Secure virtual private network

US 20080127294A1
Filed: 09/22/2006
Published: 05/29/2008
Est. Priority Date: 09/22/2006
Status: Active Grant

First Claim

Patent Images

1. A system for providing a secure communications link between a server and a client device comprising:

a. a policy stored on the server;

b. a library stored on the client device for storing information; and

c. an engine stored on the client device for using the policy and the library to detect and resolve one or more issues on the client device wherein detecting and resolving the one or more issues increases security on a communications link between the server and the client device.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A secure virtual private network (VPN) is described herein. The secure VPN implements standard VPN software with diagnostics to ensure a client device coupling to the VPN is secure. The diagnostics include a policy, a library and an engine where the policy determines what the requirements are for permitting the client device to couple to the VPN. The library stores programs for checking if the client device has any problems. The engine gathers information related to the client device and executes the programs stored within the library. When a user attempts to couple to the VPN with a client device, the server initiates the policy, library and engine to check for issues, and then the user is informed of the issues and/or a mechanism automatically fixes the issues. After the client device is verified as secure, it is able to couple to the VPN for data transfers.

140 Citations

View as Search Results

49 Claims

1. A system for providing a secure communications link between a server and a client device comprising:
- a. a policy stored on the server;
  
  b. a library stored on the client device for storing information; and
  
  c. an engine stored on the client device for using the policy and the library to detect and resolve one or more issues on the client device wherein detecting and resolving the one or more issues increases security on a communications link between the server and the client device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The system as claimed in claim 1 wherein the library is an expert system library.
  - 3. The system as claimed in claim 1 wherein the policy is for designating one or more objects to inspect.
  - 4. The system as claimed in claim 1 wherein the policy is for determining the requirements needed to be met for a connection to be established.
  - 5. The system as claimed in claim 1 wherein information related to the policy is downloaded from the server to the client device.
  - 6. The system as claimed in claim 1 wherein the policy contains groupings of sub-policies.
  - 7. The system as claimed in claim 6 wherein the grouping of sub-policies include virtual private network checks, network checks, hotfix checks and system checks.
  - 8. The system as claimed in claim 1 wherein the client device is a selected one of a mobile device and a home user device.
  - 9. The system as claimed in claim 1 wherein the information stored within the library includes one or more programs.
  - 10. The system as claimed in claim 9 wherein the one or more programs stored within the library are wrapped in XML.
  - 11. The system as claimed in claim 1 wherein the engine informs a user of the problems if the client device does not pass.
  - 12. The system as claimed in claim 1 wherein the one or more issues discovered by the engine are automatically fixed.
  - 13. The system as claimed in claim 1 wherein the engine optionally assists in manually fixing the one or more issues discovered by the engine.
  - 14. The system as claimed in claim 1 wherein the client device and the server are coupled over a virtual private network.
  - 15. The system as claimed in claim 1 wherein the communications link between the server and the client device forms a virtual private network.

16. A system for providing a secure communications link between a server and a client comprising:
- a. a policy stored on the server wherein the policy is for designating one or more objects to inspect and for determining the requirements needed to be met for a connection to be established between the server and the client device, further wherein the policy is downloaded from the server to the client device;
  
  b. an expert system library stored on the client device for storing one or more programs; and
  
  c. an engine stored on the client device for using the policy and the library to detect and resolve one or more issues on the client device wherein detecting and resolving the one or more issues increases security on a communications link between the server and the client device.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 17. The system as claimed in claim 16 wherein the client device is a selected one of a mobile device and a home user device.
  - 18. The system as claimed in claim 16 wherein the one or more programs stored within the library are wrapped in XML.
  - 19. The system as claimed in claim 16 wherein the policy contains groupings of sub-policies.
  - 20. The system as claimed in claim 19 wherein the grouping of sub-policies include virtual private network checks, network checks, hotfix checks and system checks.
  - 21. The system as claimed in claim 16 wherein the engine informs a user of the problems if the client device does not pass.
  - 22. The system as claimed in claim 16 wherein the one or more issues discovered by the engine are automatically fixed.
  - 23. The system as claimed in claim 16 wherein the engine optionally assists in manually fixing the one or more issues discovered by the engine.
  - 24. The system as claimed in claim 16 wherein the client device and the server are coupled over a virtual private network.
  - 25. The system as claimed in claim 16 wherein the communications link between the server and the client device forms a virtual private network.

