATA CENTER CONVERTING PLURALITY OF DATA REQUESTS FOR MESSAGING AND COLLABORATION INTO A SINGLE REQU.
상세보기
Roberts Pasha ; Bhathena Firdaus ; Honore Francis A., Call center system where users and representatives conduct simultaneous voice and joint browsing sessions.
상세보기
Salo, Randy; Van Hamersveld, Chris; Shelton, Barry K., Data center for providing subscriber access to data maintained on an enterprise network.
상세보기
Jorgensen, Jacob W., IP-flow identification in a wireless point to multi-point transmission system.
상세보기
Michel K. Susai ; Rajiv Sinha ; Deepinder S. Setia ; Ajay V. Soni, Internet client-server multiplexer.
상세보기
Hawe William R. (Pepperell MA) Lampson Butler W. (Cambridge MA) Gupta Amar (Northboro MA), Method and apparatus for end-to-end encryption of a data packet in a computer network.
상세보기
Crichton Joseph M. ; Garvin Peter F. ; Staten Jeffrey W. ; Wright Waiki L., Method and apparatus for lightweight secure communication tunneling over the internet.
상세보기
Muniyappa Umesh ; Natarajan Alampoondi Eswaran ; Porlman Radia Joy ; Brailas Nicholas Michael ; Terzich Michael, Method and apparatus for providing a virtual private network.
상세보기
Hanson, Aaron D.; Sturniolo, Emil A.; Menn, Anatoly; Olson, Erik D.; Savarese, Joseph T., Method and apparatus for providing mobile and other intermittent connectivity in a computing environment.
상세보기
Murphy David ; Unice Kyle, Method and system for combining computer network protocols.
상세보기
Naudus Stanley T. ; Nadkarni Vijay, Method and system for reflexive tunneling.
상세보기
Laursen Andrew L. ; Martin ; Jr. Bruce K. ; Rossmann Alain S., Method and system for securely interacting with managed data from multiple devices.
상세보기
Maeshima Osamu,JPX ; Ito Yoshihiro,JPX ; Ishikura Masami,JPX ; Asami Tohru,JPX, Method for constructing a VPN having an assured bandwidth.
상세보기
Wallach Walter A. ; Findlay Bruce ; Pellicer Thomas J. ; Chrabaszcz Michael, Method for providing a fault tolerant network using distributed server processes to remap clustered network resources to other servers during server failure.
상세보기
Bendinelli, Samuel; Herrick, Michael; Keane, John; Macey, Christopher, Methods and systems for enabling a tunnel between two computers on a network.
상세보기
Chuah, Mooi Choo; Rai, Girish, Mobile point-to-point protocol.
상세보기
Chen James F. ; Wang Jieh-Shan ; Brook Christopher T. ; Garvey Francis, Multi-access virtual private network.
상세보기
Joung,Jin Woo, Multi-layered packet processing device.
상세보기
Sheth, Purnam Anil; Sitaraman, Aravind; Yager, Charles T.; Burns, Gregory D., PPP domain name and L2TP tunnel selection configuration override.
상세보기
Yoshinari Kumaki JP; Keiji Tsunoda JP; Shigeo Matsuzawa JP; Noriyasu Kato JP; Osamu Moriya JP; Toshio Okamoto JP, Router device, datagram transfer method and communication system realizing handoff control for mobile terminals.
상세보기
Schneider David S. ; Lipstone Laurence R. ; Jensen Daniel ; Ribet Michael B., Secure delivery of information in a network.
상세보기
Subramaniam Anand ; Ebrahimi Hashem M., Secure intranet access.
상세보기
Green Michael W. ; Jensen Andrew W., Secure server utilizing separate protocol stacks.
상세보기
Shaheen Amal Ahmed ; Yellepeddy Krishna Kishore, System and method for cache management in mobile user file systems.
상세보기
McLaughlin Paul F., System and methods for generating and distributing alarm and event notifications.
상세보기
Owens Gary L. (Mountain View CA), System for interconnecting applications across different networks of data processing systems by mapping protocols across.
상세보기
Zombek, James M.; Sobchak, Richard K.; Bonefas, Rudy G., System, method and computer program product for providing server discovery services during a startup sequence.
상세보기
David Mark Ogle ; Diane Phylis Pozefsky ; Robert Joseph Sundstrom, Technique for enabling messaging systems to use alternative message delivery mechanisms.
상세보기
Pandharipande, Milind Manohar, Unified messaging notification.
상세보기
Rajakarunanayake, Yasantha N., Virtual L2TP/VPN tunnel network and spanning tree-based method for discovery of L2TP/VPN tunnels and other layer-2 services.
상세보기

이 특허를 인용한 특허 (4) 인용/피인용 타임라인 분석

Gupta, Sandeep K.; Taylor, Zane M.; Tang, Sherman S., Network security as a service using virtual secure channels.
상세보기
Terpstra, Rich; Moore, Richard, System and method for routing calls associated with private dialing plans.
상세보기
Lawson, Richard Lee; Kickham, David Patrick; Chandler, Clifton Douglas, Systems and methods for changing parameters of a controller.
상세보기
Morales, Giovanni M. Suarez, Systems for securely connecting to remote networks.
상세보기

활용도 분석정보

상세보기

다운로드

내보내기

활용도 Top5 특허

해당 특허가 속한 카테고리에서 활용도가 높은 상위 5개 콘텐츠를 보여줍니다.
더보기 버튼을 클릭하시면 더 많은 관련자료를 살펴볼 수 있습니다.

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

[미국특허] Virtual private network between computing network and remote device 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (33) 인용/피인용 타임라인 분석

이 특허를 인용한 특허 (4) 인용/피인용 타임라인 분석

활용도 분석정보

활용도 Top5 특허

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

[미국특허] Virtual private network between computing network and remote device 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (33) 인용/피인용 타임라인 분석

이 특허를 인용한 특허 (4) 인용/피인용 타임라인 분석

활용도 분석정보

활용도 Top5 특허 더보기

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

활용도 Top5 특허