METHOD AND SYSTEM FOR PROVIDING REMOTE ACCESS TO RESOURCES IN A SECURE DATA CENTER OVER A NETWORK
First Claim
1. A method for providing remote access to resources in a secure data center protected by at least one firewall, the method comprising:
- sending by an internal server within the secure data center a request to an external server outside of the secure data center through the at least one firewall protecting the secure data center and at least one of a public network, a private network, and a second firewall, the request for establishing a secure data transport channel between the internal server and the external server;
receiving by the internal server a reply to the request from the external server, the reply granting the request and confirming the establishment of the secure data transport channel, wherein the secure data transport channel communicatively connects the internal server and the external server over at least one of the public network, the private network, and the second firewall and through the at least one firewall protecting the secure data center;
receiving by the internal server a first message from the external server via the established secure data transport channel, the first message including an instruction to create a first data access point associated with a first session;
in response to receiving the first message, instantiating the first data access point for the first session; and
sending from the first data access point visual data corresponding to the resources in the secure data center to the external server via the secure data transport channel, wherein the visual data is received by the external server and then sent to a first client associated with the first session so that the first client is provided visual access to the resources in the secure data center while the resources remain protected within the secure data center.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, computer products, and systems are described for providing remote access to resources in a secure data center protected by at least one firewall. One method includes sending by an internal server within the secure data center a request to an external server outside of the secure data center to establish a secure data transport channel between the internal server and the external server. The request travels through at least one firewall protecting the secure data center and over a public network, a private network, and/or a second firewall. The internal server receives a reply to the request from the external server granting the request and confirming the establishment of the secure data transport channel. When a first message from the external server instructing the internal server to create a first data access point associated with a first session is received via the established secure data transport channel, the internal server instantiates the first data access point for the first session and visual data corresponding to the resources in the secure data center is sent from the first data access point to the external server via the secure data transport channel. The visual data is received by the external server and then sent to a first client associated with the first session so that the first client is provided visual access to the resources in the secure data center while the resources remain protected within the secure data center.
109 Citations
25 Claims
-
1. A method for providing remote access to resources in a secure data center protected by at least one firewall, the method comprising:
-
sending by an internal server within the secure data center a request to an external server outside of the secure data center through the at least one firewall protecting the secure data center and at least one of a public network, a private network, and a second firewall, the request for establishing a secure data transport channel between the internal server and the external server; receiving by the internal server a reply to the request from the external server, the reply granting the request and confirming the establishment of the secure data transport channel, wherein the secure data transport channel communicatively connects the internal server and the external server over at least one of the public network, the private network, and the second firewall and through the at least one firewall protecting the secure data center; receiving by the internal server a first message from the external server via the established secure data transport channel, the first message including an instruction to create a first data access point associated with a first session; in response to receiving the first message, instantiating the first data access point for the first session; and sending from the first data access point visual data corresponding to the resources in the secure data center to the external server via the secure data transport channel, wherein the visual data is received by the external server and then sent to a first client associated with the first session so that the first client is provided visual access to the resources in the secure data center while the resources remain protected within the secure data center. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for providing remote access to resources in at least one secure data center protected by at least one firewall, the method comprising:
-
receiving by an external server over one of a public network and a private network a first request from a first internal server within a first secure data center, the first request including a request to establish a secure data transport channel between the first internal server and the external server; sending by the external server a reply to the first request, the reply confirming the establishment of the secure data transport channel, wherein the secure data transport channel communicatively connects the first internal server and the external server over one of the public and private network and through at least one firewall protecting the first secure data center; receiving by the external server a first message from a first client, the first message including a session request to establish a first session for accessing resources in the first secure data center; creating the first session and sending to the first internal server via the established secure data transport channel an instruction directing the first internal server to create a first data access point for the first session; receiving by the external server visual data associated with the first session and corresponding to the resources in the first secure data center via the secure data transport channel; and sending the visual data associated with the first session to the first client so that the first client is provided visual access to the resources in the first secure data center while the resources remain protected within the first secure data center. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for providing access to resources in a secure data center protected by at least one firewall during a collaboration session between at least two clients, wherein at least one of the at least two clients is authorized to access the resources in the secure data center, the method comprising:
-
establishing a secure data transport channel that communicatively connects an internal access server within the secure data center and a first collaboration server outside of the secure data center over one of a public and a private network and through at least one firewall protecting the first secure data center; receiving by the first collaboration server a message for a first client associated with the first collaboration server, the message sent from a second collaboration server and including an invitation for the first client to engage in a collaboration session with a second client associated with the second collaboration server, wherein the first and second collaboration servers are associated with first and second enterprises, respectively; establishing an interactive collaboration session between the first and second clients using at least one of the first and second collaboration servers; receiving by the first collaboration server a request from the first client to establish a session to access the resources in the secure data center, wherein the first client is authorized to access the resources; creating the session and sending to the internal access server via the established secure data transport channel an instruction directing the internal access server to create a data access point for the session; receiving by the first collaboration server visual data associated with the session and corresponding to the resources in the secure data center via the secure data transport channel; and sending the visual data associated with the session to the first client so that the visual data can be displayed by the first client and shared with the second client via the interactive collaboration session, wherein the first and second clients are provided visual access to the resources in the secure data center while the resources remain protected within the first secure data center.
