VPN enrollment protocol gateway
First Claim
Patent Images
1. A registration authority comprising:
- a virtual private network protocol converter coupled to receive messages from a router targeting a certificate authority, and to receive messages from the certificate authority targeting the router;
wherein the router is associated with a first protocol that is incompatible with a second protocol that is associated with the certificate authority, and wherein the virtual private network protocol converter is configured to convert the messages received from the router in accordance with the first protocol and convert the messages received from the router to the second protocol and subsequently communicate the converted messages to the certificate authority; and
wherein the virtual private network protocol converter is further configured to convert the messages received from the certificate authority in accordance with the second protocol and convert the messages received from the certificate authority to the first protocol and subsequently communicate the converted messages to the router.
1 Assignment
0 Petitions
Accused Products
Abstract
A virtual private network (VPN) enrollment protocol gateway is described herein. The protocol gateway is implemented as a registration authority that operates as an intermediary between routers and a certificate authority, allowing routers operating in accordance with one protocol to obtain and maintain certificates for a VPN from a certificate authority operating in accordance with another protocol. In accordance with one aspect, the gateway protocol supports various requests from the router, including router enrollment requests, get certificate revocation list request, get certificate requests, get certificate authority certificate requests, and password requests.
20 Citations
19 Claims
-
1. A registration authority comprising:
-
a virtual private network protocol converter coupled to receive messages from a router targeting a certificate authority, and to receive messages from the certificate authority targeting the router; wherein the router is associated with a first protocol that is incompatible with a second protocol that is associated with the certificate authority, and wherein the virtual private network protocol converter is configured to convert the messages received from the router in accordance with the first protocol and convert the messages received from the router to the second protocol and subsequently communicate the converted messages to the certificate authority; and wherein the virtual private network protocol converter is further configured to convert the messages received from the certificate authority in accordance with the second protocol and convert the messages received from the certificate authority to the first protocol and subsequently communicate the converted messages to the router. - View Dependent Claims (2)
-
-
3. One or more computer-readable media having stored thereon a computer program that, when executed by one or more processors of a registration authority, causes the one or more processors to perform acts including:
-
receiving, from a router and at a virtual private network protocol converter, a first message in accordance with a first protocol; generating with the virtual private network protocol converter, based on the first message, a second message in accordance with a second protocol; sending the second message to a certificate authority; receiving, from the certificate authority and at the virtual private network protocol converter, a third message in response to the second message and in accordance with the second protocol; generating, based on the third message and with the virtual private network protocol converter, a fourth message in accordance with the first protocol; and sending the fourth message to the router as a response to the first message. - View Dependent Claims (4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification