US2006021020A1PendingUtilityA1
Method for directly connecting an inherently secure computer to a private network element
Est. expiryFeb 6, 2016(expired)· nominal 20-yr term from priority
H04L 63/1458H04L 63/0807H04L 63/0281G06Q 20/027H04L 63/0263H04L 63/02H04L 63/18H04L 69/16H04L 63/083H04L 63/0227H04L 9/40
52
PatentIndex Score
0
Cited by
0
References
0
Claims
Abstract
A firewall device is disclosed that includes a proxy agent configured to examine a packet received from a source host machine destined for a private network element over an IP-compliant network. The firewall is configured to determine whether the packet is inherently secure and directly connect said source host machine to the private network element if the packet is inherently secure.
Claims
exact text as granted — not AI-modified1 . A method for directly connecting an inherently secure computer to a private network element comprising:
receiving a packet from a source host machine destined for a private network element over an IP-compliant network; assigning a proxy agent operable within a firewall to examine said packet; determining, by said proxy agent, whether said packet is inherently secure; and proceeding to directly connect said source host machine to the private network element if said packet is inherently secure.
2 . The method of claim 1 , wherein said act of determining whether said packet is inherently secure is based on the packet's port designation.
3 . The method of claim 1 , wherein a list of port designations is maintained in a table in said firewall, and said packet's port designation is compared against said list in said act of determining whether said packet is inherently secure.
4 . The method of claim 1 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.
5 . The method of claim 2 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.
6 . The method of claim 5 , wherein said act of determining whether said packet is inherently secure further comprises comparing the source address of said packet against a list of addresses.
7 . An apparatus for directly connecting an inherently secure computer to a private network element comprising:
means for receiving a packet from a source host machine destined for a private network element over an IP-compliant network; means for assigning a proxy agent operable within a firewall to examine said packet; determining whether said packet is inherently secure; and means for proceeding to directly connect said source host machine to the private network element if said packet is inherently secure.
8 . The apparatus of claim 7 , further comprising means for determining whether said packet is inherently secure is based on the packet's port designation.
9 . The apparatus of claim 7 , further comprising means for maintaining a list of port designations in said firewall, and comparing said packet's port designation against said list.
10 . The apparatus of claim 7 , further comprising means for determining whether said packet is inherently secure is based on the source address of said packet.
11 . The apparatus of claim 8 , wherein said means for determining whether said packet is inherently secure is based on the source address of said packet.
12 . The apparatus of claim 11 , further comprising means for comparing the source address of said packet against a list of addresses.
13 . A firewall comprising:
a firewall device comprising a proxy agent operable within the firewall, the proxy agent configured to:
examine a packet received from a source host machine destined for a private network element over an IP-compliant network;
determine whether said packet is inherently secure; and
directly connect said source host machine to the private network element if said packet is inherently secure.
14 . The firewall of claim 13 , wherein said proxy agent is further configured to determine whether said packet is inherently secure is based on the packet's port designation.
15 . The firewall of claim 13 , wherein a list of port designations is maintained in a table in said firewall, and said packet's port designation is compared against said list in said act of determining whether said packet is inherently secure.
16 . The firewall of claim 13 , wherein said proxy agent is further configured to determine whether said packet is inherently secure is based on the source address of said packet.
17 . The firewall of claim 14 , wherein said proxy agent is further configured to determine whether said packet is inherently secure is based on the source address of said packet.
18 . The firewall of claim 17 , wherein said proxy agent is further configured to compare the source address of said packet against a list of addresses.
19 . A computer-readable device containing a set of instructions to cause a computer to perform a method for directly connecting an inherently secure computer to a private network element, the method comprising:
receiving a packet from a source host machine destined for a private network element over an IP-compliant network; assigning a proxy agent operable within a firewall to examine said packet; determining whether said packet is inherently secure; and proceeding to directly connect said source host machine to the private network element if said packet is inherently secure.
20 . The device of claim 19 , wherein said act of determining whether said packet is inherently secure is based on the packet's port designation.
21 . The device of claim 19 wherein a list of port designations is maintained in a table in said firewall, and said packet's port designation is compared against said list in said act of determining whether said packet is inherently secure.
22 . The device of claim 19 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.
23 . The device of claim 20 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.
24 . The device of claim 23 , wherein said act of determining whether said packet is inherently secure further comprises comparing the source address of said packet against a list of addresses.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.