Systems and Methods for Remote Rogue Protocol Enforcement
First Claim
1. A user agent residing within a remote client and configured to enforce message protocol policy, comprising:
- a communications monitoring element configured to examine a communications connection between the remote client and an external message server to determine if the external message server matches a restricted server attribute; and
a communications controller element configured to work in conjunction with the communications monitoring element to block communications between the remote client and the external message server when the external message server matches the restricted server attribute unless the communications between the remote client and the external message server are monitored by a protocol inspection gateway, wherein the protocol inspection gateway is configured to, intercept the communications between the remote client and the external message server, and inspect a message protocol associated with the intercepted communications to determine if the message protocol matches a protocol definition file, and when a match occurs, applying a policy enforcement rule associated with the protocol definition file that overrides aspects of the message protocol associated with the intercepted communications.
28 Assignments
0 Petitions
Accused Products
Abstract
A user agent residing within a remote client and configured to enforce message protocol policy is disclosed. The user agent includes a communication monitoring element and a communication controller element. The communications monitoring element is configured to examine a communications connection between the remote client and an external message server to determine if the external message server matches a restricted server attribute. The communications controller element is configured to work in conjunction with the communications monitoring element to block communications between the remote client and the external message server when the external message server matches a restricted server attribute unless the communications between the remote client and the external message server are monitored by a protocol inspection gateway. The protocol inspection gateway is configured to intercept the communications between the remote client and the external message server and inspect a message protocol associated with the intercepted communications to determine if the message protocol matches a protocol definition file, and when a match occurs, apply a policy enforcement rule associated with the protocol definition file that overrides aspects of the message protocol associated with the intercepted communications.
93 Citations
30 Claims
-
1. A user agent residing within a remote client and configured to enforce message protocol policy, comprising:
-
a communications monitoring element configured to examine a communications connection between the remote client and an external message server to determine if the external message server matches a restricted server attribute; and
a communications controller element configured to work in conjunction with the communications monitoring element to block communications between the remote client and the external message server when the external message server matches the restricted server attribute unless the communications between the remote client and the external message server are monitored by a protocol inspection gateway, wherein the protocol inspection gateway is configured to, intercept the communications between the remote client and the external message server, and inspect a message protocol associated with the intercepted communications to determine if the message protocol matches a protocol definition file, and when a match occurs, applying a policy enforcement rule associated with the protocol definition file that overrides aspects of the message protocol associated with the intercepted communications. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for enforcing message protocol policy for a remote client, comprising:
-
a virtual private network agent residing within the remote client, the virtual private network agent configured to function as a communications proxy for the remote client;
a user agent residing within the remote client, the user agent configured to examine every communications connection established between the remote client and an external message server to determine whether the external message server matches a restricted server attribute, and when a match occurs, blocking all messages transmitted between the remote client and the external message server unless the messages are routed through the virtual private network agent; and
an enterprise network communicatively connected to the remote client and the external message server, including, a virtual private network gateway configured to be in communications with the virtual private network agent, wherein the virtual private network gateway is further configured to send messages to and receive messages from the virtual private network agent via tunneling;
a protocol inspection gateway communicatively connected to the virtual private network gateway and the external message server, the protocol inspection gateway configured to, intercept messages from the virtual private network gateway and the external message server, and inspect a message protocol associated with the intercepted message to determine if the message protocol matches a protocol definition file, and when a match occurs, applying a policy enforcement rule associated with the protocol definition file that overrides aspects of the message protocol associated with the intercepted message. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A method for enforcing message protocol policy for a remote client, comprising:
-
establishing a communication connection between the remote client and an external message server;
inspecting the communications connection between the remote client and the external message server to determine if the external message server matches a restricted server attribute; and
when a match occurs, blocking the communications connection between the remote client and the external message server unless messages communicated via the communications connection are intercepted by a protocol inspection gateway, wherein the protocol inspection gateway is configured to inspect a message protocol associated with the intercepted message to determine if the message protocol matches a protocol definition file, and when a match occurs, applying a policy enforcement rule associated with the protocol definition file that overrides aspects of the message protocol associated with the intercepted message. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30)
-
Specification