Apparatus and Method for Using Certificate Data to Route Data
First Claim
1. A method of routing data across a network, the method comprising:
- receiving a session request from a client node to access at least one node in a local network having a plurality of nodes;
receiving a client certificate from the client node, the client certificate having client information specifying at least one node to receive packets from the client node;
executing an authentication process using the client certificate;
retrieving the client information from the client certificate; and
if the authentication process authenticates the client node, routing data packets received from the client node to at least one node in the local network as specified by the client information in the client certificate.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of routing data across a network receives a session request from a client node to access at least one node in a local network having a plurality of nodes. The method also receives a client certificate (e.g., a digital certificate at least partially specified by known standards, such as the “X509 Standard”) from the client node. The client certificate has client information specifying at least one node to receive packets from the client node. Next, the method uses the client certificate to execute an authentication process. If the authentication process authenticates the client node, then the method routes data packets from the client node to at least one node in the local network as specified by the client information in the client certificate.
10 Citations
39 Claims
-
1. A method of routing data across a network, the method comprising:
-
receiving a session request from a client node to access at least one node in a local network having a plurality of nodes; receiving a client certificate from the client node, the client certificate having client information specifying at least one node to receive packets from the client node; executing an authentication process using the client certificate; retrieving the client information from the client certificate; and if the authentication process authenticates the client node, routing data packets received from the client node to at least one node in the local network as specified by the client information in the client certificate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A network routing device for routing data received across a network, the network device comprising:
-
an interface for receiving a) a session request from a client node to access at least one node in a local network having a plurality of nodes, and b) a client certificate from the client node, the client certificate having client information specifying at least one node to receive packets from the client node; an authenticator operatively coupled with the interface, the authenticator being configured to retrieve the client certificate and execute an authentication process using the client certificate; and a router operatively coupled with the authenticator, the router being configured to determine, from the authenticator, if the authentication process authenticated the client node, the router further being configured to route data packets received from the client node to at least one node in the local network as specified by the client information in the client certificate if the client node is authenticated. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
-
24. A computer program product for use on a computer system for routing data across a network, the computer program product comprising a tangible, non-transient computer usable medium having computer readable program code thereon, the computer readable program code comprising:
-
program code for receiving a session request from a client node to access at least one node in a local network having a plurality of nodes; program code for receiving a client certificate from the client node, the client certificate having client information specifying at least one node to receive packets from the client node; program code for executing an authentication process using the client certificate; program code for retrieving the client information from the client certificate; and program code for routing data packets received from the client node to at least one node in the local network as specified by the client information in the client certificate if the authentication process authenticates the client node. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A method of routing data across a network, the method comprising:
-
receiving a session request from a client node to access at least one node in a local network having a plurality of nodes; receiving a client certificate from the client node, the client certificate having client information specifying at least one node to receive packets from the client node; retrieving the client information from the client certificate; and facilitating at least limited access to the at least one node based on the client information in the client certificate. - View Dependent Claims (38, 39)
-
Specification