US2006021020A1PendingUtilityA1

Method for directly connecting an inherently secure computer to a private network element

52
Assignee: GRAPHON CORPPriority: Feb 6, 1996Filed: Jun 16, 2005Published: Jan 26, 2006
Est. expiryFeb 6, 2016(expired)· nominal 20-yr term from priority
H04L 63/1458H04L 63/0807H04L 63/0281G06Q 20/027H04L 63/0263H04L 63/02H04L 63/18H04L 69/16H04L 63/083H04L 63/0227H04L 9/40
52
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A firewall device is disclosed that includes a proxy agent configured to examine a packet received from a source host machine destined for a private network element over an IP-compliant network. The firewall is configured to determine whether the packet is inherently secure and directly connect said source host machine to the private network element if the packet is inherently secure.

Claims

exact text as granted — not AI-modified
1 . A method for directly connecting an inherently secure computer to a private network element comprising: 
 receiving a packet from a source host machine destined for a private network element over an IP-compliant network;    assigning a proxy agent operable within a firewall to examine said packet;    determining, by said proxy agent, whether said packet is inherently secure; and    proceeding to directly connect said source host machine to the private network element if said packet is inherently secure.    
   
   
       2 . The method of  claim 1 , wherein said act of determining whether said packet is inherently secure is based on the packet's port designation.  
   
   
       3 . The method of  claim 1 , wherein a list of port designations is maintained in a table in said firewall, and said packet's port designation is compared against said list in said act of determining whether said packet is inherently secure.  
   
   
       4 . The method of  claim 1 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.  
   
   
       5 . The method of  claim 2 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.  
   
   
       6 . The method of  claim 5 , wherein said act of determining whether said packet is inherently secure further comprises comparing the source address of said packet against a list of addresses.  
   
   
       7 . An apparatus for directly connecting an inherently secure computer to a private network element comprising: 
 means for receiving a packet from a source host machine destined for a private network element over an IP-compliant network;    means for assigning a proxy agent operable within a firewall to examine said packet;    determining whether said packet is inherently secure; and    means for proceeding to directly connect said source host machine to the private network element if said packet is inherently secure.    
   
   
       8 . The apparatus of  claim 7 , further comprising means for determining whether said packet is inherently secure is based on the packet's port designation.  
   
   
       9 . The apparatus of  claim 7 , further comprising means for maintaining a list of port designations in said firewall, and comparing said packet's port designation against said list.  
   
   
       10 . The apparatus of  claim 7 , further comprising means for determining whether said packet is inherently secure is based on the source address of said packet.  
   
   
       11 . The apparatus of  claim 8 , wherein said means for determining whether said packet is inherently secure is based on the source address of said packet.  
   
   
       12 . The apparatus of  claim 11 , further comprising means for comparing the source address of said packet against a list of addresses.  
   
   
       13 . A firewall comprising: 
 a firewall device comprising a proxy agent operable within the firewall, the proxy agent configured to: 
 examine a packet received from a source host machine destined for a private network element over an IP-compliant network;  
 determine whether said packet is inherently secure; and  
 directly connect said source host machine to the private network element if said packet is inherently secure.  
   
   
   
       14 . The firewall of  claim 13 , wherein said proxy agent is further configured to determine whether said packet is inherently secure is based on the packet's port designation.  
   
   
       15 . The firewall of  claim 13 , wherein a list of port designations is maintained in a table in said firewall, and said packet's port designation is compared against said list in said act of determining whether said packet is inherently secure.  
   
   
       16 . The firewall of  claim 13 , wherein said proxy agent is further configured to determine whether said packet is inherently secure is based on the source address of said packet.  
   
   
       17 . The firewall of  claim 14 , wherein said proxy agent is further configured to determine whether said packet is inherently secure is based on the source address of said packet.  
   
   
       18 . The firewall of  claim 17 , wherein said proxy agent is further configured to compare the source address of said packet against a list of addresses.  
   
   
       19 . A computer-readable device containing a set of instructions to cause a computer to perform a method for directly connecting an inherently secure computer to a private network element, the method comprising: 
 receiving a packet from a source host machine destined for a private network element over an IP-compliant network;    assigning a proxy agent operable within a firewall to examine said packet;    determining whether said packet is inherently secure; and    proceeding to directly connect said source host machine to the private network element if said packet is inherently secure.    
   
   
       20 . The device of  claim 19 , wherein said act of determining whether said packet is inherently secure is based on the packet's port designation.  
   
   
       21 . The device of  claim 19  wherein a list of port designations is maintained in a table in said firewall, and said packet's port designation is compared against said list in said act of determining whether said packet is inherently secure.  
   
   
       22 . The device of  claim 19 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.  
   
   
       23 . The device of  claim 20 , wherein said act of determining whether said packet is inherently secure is based on the source address of said packet.  
   
   
       24 . The device of  claim 23 , wherein said act of determining whether said packet is inherently secure further comprises comparing the source address of said packet against a list of addresses.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.