Personal server technology with firewall detection and penetration

US 20070214262A1
Filed: 05/08/2007
Published: 09/13/2007
Est. Priority Date: 02/25/2000
Status: Abandoned Application

First Claim

Patent Images

1. A method of interfacing client devices coupled to a communication server that communicates with personal servers, the method comprising:

establishing communications between a plurality of client devices and the communication server that includes a request for a connection with a plurality of personal servers, wherein each of the personal servers are associated with one or more of the client devices;

establishing communications between each of the plurality of personal servers and the communication server;

transmitting a test message between the personal servers and the communication server to determine whether the personal servers are each protected by a firewall that is coupled to each of the personal servers to filter communications between each of the personal servers and the communications server;

transmitting a series of messages between the communication server and the personal servers using communication protocols of increasing complexity to identify the types of firewalls, if it is determined that the firewalls exist between the communication server and the personal servers;

utilizing the communication protocol corresponding to the type of each of the firewalls identified to establish a persistent communications connection between the communication server and the personal servers in an on-demand manner;

sending messages as needed from the personal servers to the communication server in order to maintain the persistent communication connection between the personal servers and the communications server;

registering network addresses for the personal servers with the communication server that allows the client devices to make an unambiguous connections to their associated personal servers.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A first personal server within a firewall protected network initiates communications with a connection server that is coupled to a network of remote clients that can remotely access the first personal server. A series of tests using communication protocols of increasing complexity are executed until a communication protocol enabling communication between the first personal server and connection server is determined. If the address of the first personal server changes upon connection, the connection server registers the new address upon each change. If the connection between the first personal server and connection server is unintentionally broken, the first personal server re-establishes contact with the connection server and maintains the connection by transmitting periodic signals to the connection server. The connection server is capable of connecting many remote devices to their associated personals servers.

200 Citations

20 Claims

1. A method of interfacing client devices coupled to a communication server that communicates with personal servers, the method comprising:
- establishing communications between a plurality of client devices and the communication server that includes a request for a connection with a plurality of personal servers, wherein each of the personal servers are associated with one or more of the client devices;
  
  establishing communications between each of the plurality of personal servers and the communication server;
  
  transmitting a test message between the personal servers and the communication server to determine whether the personal servers are each protected by a firewall that is coupled to each of the personal servers to filter communications between each of the personal servers and the communications server;
  
  transmitting a series of messages between the communication server and the personal servers using communication protocols of increasing complexity to identify the types of firewalls, if it is determined that the firewalls exist between the communication server and the personal servers;
  
  utilizing the communication protocol corresponding to the type of each of the firewalls identified to establish a persistent communications connection between the communication server and the personal servers in an on-demand manner;
  
  sending messages as needed from the personal servers to the communication server in order to maintain the persistent communication connection between the personal servers and the communications server;
  
  registering network addresses for the personal servers with the communication server that allows the client devices to make an unambiguous connections to their associated personal servers.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 further comprising the steps of:
    - re-establishing communication from the user computer to the server computer by the user computer if the communication is unintentionally broken;
      
      using communication ports for communication between the personal servers and the communication server that are usually reserved for carrying encrypted data so that the firewalls will not detect unwanted data transmissions, and maintaining persistent communication between the personal servers and the communication server by transmitting periodic non-traffic signals from the personal servers to the communication server so that a communication path to the personal servers is always available for the first client device.
  - 3. The method of claim 2 wherein the communications protocols include, in order of increasing complexity:
    - no firewall present, fixed address firewall, dynamic address firewall, proxy server protection, network address translation firewall, and stateful firewall.
  - 4. The method of claim 1 wherein the one or more wireless client devices comprises one of:
    - a personal computer, handheld personal digital assistant, and networkable cellular phone.
  - 5. The method of claim 4, wherein the wired or wireless network comprises a TCP/IP network and data transmitted over the network comprises one of:
    - computer text data, audio data, and video data.
  - 6. The method of claim 1 wherein the first personal server and the communication server are coupled through a bi-directional communications network that comprises the Internet.

