Method and apparatus for passing security configuration information between a client and a security policy server

Method and apparatus for passing security configuration information between a client and a security policy server

Techniques for passing security configuration information between a security policy server and a client includes the client forming a request for security configuration information that configures the client for secure communications. The client is separated by an untrusted network from a trusted ne...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Huang, Geoffrey, Vilhuber, Jan
Format: Patent
Sprache:eng
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Huang, Geoffrey
Vilhuber, Jan
description Techniques for passing security configuration information between a security policy server and a client includes the client forming a request for security configuration information that configures the client for secure communications. The client is separated by an untrusted network from a trusted network that includes the security policy sever. A tag is generated that indicates a generic security configuration attribute. An Internet Security Association and Key Management Protocol (ISAKMP) configuration mode request message is sent to a security gateway on an edge of the trusted network connected to the untrusted network. The message includes the request in association with the tag. The gateway sends the request associated with the tag to the security policy server on the trusted network and does not interpret the request. The techniques allow client configuration extensions to be added by modifying the policy server or security client, or both, without modifying the gateway.
format Patent
fullrecord <record><control><sourceid>uspatents_EFH</sourceid><recordid>TN_cdi_uspatents_grants_08261318</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>08261318</sourcerecordid><originalsourceid>FETCH-uspatents_grants_082613183</originalsourceid><addsrcrecordid>eNqNjLEKAjEQRNNYiPoP-wOC54FcL4qNnb2scRMXzk3MJsr9vZETbC2GmYE3MzWPI-VbuAJKVYyYMBcFFxJEVGXxoGRL4jyADeLYl0pwEGCp0H3MF8ovIgEE2zNJHt9-yxh6tkPt6UlpbiYOe6XF12cG9rvT9rAsGjHXtZ59wo-tuvWmaZuu_QN5A648RVQ</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Method and apparatus for passing security configuration information between a client and a security policy server</title><source>USPTO Issued Patents</source><creator>Huang, Geoffrey ; Vilhuber, Jan</creator><creatorcontrib>Huang, Geoffrey ; Vilhuber, Jan ; Cisco Technology, Inc</creatorcontrib><description>Techniques for passing security configuration information between a security policy server and a client includes the client forming a request for security configuration information that configures the client for secure communications. The client is separated by an untrusted network from a trusted network that includes the security policy sever. A tag is generated that indicates a generic security configuration attribute. An Internet Security Association and Key Management Protocol (ISAKMP) configuration mode request message is sent to a security gateway on an edge of the trusted network connected to the untrusted network. The message includes the request in association with the tag. The gateway sends the request associated with the tag to the security policy server on the trusted network and does not interpret the request. The techniques allow client configuration extensions to be added by modifying the policy server or security client, or both, without modifying the gateway.</description><language>eng</language><creationdate>2012</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/8261318$$EPDF$$P50$$Guspatents$$Hfree_for_read</linktopdf><link.rule.ids>230,308,780,802,885,64039</link.rule.ids><linktorsrc>$$Uhttps://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/8261318$$EView_record_in_USPTO$$FView_record_in_$$GUSPTO$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Huang, Geoffrey</creatorcontrib><creatorcontrib>Vilhuber, Jan</creatorcontrib><creatorcontrib>Cisco Technology, Inc</creatorcontrib><title>Method and apparatus for passing security configuration information between a client and a security policy server</title><description>Techniques for passing security configuration information between a security policy server and a client includes the client forming a request for security configuration information that configures the client for secure communications. The client is separated by an untrusted network from a trusted network that includes the security policy sever. A tag is generated that indicates a generic security configuration attribute. An Internet Security Association and Key Management Protocol (ISAKMP) configuration mode request message is sent to a security gateway on an edge of the trusted network connected to the untrusted network. The message includes the request in association with the tag. The gateway sends the request associated with the tag to the security policy server on the trusted network and does not interpret the request. The techniques allow client configuration extensions to be added by modifying the policy server or security client, or both, without modifying the gateway.</description><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2012</creationdate><recordtype>patent</recordtype><sourceid>EFH</sourceid><recordid>eNqNjLEKAjEQRNNYiPoP-wOC54FcL4qNnb2scRMXzk3MJsr9vZETbC2GmYE3MzWPI-VbuAJKVYyYMBcFFxJEVGXxoGRL4jyADeLYl0pwEGCp0H3MF8ovIgEE2zNJHt9-yxh6tkPt6UlpbiYOe6XF12cG9rvT9rAsGjHXtZ59wo-tuvWmaZuu_QN5A648RVQ</recordid><startdate>20120904</startdate><enddate>20120904</enddate><creator>Huang, Geoffrey</creator><creator>Vilhuber, Jan</creator><scope>EFH</scope></search><sort><creationdate>20120904</creationdate><title>Method and apparatus for passing security configuration information between a client and a security policy server</title><author>Huang, Geoffrey ; Vilhuber, Jan</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-uspatents_grants_082613183</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2012</creationdate><toplevel>online_resources</toplevel><creatorcontrib>Huang, Geoffrey</creatorcontrib><creatorcontrib>Vilhuber, Jan</creatorcontrib><creatorcontrib>Cisco Technology, Inc</creatorcontrib><collection>USPTO Issued Patents</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Huang, Geoffrey</au><au>Vilhuber, Jan</au><aucorp>Cisco Technology, Inc</aucorp><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Method and apparatus for passing security configuration information between a client and a security policy server</title><date>2012-09-04</date><risdate>2012</risdate><abstract>Techniques for passing security configuration information between a security policy server and a client includes the client forming a request for security configuration information that configures the client for secure communications. The client is separated by an untrusted network from a trusted network that includes the security policy sever. A tag is generated that indicates a generic security configuration attribute. An Internet Security Association and Key Management Protocol (ISAKMP) configuration mode request message is sent to a security gateway on an edge of the trusted network connected to the untrusted network. The message includes the request in association with the tag. The gateway sends the request associated with the tag to the security policy server on the trusted network and does not interpret the request. The techniques allow client configuration extensions to be added by modifying the policy server or security client, or both, without modifying the gateway.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_uspatents_grants_08261318
source USPTO Issued Patents
title Method and apparatus for passing security configuration information between a client and a security policy server
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-05T10%3A47%3A30IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-uspatents_EFH&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Huang,%20Geoffrey&rft.aucorp=Cisco%20Technology,%20Inc&rft.date=2012-09-04&rft_id=info:doi/&rft_dat=%3Cuspatents_EFH%3E08261318%3C/uspatents_EFH%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true