Enhancing messaging services using translation gateways
First Claim
1. A system for supporting a messaging service, comprising:
- a first translation gateway for use between (a) a customer data network that is accessed, by those authorized by a customer of the messaging service, to receive a message via a client process, and (b) a hostile data network, the first translation gateway having translation functionality that is applied to a plurality of inbound messages, arriving via the hostile network, in a manner that is transparent to recipients of said inbound messages who experience the inbound messages via a plurality of client processes running in the customer data network, wherein the first translation gateway is to forward the inbound messages from the hostile data network to the recipients over the customer data network, and wherein the first translation gateway is a node of the customer data network and the hostile data network; and
a second translation gateway for use between (a) the hostile data network and (b) a service provider network of a provider of said messaging service, wherein said service provider network implements an interface to a telephony network from which the inbound messages originate, the second translation gateway to forward the inbound messages to the first translation gateway through the hostile network in a manner that precludes unauthorized access to the content of the inbound messages,wherein the first translation gateway and the second translation gateway are nodes of a virtual private network (VPN) so that the inbound messages can be passed between the first and second translation gateways through a VPN tunnel.
4 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, a translation gateway is for use between a network of a messaging service provider and a hostile data network. The gateway is to forward messages using a secure connection through the hostile network, to a customer'"'"'s network. Different types of inbound messages (e.g., voice; fax) can be delivered to a single client process running on a customer machine on the customer network. In addition, the translation gateway may be used to securely forward different types of outbound messages originating from the client process to the service provider'"'"'s network (where the messages are retransmitted as voice calls or facsimiles into a telephone network). Other embodiments are also described and claimed.
54 Citations
24 Claims
-
1. A system for supporting a messaging service, comprising:
-
a first translation gateway for use between (a) a customer data network that is accessed, by those authorized by a customer of the messaging service, to receive a message via a client process, and (b) a hostile data network, the first translation gateway having translation functionality that is applied to a plurality of inbound messages, arriving via the hostile network, in a manner that is transparent to recipients of said inbound messages who experience the inbound messages via a plurality of client processes running in the customer data network, wherein the first translation gateway is to forward the inbound messages from the hostile data network to the recipients over the customer data network, and wherein the first translation gateway is a node of the customer data network and the hostile data network; and a second translation gateway for use between (a) the hostile data network and (b) a service provider network of a provider of said messaging service, wherein said service provider network implements an interface to a telephony network from which the inbound messages originate, the second translation gateway to forward the inbound messages to the first translation gateway through the hostile network in a manner that precludes unauthorized access to the content of the inbound messages, wherein the first translation gateway and the second translation gateway are nodes of a virtual private network (VPN) so that the inbound messages can be passed between the first and second translation gateways through a VPN tunnel. - View Dependent Claims (2, 3, 4, 5, 6, 8, 9, 10, 11)
-
-
7. A system for supporting a messaging service, comprising:
-
a first translation gateway for use between (a) a customer data network that is accessed, by those authorized by a customer of the messaging service, to receive a message via a client process, and (b) a hostile data network, the first translation gateway having translation functionality that is applied to a plurality of inbound messages, arriving via the hostile network, in a manner that is transparent to recipients of said inbound messages who experience the inbound messages via a plurality of client processes running in the customer data network, wherein the first translation gateway is to forward the inbound messages from the hostile data network to the recipients over the customer data network, and wherein the first translation gateway is a node of the customer data network and the hostile data network; and a second translation gateway for use between (a) the hostile data network and (b) a service provider network of a provider of said messaging service, wherein said service provider network implements an interface to a telephony network from which the inbound messages originate, the second translation gateway to forward the inbound messages to the first translation gateway through the hostile network in a manner that precludes unauthorized access to the content of the inbound messages, wherein the second translation gateway is to use public keys to encrypt the inbound messages before sending them to the first translation gateway via the hostile network, and the first translation gateway is to use private keys to decrypt the inbound messages prior to forwarding them to the plurality of client processes.
-
-
12. A system for supporting a messaging service, comprising:
-
a first translation gateway for use between a) a first private data network and b) a hostile data network, wherein the first translation gateway is a node of the first private data network and the hostile data network; and a second translation gateway for use between a) the hostile data network and b) a second private data network, wherein the second translation gateway is a node of the second private data network and the hostile data network, wherein the second private data network implements an interface to a telephony network into which a message, that originates in the first private data network and arrives via the first translation gateway and the hostile network, is transmitted by the interface, the first translation gateway having translation functionality that is applied to a plurality of outbound messages originating from a plurality of client processes in the first private data network, in a manner that is transparent to users of said plurality of client processes, the plurality of outbound messages being addressed to the second private data network, and the first translation gateway being designed to then forward the plurality of outbound messages to the second translation gateway through the hostile data network, wherein the first translation gateway and the second translation gateway are nodes of a virtual private network (VPN) so that the inbound messages can be passed between the first and second translation gateways through a VPN tunnel. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
-
19. A method for providing a secure messaging service, comprising:
-
assigning a separate set of circuit switched network addresses to each of a plurality of corporate subscribers of the messaging service, some of the sets of circuit switched network addresses being in different countries; associating the set of circuit switched network addresses for each subscriber with an internet domain of said subscriber; receiving one of a) an inbound fax message and b) an inbound voice message that has been addressed to one of the set of circuit switched network addresses of a given subscriber; transferring the inbound message to a first translation gateway that is configured to service the given subscriber, wherein the inbound message is addressed to the internet domain of the given subscriber; and sending from the first translation gateway the inbound message to a predefined port of a second translation gateway in a privacy-maintaining manner over a hostile data network of which the first and second translation gateways are separate nodes, wherein the second translation gateway is administered by the given subscriber and is to forward the inbound message to an affiliate of the given subscriber over an internal data network of the given subscriber, wherein the second translation gateway is a node of the internal data network and the hostile data network, and wherein the first translation gateway and the second translation gateway are nodes of a virtual private network (VPN) so that the inbound messages can be passed between the first and second translation gateways through a VPN tunnel. - View Dependent Claims (20, 21, 22)
-
-
23. A method for providing a secure messaging service, comprising:
-
obtaining an outbound message at a first translation gateway that is configured to service a given subscriber among a plurality of corporate subscribers of the messaging service, wherein the outbound message originated with an affiliate of the given subscriber and was addressed to an internet domain of a service provider of the messaging service with whom the given subscriber has a service contract for secure messaging services, the outbound message having been transferred by a second translation gateway to the first translation gateway in a privacy-maintaining manner over a hostile data network, of which the first and second translation gateways are separate nodes, wherein the second translation gateway is administered by the given subscriber; verifying that an account of the given subscriber is current, in response to obtaining the outbound message; and forwarding the outbound message by the first translation gateway to an outbound resource of the service provider over an internal data network of the service provider of which the first translation gateway and the outbound resource are separate nodes, wherein the outbound resource is capable of translating the outbound message into a format that can be transmitted to one of a) a facsimile machine and b) a telephone unit, over a telephony network. - View Dependent Claims (24)
-
Specification