Creating secure connections between distributed computing devices

US 9,032,505 B1
Filed: 03/15/2013
Issued: 05/12/2015
Est. Priority Date: 03/15/2013
Status: Active Grant

First Claim

Patent Images

1. A computing system, comprising:

a computing device including;

a processing unit; and

memory encoding instructions that, when executed by the processing unit, cause the processing unit to;

receive a request from a client computing device;

establish a first secured connection to the client computing device, the first secured connection being negotiated using a Mutually Authenticated Secure Sockets Layer protocol;

select a server computing device from a plurality of server computing devices to service the request from the client computing device, selection being made based, at least in part, upon load balancing considerations;

establish a second secured connection to the server computing device, the second secured connection being separate from the first secured connection, and the second secured connection being created by Internet Protocol filtering; and

allow the client computing device to securely communicate with the server computing device through the first and second secured connections.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computing device includes: a processing unit; and memory encoding instructions that, when executed by the processing unit, cause the processing unit to: receive a request from a client computing device; establish a first secured connection to the client computing device; select a server computing device from a plurality of server computing devices to service the request from the client computing device, selection being made based, at least in part, upon load balancing considerations; establish a second secured connection to the server computing device, the second secured connection being separate from the first secured connection; and allow the client computing device to securely communicate with the server computing device through the first and second secured connections.

24 Citations

View as Search Results

15 Claims

1. A computing system, comprising:
- a computing device including;
  
  a processing unit; and
  
  memory encoding instructions that, when executed by the processing unit, cause the processing unit to;
  
  receive a request from a client computing device;
  
  establish a first secured connection to the client computing device, the first secured connection being negotiated using a Mutually Authenticated Secure Sockets Layer protocol;
  
  select a server computing device from a plurality of server computing devices to service the request from the client computing device, selection being made based, at least in part, upon load balancing considerations;
  
  establish a second secured connection to the server computing device, the second secured connection being separate from the first secured connection, and the second secured connection being created by Internet Protocol filtering; and
  
  allow the client computing device to securely communicate with the server computing device through the first and second secured connections.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The system of claim 1, further comprising the server computing device.
  - 3. The system of claim 1, further comprising the client computing device.
  - 4. The system of claim 1, wherein the computing device is a load balancing computing device.
  - 5. The system of claim 1, wherein the computing device is further configured to:
    - determine when the server computing device is compromised;
      
      select another server computing device from the plurality of server computing devices;
      
      establish a third secured connection to the another server computing device, the third secured connection being separate from the first secured connection; and
      
      allow the client computing device to communicate with the another server computing device through the first and third secured connections.
  - 6. The system of claim 1, wherein the computing device receives an application certificate to negotiate the first secured connection.
  - 7. The system of claim 6, wherein the application certificate identifies a specific application on the client computing device.

8. A method for forming a secure connection between a client computing device and a server computing device, the method comprising:
- receiving a request from the client computing device;
  
  receiving an application certificate to negotiate a first secured connection, wherein the application certificate identifies a specific application on the client computing device,establishing the first secured connection to the client computing device;
  
  selecting the server computing device from a plurality of server computing devices to service the request from the client computing device, selection being made based, at least in part, upon load balancing considerations;
  
  establishing a second secured connection to the server computing device, the second secured connection being separate from the first secured connection; and
  
  allowing the client computing device to communicate with the server computing device through the first and second secured connections.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The method of claim 8, further comprising:
    - determining when the server computing device is compromised;
      
      selecting another server computing device from the plurality of server computing devices;
      
      establishing a third secured connection to the another server computing device, the third secured connection being separate from the first secured connection; and
      
      allowing the client computing device to communicate with the another server computing device through the first and third secured connections.
  - 10. The method of claim 8, wherein the first secured connection is negotiated using a Secure Sockets Layer protocol.
  - 11. The method of claim 8, wherein the second secured connection is created by Internet Protocol filtering.
  - 12. The method of claim 8, wherein the second secured connection is negotiated using a Mutually Authenticated Secure Sockets Layer protocol.

13. A method for forming a secure connection between a client computing device and a server computing device, the method comprising:
- receiving a request from the client computing device;
  
  establishing a first secured connection to the client computing device using a secure protocol;
  
  selecting the server computing device from a plurality of server computing devices to service the request from the client computing device, selection being made based, at least in part, upon load balancing considerations;
  
  establishing a second secured connection to the server computing device using Internet Protocol filtering, the second secured connection being separate from the first secured connection; and
  
  allowing the client computing device to communicate with the server computing device through the first and second secured connections.
- View Dependent Claims (14, 15)
- - 14. The method of claim 13, further comprising:
    - determining when the server computing device is compromised;
      
      selecting another server computing device from the plurality of server computing devices;
      
      establishing a third secured connection to the another server computing device, the third secured connection being separate from the first secured connection; and
      
      allowing the client computing device to communicate with the another server computing device through the first and third secured connections.
  - 15. The method of claim 13, further comprising receiving an application certificate to negotiate the first secured connection, wherein the application certificate identifies a specific application on the client computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Wells Fargo Bank NA (Wells Fargo & Company)
Original Assignee
Wells Fargo Bank NA (Wells Fargo & Company)
Inventors
Savage, Jonathan Francis, Suri, Nathan Thangavadivel, McCormick, Michael Thomas, Dayton, Michael Charles, Hughes, Robert Henry, Krumpus, Michael Alan, Loesch, Mathew
Primary Examiner(s)
Zee, Edward

Application Number

US13/839,739
Time in Patent Office

788 Days
Field of Search

726/22, 726/25, 726/15, 726/14
US Class Current

726/14
CPC Class Codes

H04L 63/18 using different networks or...

H04L 67/1001 for accessing one among a p...

Creating secure connections between distributed computing devices

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

24 Citations

15 Claims

Specification

Use Cases

Quick Links

Others

Creating secure connections between distributed computing devices

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

24 Citations

15 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others