SECURE MULTIAPPLICATION PROXY
First Claim
1. Method for allowing a client application (16) to establish, in a client network (10), a first connection having a first security level, directly with a first port (1) of a server application (17) hosted in a server machine (13) linked to a server network (11), in order to send messages (30) addressed to the server machine (13), said messages (30) passing from the client network (10) to the server network (11) through a network layer (CR) of a gateway machine (9), characterized in that it comprises:
- a first step that creates a second port (3) in the gateway machine (9);
a second step that orders the network layer (CR) of the gateway machine (9) to reroute to the second port (3) any message sent to the first port (1), addressed to the server machine (13);
a third step that listens to the second port (3);
a fourth step that generates, in the gateway machine (9), a thread for establishing said first connection when the third step detects in the second port (3) a request to establish said first connection.
1 Assignment
0 Petitions
Accused Products
Abstract
A client application (16) establishes in a client network (10), a first connection having a first security level, directly with a first port (1) of a server application (17) hosted in a server machine (13) linked to a server network (11), in order to send messages addressed to the server machine (13). The messages pass from the client network (10) to the server network (11) through a network layer (CR) of a gateway machine (9). In the gateway machine, a secure application proxy reroutes the messages from the first connection, in a way that is transparent for the client application, and establishes a second connection having a second security level with the server application; the second connection is unknown to the client application.
72 Citations
6 Claims
-
1. Method for allowing a client application (16) to establish, in a client network (10), a first connection having a first security level, directly with a first port (1) of a server application (17) hosted in a server machine (13) linked to a server network (11), in order to send messages (30) addressed to the server machine (13), said messages (30) passing from the client network (10) to the server network (11) through a network layer (CR) of a gateway machine (9), characterized in that it comprises:
-
a first step that creates a second port (3) in the gateway machine (9);
a second step that orders the network layer (CR) of the gateway machine (9) to reroute to the second port (3) any message sent to the first port (1), addressed to the server machine (13);
a third step that listens to the second port (3);
a fourth step that generates, in the gateway machine (9), a thread for establishing said first connection when the third step detects in the second port (3) a request to establish said first connection. - View Dependent Claims (2, 3, 4, 5)
-
-
6. Method for allowing a client application (16) to establish in a client network (10) a first connection having a first security level, directly with a first port (1) of a server application (17) hosted in a server machine (13) linked to a server network (11), in order to send messages (30) addressed to the server machine (13), said messages (30) passing from the client network (10) to the server network (11) through a network layer (CR) of a gateway machine (9), characterized in that it consists of activating, in the gateway machine, a secure application proxy that reroutes the messages from the first connection, in a way that is transparent for the client application, in order to establish a second connection having a second security level with the server application, said second connection being unknown to said client application.
Specification