Secure network resource access system
DCFirst Claim
1. A secure network resource access system for facilitating access by a network terminal across a communication network to a network resource located behind a firewall, the network terminal for providing application data for subsequent processing by the network resource, the secure network resource access system comprising:
- an authorization server configured to communicate with the network terminal over the communications network and to provide the network terminal with a resource name and an authorization password for the network resource, the authorization password for providing access to the network resource located behind the firewall;
a proxy server located logically outside the firewall and configured to receive the application data and associated network resource data, the proxy server configured to store the received application data in a queue, the application data being associated with the network resource via the network resource data, the network resource data including the resource name of the network resource;
a polling server located logically behind the firewall, the polling server configured to poll the proxy server to determine a status of the queue and to receive the application data and the associated network resource data across the firewall from the queue of the proxy server, the polling server to inhibit exposure to security breaches associated with firewall access ports; and
an enterprise server configured to decrypt and decompress the application data to extract the authorization password, and transmit the application data to the network resource.
3 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A secure network resource access system facilitates network access by network terminals to network resources located behind an enterprise firewall, and comprises a proxy server and a polling server. The proxy server is located logically outside the enterprise firewall for receiving application data from the network terminals. The polling server is located logically behind the enterprise firewall, and is configured to poll the proxy server to initiate transmission of the received application data from the proxy server to the polling server, to receive application data and associated network resource data from the proxy server in response to the poll, and to direct the application data to one of the network resources in accordance with the associated network resource data.
-
Citations
45 Claims
-
1. A secure network resource access system for facilitating access by a network terminal across a communication network to a network resource located behind a firewall, the network terminal for providing application data for subsequent processing by the network resource, the secure network resource access system comprising:
-
an authorization server configured to communicate with the network terminal over the communications network and to provide the network terminal with a resource name and an authorization password for the network resource, the authorization password for providing access to the network resource located behind the firewall; a proxy server located logically outside the firewall and configured to receive the application data and associated network resource data, the proxy server configured to store the received application data in a queue, the application data being associated with the network resource via the network resource data, the network resource data including the resource name of the network resource; a polling server located logically behind the firewall, the polling server configured to poll the proxy server to determine a status of the queue and to receive the application data and the associated network resource data across the firewall from the queue of the proxy server, the polling server to inhibit exposure to security breaches associated with firewall access ports; and an enterprise server configured to decrypt and decompress the application data to extract the authorization password, and transmit the application data to the network resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 26, 28)
-
-
21. A method for facilitating access by a network terminal across a communication network to a network resource located behind a firewall, the network terminal for providing application data for subsequent processing by the network resource, the secure network resource access system comprising:
-
providing the network terminal with a resource name and an authorization password for the network resource, the authorization password for providing access to the network resource located behind the firewall; receiving the application data and associated network resource data, and storing the received application data in a queue of a proxy server, the application data being associated with the network resource via the network resource data, the network resource data including the resource name of the network resource; polling the proxy server located logically outside the firewall by a polling server located logically inside the firewall, the polling to determine a status of the queue and to receive, across the firewall, application data and the associated network resource data from the queue of the proxy server to the polling server, the polling server for inhibiting exposure to security breaches associated with firewall access ports; and decrypting and decompressing the application data to extract the authorization password, and transmit the application data to the network resource. - View Dependent Claims (22, 23, 24, 25, 27, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
-
Specification