7. A system comprising:
- a plurality of client devices;
  
  a communication server coupled to a network coupling the plurality of client devices;
  
  a plurality of personal servers including a connection module for communicating with the communication server, wherein each of the plurality of personal servers corresponds to at least one of the plurality of client devices;
  
  a plurality of firewall protection mechanisms, wherein each firewall mechanism is coupled to at least one of the personal servers to filter communications between the communication server and each of the personal servers to prevent unwanted network access from the communication server to the personal servers;
  
  wherein the connection module is configured to initiate transmission of a series of messages between the communication server and the personal servers using communication protocols of increasing complexity to identify the type of firewall that exists, and further configured to register an address and identifying information of the communication server with the personal servers if the firewall causes the address of the communication server to change upon each new connection with the personal servers, if there is no firewall or if the firewall allows outside connections through specific IP ports, the communication server uses registered address stored in the personal server to create direct connection on-demand for the client device.
- View Dependent Claims (8, 9, 10, 11, 12, 13)
- - 8. The system of claim 7 wherein the connection module is further configured to re-establish communication from the communication server to the personal servers by the communication server if the communication is unintentionally broken, and maintain the communication between the communication server and personal servers by transmitting periodic non-traffic related signals from the communication server to the personal servers.
  - 9. The system of claim 8 wherein the communications protocols include, in order of increasing complexity:
    - no firewall present, fixed address firewall, dynamic address firewall, proxy server protection, network address translation firewall, and stateful firewall.
  - 10. The system of claim 7 wherein the one or more networked client devices comprises at least one of:
    - a personal computer, a handheld personal digital assistant, and a networkable cellular phone.
  - 11. The system of claim 10, wherein the network comprises a TCP/IP network and the data transmitted over the network comprises one of:
    - computer text data, audio data, and video data.
  - 12. The system of claim 11 wherein communication server and personal servers are coupled through a bi-directional communications network that comprises the Internet.
  - 13. The system of claim 11 wherein the communication server is remotely coupled to each of the plurality of client devices over a remote control protocol, and provides control and monitoring functionality over the plurality-of-client devices.

14. A method for interfacing a plurality of client devices through a communication server to a plurality of personal servers through network connections that each include a firewall, the method comprising the steps of:
- determining if each of the connections between the communication server and the personal servers initiated by the communication server or by the personal server;
  
  causing the communication server to listen for connections to the personal servers over a secure ports accessible by the communication server;
  
  establishing connections between the communication server and each of the personal servers that allow the client devices to communicate with the personal servers associated with each of the devices over the secure ports;
  
  registering a network address of the personal servers with the communication server, if the connection between the communication server and the personal server is initiated by the communication server; and
  
  re-registering the network address of the personal server with the communication server if the connection established between the communication server and the personal server is broken.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The method of claim 14 wherein each of the firewalls comprises one of:
    - an address filtering firewall, a dynamic address firewall, and a network address translation firewall that allows incoming connections to the personal servers.
  - 16. The method of claim 14, wherein if the connection between the first server computer and the second server computer is initiated by the second server computer, the method comprises the steps of:
    - causing the communication server to listen for a connection to each of the personal servers over secure ports accessible by the communication server;
      
      establishing connections between the communication server and each of the personal servers over the secure ports;
      
      determining whether any of the connections have been broken;
      
      re-establishing any broken connections between the communication server and the personal servers; and
      
      transmitting periodic non-data signals from the personal servers to the communication server to maintain the connections.
  - 17. The method of claim 16 wherein each of the firewalls comprises one of:
    - a proxy server firewall, a stateful firewall, and a network address translation firewall that refuses incoming connections to the personal server.
  - 18. The method of claim 14 wherein the communication server is coupled to the client devices over wireless network links.
  - 19. The method of claim 14 wherein the communication server and the personal servers are coupled through a bi-directional communications network that comprises the Internet.
  - 20. The method of claim 14 wherein the communication server is remotely coupled to each of the plurality of client devices over a remote control protocol, and provides control and monitoring functionality over the plurality-of-client devices.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Anywheremobile Incorporated
Original Assignee
Anywheremobile Incorporated
Inventors
Finke, Alan, Buchbinder, John, Buchbinder, Joshua

Application Number

US11/801,352
Publication Number

US 20070214262A1
Time in Patent Office

Days
Field of Search
US Class Current

709/224
CPC Class Codes

H04L 12/28   characterised by path confi...

H04L 12/2803   Home automation networks

H04L 12/2814   Exchanging control software...

H04L 2012/285   Generic home appliances, e....

H04L 65/40   Support for services or app...

H04L 67/125   involving control of end-de...

Personal server technology with firewall detection and penetration

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

200 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Personal server technology with firewall detection and penetration

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

200 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others