Facilitating a secure 3 party network session by a network device
First Claim
1. An application delivery controller, comprising:
- a processor; and
a memory for storing executable instructions, the processor being configured to execute the instructions to;
receive, from a client device, a SYN data packet intended for an application server;
determine, based on the SYN data packet, that the client device is a trusted source; and
based on the determination, transmit a SYN/ACK packet to the client device, the SYN/ACK packet comprising information for the client device to authenticate the client device to the application server directly as the trusted source, the information to authenticate the client device to the application server including at least server information preliminarily sent by the application server to the application delivery controller, the server information including at least transmission control protocol (TCP) options provided by the application server, the TCP options including at least a maximum segment size, a window scale, a selective ACK, and a timestamp.
1 Assignment
0 Petitions
Accused Products
Abstract
Facilitation of secure network traffic over an application session by an application delivery controller is provided herein. A method for secure network traffic transmission over an application session may include receiving, from a client device, a SYN data packet intended for an application server. The method may continue with determining, based on the SYN data packet, that the client device is a trusted source. The method may further include transmitting, based on the determination that the client device is the trusted source, a SYN/ACK packet to the client device. The SYN/ACK packet may include information for the client device to authenticate the client device to the application server directly as the trusted source.
7 Citations
20 Claims
-
1. An application delivery controller, comprising:
-
a processor; and a memory for storing executable instructions, the processor being configured to execute the instructions to; receive, from a client device, a SYN data packet intended for an application server; determine, based on the SYN data packet, that the client device is a trusted source; and based on the determination, transmit a SYN/ACK packet to the client device, the SYN/ACK packet comprising information for the client device to authenticate the client device to the application server directly as the trusted source, the information to authenticate the client device to the application server including at least server information preliminarily sent by the application server to the application delivery controller, the server information including at least transmission control protocol (TCP) options provided by the application server, the TCP options including at least a maximum segment size, a window scale, a selective ACK, and a timestamp. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for secure network traffic transmission over an application session, the method comprising:
-
receiving, by an application delivery controller (ADC), from a client device, a SYN data packet intended for an application server; determining, by the ADC, based on the SYN data packet, that the client device is a trusted source; and based on the determination, transmitting, by the ADC, a SYN/ACK packet to the client device, the SYN/ACK packet comprising information for the client device to authenticate the client device to the application server directly as the trusted source, the information to authenticate the client device to the application server including at least server information preliminarily sent by the application server to the application delivery controller, the server information including at least transmission control protocol (TCP) options provided by the application server, the TCP options including at least a maximum segment size, a window scale, a selective ACK, and a timestamp. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. An application delivery controller, comprising:
-
a processor; and a memory for storing executable instructions, the processor being configured to execute the instructions to; collect application server information from an application server; receive, from a client device, a SYN data packet intended for the application server; determine, based on the SYN data packet, that the client device is a trusted source; generate, based on the application server information, information for the client device to authenticate the client device to the application server directly as the trusted source; based on the determination, transmit a SYN/ACK packet to the client device, the SYN/ACK packet comprising the information for the client device to authenticate the client device to the application server directly as the trusted source; ascertain network capabilities of the application server; based on the determination that the client device is the trusted source, modify an Internet Protocol header of the SYN data packet according to the network capabilities of the application server; and pass parameters from the SYN data packet to the application server to ensure compatibility of communications between the client device and the application server, the information to authenticate the client device to the application server including at least server information preliminarily sent by the application server to the application delivery controller, the server information including at least transmission control protocol (TCP) options provided by the application server, the TCP options including at least a maximum segment size, a window scale, a selective ACK, and a timestamp.
-
Specification