专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08365273B2 Method and arrangement for providing security through network address translations using tunneling and compensations 有权
标题翻译：通过使用隧道和补偿的网络地址转换来提供安全性的方法和安排
公开(公告)号：US08365273B2
公开(公告)日：2013-01-29
申请号：US12684571
申请日：2010-01-08
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： H04L29/06
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.
摘要翻译：本发明提供了一种通过网络地址转换（NAT）来提供诸如由IPSEC协议提供的网络安全服务的方法。该方法基于确定在分组上发生的变换并补偿变换。由于只有TCP和UDP协议通过NAT工作，所以IPSEC AH / ESP报文被封装成UDP报文进行传输。执行特殊操作以允许在这种环境中的可靠通信。

2. 发明授权

US07302487B2 Security system for a data communications network 有权
标题翻译：数据通信网络的安全系统
公开(公告)号：US07302487B2
公开(公告)日：2007-11-27
申请号：US10104790
申请日：2002-03-22
申请人： Tatu Ylonen , Tero Kivinen , Marko Teiste
发明人： Tatu Ylonen , Tero Kivinen , Marko Teiste
IPC分类号： G06F15/16
CPC分类号： H04L63/0272 , H04L63/0442 , H04L63/0823 , H04L63/0853
摘要： A method is presented for setting up communication parameters in a virtual private network node for connecting to at least one other node in the virtual private network. The method may include reading information from a hardware token for determining how to connect to a packet data network; reading information from the hardware token for determining how to obtain configuration information for the virtual private network node; connecting to a packet data network on the basis of information read from the hardware token; obtaining configuration information for the virtual private network node on the basis of information read from the hardware token; and using obtained configuration information for setting up the communication parameters.
摘要翻译：提出了一种用于在虚拟专用网络节点中设置通信参数以连接到虚拟专用网络中的至少一个其他节点的方法。该方法可以包括从硬件令牌读取信息以确定如何连接到分组数据网络; 从硬件令牌读取信息，以确定如何获取虚拟专用网络节点的配置信息; 基于从硬件令牌读取的信息连接到分组数据网络; 基于从所述硬件令牌读取的信息，获取所述虚拟专用网络节点的配置信息; 并使用获得的配置信息来设置通信参数。

3. 发明授权

US08127348B2 Method and arrangement for providing security through network address translations using tunneling and compensations 有权
标题翻译：通过使用隧道和补偿的网络地址转换来提供安全性的方法和安排
公开(公告)号：US08127348B2
公开(公告)日：2012-02-28
申请号：US11128933
申请日：2005-05-12
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： H04L29/06
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.
摘要翻译：本发明提供了一种通过网络地址转换（NAT）来提供诸如由IPSEC协议提供的网络安全服务的方法。该方法基于确定在分组上发生的变换并补偿变换。由于只有TCP和UDP协议通过NAT工作，所以IPSEC AH / ESP报文被封装成UDP报文进行传输。执行特殊操作以允许在这种环境中的可靠通信。

4. 发明授权

US08245288B2 Method and arrangement for providing security through network address translations using tunneling and compensations 有权
公开(公告)号：US08245288B2
公开(公告)日：2012-08-14
申请号：US13228271
申请日：2011-09-08
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： H04L29/06
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.

5. 发明申请

US20110320623A1 METHOD AND ARRANGEMENT FOR PROVIDING SECURITY THROUGH NETWORK ADDRESS TRANSLATIONS USING TUNNELING AND COMPENSATIONS 有权
标题翻译：使用隧道和补偿通过网络地址转换提供安全的方法和安排
公开(公告)号：US20110320623A1
公开(公告)日：2011-12-29
申请号：US13228271
申请日：2011-09-08
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： G06F15/16
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.
摘要翻译：本发明提供了一种通过网络地址转换（NAT）来提供诸如由IPSEC协议提供的网络安全服务的方法。该方法基于确定在分组上发生的变换并补偿变换。由于只有TCP和UDP协议通过NAT工作，所以IPSEC AH / ESP报文被封装成UDP报文进行传输。执行特殊操作以允许在这种环境中的可靠通信。

6. 发明申请

US20060256815A1 Method and arrangement for providing security through network address translations using tunneling and compensations 有权
公开(公告)号：US20060256815A1
公开(公告)日：2006-11-16
申请号：US11128933
申请日：2005-05-12
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： H04L12/28
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.