-
-
17. A computer readable medium containing a computer program, executable by a machine, for providing remote access to resources in a secure data center protected by at least one firewall, the computer program comprising executable instructions for:
-
sending by an internal server within the secure data center a request to an external server outside of the secure data center through the at least one firewall protecting the secure data center and at least one of a public network, a private network, and a second firewall, the request for establishing a secure data transport channel between the internal server and the external server; receiving by the internal server a reply to the request from the external server, the reply granting the request and confirming the establishment of the secure data transport channel, wherein the secure data transport channel communicatively connects the internal server and the external server over at least one of the public network, the private network, and the second firewall and through the at least one firewall protecting the secure data center; receiving by the internal server a first message from the external server via the established secure data transport channel, the first message including an instruction to create a first data access point associated with a first session; instantiating the first data access point for the first session in response to receiving the first message; and sending from the first data access point visual data corresponding to the resources in the secure data center to the external server via the secure data transport channel, wherein the visual data is received by the external server and then sent to a first client associated with the first session so that the first client is provided visual access to the resources in the secure data center while the resources remain protected within the secure data center. - View Dependent Claims (18, 19, 20)
-
-
21. A computer readable medium containing a computer program, executable by a machine, for providing remote access to resources in a secure data center protected by at least one firewall, the computer program comprising executable instructions for:
-
receiving by an external server over one of a public network and a private network a first request from a first internal server within a first secure data center, the first request including a request to establish a secure data transport channel between the first internal server and the external server; sending by the external server a reply to the first request, the reply confirming the establishment of the secure data transport channel, wherein the secure data transport channel communicatively connects the first internal server and the external server over one of the public and private network and through at least one firewall protecting the first secure data center; receiving by the external server a first message from a first client, the first message including a session request to establish a first session for accessing resources in the first secure data center; creating the first session and sending to the first internal server via the established secure data transport channel an instruction directing the first internal server to create a first data access point for the first session; receiving by the external server visual data associated with the first session and corresponding to the resources in the first secure data center via the secure data transport channel; and sending the visual data associated with the first session to the first client so that the first client is provided visual access to the resources in the first secure data center while the resources remain protected within the first secure data center. - View Dependent Claims (22)
-
-
23. A computer readable medium containing a computer program, executable by a machine, for providing access to resources in a secure data center protected by at least one firewall during a collaboration session between at least two clients, wherein at least one of the at least two clients is authorized to access the resources in the secure data center, the computer program comprising executable instructions for:
-
establishing a secure data transport channel that communicatively connects an internal access server within the secure data center and a first collaboration server outside of the secure data center over one of a public and a private network and through at least one firewall protecting the first secure data center; receiving by the first collaboration server a message for a first client associated with the first collaboration server, the message sent from a second collaboration server and including an invitation for the first client to engage in a collaboration session with a second client associated with the second collaboration server, wherein the first and second collaboration servers are associated with first and second enterprises, respectively; establishing an interactive collaboration session between the first and second clients using at least one of the first and second collaboration servers; receiving by the first collaboration server a request from the first client to establish a session to access the resources in the secure data center, wherein the first client is authorized to access the resources; creating the session and sending to the internal access server via the established secure data transport channel an instruction directing the internal access server to create a data access point for the session; receiving by the first collaboration server visual data associated with the session and corresponding to the resources in the secure data center via the secure data transport channel; and sending the visual data associated with the session to the first client so that the visual data can be displayed by the first client and shared with the second client via the interactive collaboration session, wherein the first and second clients are provided visual access to the resources in the secure data center while the resources remain protected within the first secure data center.
-
-
24. A system for providing remote access to resources in a secure data center protected by at least one firewall, the system comprising
an internal server within the secure data center communicatively connected to a plurality of resources via a secure internal network; - and
an external server outside of the secure data center accessible by a remote client over one of a public network and a private network, wherein the internal server is configured for sending a request to the external server through the at least one firewall protecting the secure data center and at least one of a public network, a private network, and a second firewall, the request for establishing a secure data transport channel between the internal server and the external server, for receiving a reply to the request from the external server, the reply granting the request and confirming the establishment of the secure data transport channel, wherein the secure data transport channel communicatively connects the internal server and the external server over at least one of the public network, the private network, and the second firewall and through the at least one firewall protecting the secure data center, for receiving a first message from the external server via the established secure data transport channel, the first message including an instruction to create a first data access point for a first session, for instantiating the first data access point for the first session in response to receiving the first message, and for sending from the first data access point visual data corresponding to the resources in the secure data center to the external server via the secure data transport channel, and wherein the external server is configured for receiving the request for establishing the secure data transport channel, for sending the reply confirming the establishment of the secure data transport channel, for receiving a message from the first client, the message including a session request to establish a first session for accessing resources in the secure data center, for creating the first session and sending to the internal server via the established secure data transport channel the instruction directing the internal server to create the first data access point for the first session, for receiving the visual data associated with the first session and corresponding to the resources in the secure data center via the secure data transport channel, and for sending the visual data associated with the first session to the first client so that the first client is provided visual access to the resources in the secure data center while the resources remain protected within the secure data center. - View Dependent Claims (25)
- and
Specification