26. A method of securing a communications link between a server and a client device comprising:
- a. coupling the client device with the server;
  
  b. establishing a limited network connection between the client device and the server;
  
  c. downloading a policy from the server to the client device;
  
  d. running a diagnostics engine utilizing a library on the client device; and
  
  e. establishing a secure network connection if the diagnostics engine completes without any issues.
- View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35)
- - 27. The method as claimed in claim 26 wherein the library is an expert system library.
  - 28. The method as claimed in claim 26 wherein the limited network connection is sufficient to receive the policy.
  - 29. The method as claimed in claim 26 further comprising posting a list of issues when the diagnostics engine fails.
  - 30. The method as claimed in claim 26 further comprising automatically fixing the one or more issues when the diagnostics engine fails.
  - 31. The method as claimed in claim 26 wherein the diagnostics engine optionally assists in manually fixing the one or more issues discovered by the diagnostics engine.
  - 32. The method as claimed in claim 30 wherein automatically fixing the one or more issues is selected from the group consisting of downloading applications, downloading application updates, downloading patches, running applications and modifying a registry.
  - 33. The method as claimed in claim 26 further comprising adding custom tools within the library.
  - 34. The method as claimed in claim 26 wherein running the diagnostics engine includes checking for network issues and system issues.
  - 35. The method as claimed in claim 26 wherein the communications link between the server and the client device forms a virtual private network.

36. A network of devices for establishing a secure virtual private network comprising:
- a. a private network containing one or more secure devices, wherein at least one of the one or more secure devices is a server for storing a diagnostics policy; and
  
  b. one or more client devices coupled to the private network through a public network, wherein the one or more client devices contain a diagnostics engine and a diagnostics library.
- View Dependent Claims (37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
- - 37. The network of devices as claimed in claim 36 wherein information related to the diagnostics policy is downloaded to the one or more client devices.
  - 38. The network of devices as claimed in claim 36 wherein the one or more client devices are not able to access the private network without being verified using the diagnostics policy, the diagnostics engine and the diagnostics library.
  - 39. The network of devices as claimed in claim 36 wherein the client devices are selected from the group consisting of personal computers, PDAs, cell phones, laptop computers, thin clients and Apple personal computers, mp3 players and gaming consoles.
  - 40. The network of devices as claimed in claim 36 wherein the diagnostics library is an expert system library.
  - 41. The network of devices as claimed in claim 36 wherein the diagnostics policy is for designating one or more objects to inspect.
  - 42. The network of devices as claimed in claim 36 wherein the diagnostics policy is for determining the requirements needed to be met for a connection to be established.
  - 43. The network of devices as claimed in claim 36 wherein the diagnostics policy contains groupings of sub-policies.
  - 44. The network of devices as claimed in claim 43 wherein the grouping of sub-policies include virtual private network checks, network checks, hotfix checks and system checks.
  - 45. The network of devices as claimed in claim 36 wherein the diagnostics library includes one or more programs.
  - 46. The network of devices as claimed in claim 45 wherein the one or more programs stored within the diagnostics library are wrapped in XML.
  - 47. The network of devices as claimed in claim 36 wherein the diagnostics engine informs a user of issues if the client device does not pass.
  - 48. The network of devices as claimed in claim 36 wherein issues discovered by the diagnostics engine are automatically fixed.
  - 49. The network of devices as claimed in claim 36 wherein the diagnostics engine optionally assists in manually fixing issues discovered by the diagnostics engine.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Maxsp Corporation
Inventors
Keith, Robert O.

Granted Patent

US 7,840,514 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/1
CPC Class Codes

H04L 63/0272 Virtual private networks

H04L 63/20 for managing network securi...

Secure virtual private network

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

140 Citations

49 Claims

Specification

Solutions

Use Cases

Quick Links

Secure virtual private network

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

140 Citations

49 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links