7. 发明申请

US20100024026A1 Application gateway system and method for maintaining security in a packet-switched information network 有权
标题翻译：用于维护分组交换信息网络中的安全性的应用网关系统和方法
公开(公告)号：US20100024026A1
公开(公告)日：2010-01-28
申请号：US12586965
申请日：2009-09-30
申请人： Tatu Ylonen , Tero Kivinen , Markus Levlin
发明人： Tatu Ylonen , Tero Kivinen , Markus Levlin
IPC分类号： G06F21/20
CPC分类号： H04L63/0245 , H04L12/4604 , H04L63/0263
摘要： A method and apparatuses are disclosed for handling digital data packets at a logical borderline that separates an untrusted packet-switched information network from a protected domain. A packet processor part intercepts a packet that is in transit between the untrusted packet-switched information network and the protected domain. The packet is examined at the packet processor part in order to determine, whether the packet contains digital data that pertains to a certain protocol. If the packet is not found to contain such digital data, it is processed at the packet processor part. If the packet is found to contain digital data that pertains to said certain protocol, it gets redirected to an application gateway part that processes the packet according to a set of processing rules based on obedience to said certain protocol. The packet processor part is a kernel mode process running in a computer device and the application gateway part is a user mode process running in a computer device.
摘要翻译：公开了一种在将不可信的分组交换信息网络与受保护的域分离的逻辑边界处理数字数据分组的方法和装置。分组处理器部分拦截在不可信的分组交换信息网络和受保护的域之间传输的分组。在分组处理器部分检查分组，以便确定分组是否包含与特定协议相关的数字数据。如果没有发现包含这样的数字数据，则在分组处理器部分处理它。如果发现分组包含与所述某些协议相关的数字数据，则根据所述某些协议的顺从，将其重定向到根据一组处理规则处理分组的应用网关部分。分组处理器部分是在计算机设备中运行的内核模式进程，并且应用网关部分是在计算机设备中运行的用户模式进程。

8. 发明授权

US06957346B1 Method and arrangement for providing security through network address translations using tunneling and compensations 有权
标题翻译：通过使用隧道和补偿的网络地址转换来提供安全性的方法和安排
公开(公告)号：US06957346B1
公开(公告)日：2005-10-18
申请号：US09333829
申请日：1999-06-15
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： G06F13/00 , H04L12/46 , H04L12/56 , H04L12/66 , H04L29/06 , H04L29/12 , H04L9/00 , G06F11/30
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.
摘要翻译：本发明提供了一种通过网络地址转换（NAT）来提供诸如由IPSEC协议提供的网络安全服务的方法。该方法基于确定在分组上发生的变换并补偿变换。由于只有TCP和UDP协议通过NAT工作，所以IPSEC AH / ESP报文被封装成UDP报文进行传输。执行特殊操作以允许在这种环境中的可靠通信。

9. 发明授权

US08544079B2 Method and arrangement for providing security through network address translations using tunneling and compensations 有权
公开(公告)号：US08544079B2
公开(公告)日：2013-09-24
申请号：US12862305
申请日：2010-08-24
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： H04L29/06
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.

10. 发明申请

US20100318682A1 METHOD AND ARRANGEMENT FOR PROVIDING SECURITY THROUGH NETWORK ADDRESS TRANSLATIONS USING TUNNELING AND COMPENSATIONS 有权
标题翻译：使用隧道和补偿通过网络地址转换提供安全的方法和安排
公开(公告)号：US20100318682A1
公开(公告)日：2010-12-16
申请号：US12862305
申请日：2010-08-24
申请人： Tero Kivinen , Tatu Ylonen
发明人： Tero Kivinen , Tatu Ylonen
IPC分类号： G06F15/16
CPC分类号： H04L61/256 , H04L12/4633 , H04L29/12009 , H04L29/12367 , H04L29/12471 , H04L29/125 , H04L29/12528 , H04L29/12537 , H04L45/026 , H04L61/2007 , H04L61/25 , H04L61/2514 , H04L61/2553 , H04L61/2564 , H04L61/2575 , H04L61/2578 , H04L61/6063 , H04L63/0272 , H04L63/029 , H04L63/04 , H04L63/0428 , H04L63/164 , H04L67/2842 , H04L69/16 , H04L69/161 , H04L69/165
摘要： This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the transformations. Because only TCP and UDP protocols work through NATs, the IPSEC AH/ESP packets are encapsulated into UDP packets for transport. Special operations are performed to allow reliable communications in such environments.
摘要翻译：本发明提供了一种通过网络地址转换（NAT）来提供诸如由IPSEC协议提供的网络安全服务的方法。该方法基于确定在分组上发生的变换并补偿变换。由于只有TCP和UDP协议通过NAT工作，所以IPSEC AH / ESP报文被封装成UDP报文进行传输。执行特殊操作以允许在这种环境中的可靠通信。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式