System and method for projecting content beyond firewalls
First Claim
Patent Images
1. A system for establishing communications across a firewall comprising:
- a communications network;
a first server within said communications network;
a first computer separated from said communications network by a first firewall, said first computer sending information to said first server; and
, a second computer separated from said communications network by a second firewall, said second computer receiving information from said first server related to the information sent from said first computer, wherein said first computer transmits a hypertext transfer protocol (HTTP) message to said first server, said HTTP message comprising an encrypted identifier of said second computer and encrypted content, wherein the identifier is encrypted with a first encryption key associated with the first server and the content is encrypted with a second different encryption key associated with the second computer, wherein said first server decrypts said encrypted identifier to an unencrypted identification of said second computer and forwards said encrypted content to said second computer using said unencrypted identification, wherein said HTTP message is transmitted through a firewall port that is normally open to HTTP packets.
6 Assignments
0 Petitions
Accused Products
Abstract
A system and method for exchanging information between clients separated by firewalls is disclosed. A server may receive the information as posted through a browser client from beyond a first firewall and relay it to another client beyond a second firewall without lowering the security levels of the firewalls.
-
Citations
40 Claims
-
1. A system for establishing communications across a firewall comprising:
-
a communications network;
a first server within said communications network;
a first computer separated from said communications network by a first firewall, said first computer sending information to said first server; and
,a second computer separated from said communications network by a second firewall, said second computer receiving information from said first server related to the information sent from said first computer, wherein said first computer transmits a hypertext transfer protocol (HTTP) message to said first server, said HTTP message comprising an encrypted identifier of said second computer and encrypted content, wherein the identifier is encrypted with a first encryption key associated with the first server and the content is encrypted with a second different encryption key associated with the second computer, wherein said first server decrypts said encrypted identifier to an unencrypted identification of said second computer and forwards said encrypted content to said second computer using said unencrypted identification, wherein said HTTP message is transmitted through a firewall port that is normally open to HTTP packets. - View Dependent Claims (2, 3, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
4. The system according to claim 4, wherein said open port is at least one of port 80 and port 8080.
-
14. A method for transmitting information across a network comprising the steps of:
-
receiving at a server an encrypted identifier of a second computer from a first computer, the identifier encrypted with a first encryption key associated with the server;
receiving at the server an encrypted message from said first computer, the message encrypted with a second encryption key associated with the second computer;
decrypting said encrypted identifier into an unencrypted identification of said second computer; and
,transmitting said encrypted message to said second computer without decrypting said encrypted message, wherein at least one of said receiving steps and said transmitting step includes receiving or transmitting through a firewall port that is normally open by default to Internet traffic. - View Dependent Claims (15)
-
-
16. A computer-readable medium storing a program for transmitting information across a network, said program comprising the steps of:
-
receiving at a server an encrypted identifier of a second computer from a first computer, the identifier encrypted with a first encryption key associated with the server;
receiving at the server an encrypted message from said first computer, the message encrypted with a second encryption key associated with the second computer;
decrypting said encrypted identifier into an unencrypted identification of said second computer; and
transmitting said encrypted message to said second computer without decrypting said encrypted message, wherein at least one of said receiving steps and said transmitting step includes receiving or transmitting through a firewall port that is normally open by default to Internet traffic. - View Dependent Claims (17)
-
-
18. A method for transmitting information across a network comprising the steps of:
-
encrypting an identifier of a second computer at a first computer with a first encryption key associated with a server;
encrypting a message such that said message can only be decrypted by said second computer; and
transmitting to the server said encrypted identifier and said encrypted message, wherein said server later decrypts said encrypted identifier and transmits said encrypted message to said second computer, wherein at least one of said first computer and said second computer are separated from the server by a firewall and wherein said encrypted message is transmitted through a port on the firewall that is normally open by default to Internet traffic.
-
-
19. A computer readable medium storing a program for transmitting information across a network, said program comprising the steps of:
-
encrypting an identifier of a second computer at a first computer with a first encryption key associated with a server;
encrypting a message such that said message can only be decrypted by said second computer; and
transmitting to the server said encrypted identifier and said encrypted message, wherein said server later decrypts said encrypted identifier and transmits said encrypted message to said second computer, wherein at least one of said first computer and said second computer are separated from said server by a firewall and wherein said encrypted message is transmitted through a port on the firewall that is normally open by default to Internet traffic.
-
-
20. A system for transmitting information between a first computer and a second computer comprising:
-
a first application; and
a first computer hosting a first client, said first client receiving data from said first application, said first computer transmitting said data to a server, said server forwarding said data to a second client residing on said second computer, said second client forwarding said data to at least a second application, wherein at least one of said first computer and said second computer are separated from said server by a firewall, wherein said first computer transmits a message to said server with an encrypted identifier of said second computer, said message being encrypted for decryption at said second client and the identifier being encrypted for decryption at said server, and wherein said server decrypts said encrypted identifier to an unencrypted identification of said second computer and forwards said encrypted message to said second computer using said unencrypted identification, and wherein at least one of said encrypted message transmitted from said first computer and said encrypted message forwarded to said second computer are transmitted through a firewall port that is normally open by default to Internet traffic. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A computer-readable medium storing a program for transmitting information across a network between a first computer and a second computer, said network including a server that has received and decrypted an encrypted identification of said second computer, said server having transmitted an encrypted message to said second computer using said decrypted identification, said encrypted message having been encrypted at said first computer for decrypting at said second computer, said program comprising the steps of:
-
receiving at said second computer from said server said encrypted message and a header with encrypted information;
decrypting said encrypted information with a first encryption key associated with the server; and
decrypting said encrypted message with a second different encryption key associated with the first computer, wherein at least one of said first computer and said second computer are separated from said server by a firewall and said encrypted message is transmitted through a firewall port that is normally open by default to Internet traffic. - View Dependent Claims (32)
-
-
33. A method of transferring data between a first computer and a second computer coupled over a network, comprising the steps of:
-
(1) receiving a first hypertext transfer protocol (HTTP) message containing information intended for delivery to the second computer, wherein the first message is received through a first firewall associated with the first computer through a port that is normally open by default to Internet traffic;
(2) receiving a second hypertext transfer protocol (HTTP) message from the second computer, wherein the second message causes a return path to be established to the second computer and is received through a second firewall associated with the second computer through a port that is normally open by default to Internet traffic; and
(3) transmitting to the second computer via the return path contents of the first message received from the first computer. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40)
-
Specification