WO2001043391A3 - Secure address resolution for a private network using a public-network infrastructure - Google Patents

Secure address resolution for a private network using a public-network infrastructure Download PDF

Info

Publication number
WO2001043391A3
WO2001043391A3 PCT/US2000/033458 US0033458W WO0143391A3 WO 2001043391 A3 WO2001043391 A3 WO 2001043391A3 US 0033458 W US0033458 W US 0033458W WO 0143391 A3 WO0143391 A3 WO 0143391A3
Authority
WO
WIPO (PCT)
Prior art keywords
network
public
address resolution
secure address
private network
Prior art date
Application number
PCT/US2000/033458
Other languages
French (fr)
Other versions
WO2001043391A2 (en
Inventor
Germano Caronni
Amit Gupta
Tom R Markson
Sandeep Kumar
Christoph L Schuba
Glenn C Scott
Original Assignee
Sun Microsystems Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sun Microsystems Inc filed Critical Sun Microsystems Inc
Priority to AU20810/01A priority Critical patent/AU2081001A/en
Publication of WO2001043391A2 publication Critical patent/WO2001043391A2/en
Publication of WO2001043391A3 publication Critical patent/WO2001043391A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2514Translation of Internet protocol [IP] addresses between local and global IP addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2521Translation architectures other than single NAT servers
    • H04L61/2525Translation at a client
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/255Maintenance or indexing of mapping tables
    • H04L61/2553Binding renewal aspects, e.g. using keep-alive messages
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/108Network architectures or network communication protocols for network security for controlling access to devices or network resources when the policy decisions are valid for a limited amount of time
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Abstract

Methods and systems consistent with the present invention provide secure address resolution for a private network, a Supernet, running on a public-network infrastructure. A program in the Supernet creates address mappings to relieve such a requirement from the network administrator, and this program is authenticated to ensure that it can be trusted and will not violate the integrity of the system. Additionally, the address mappings have an associated time-to-live (TTL), which indicates an expiration time, upon which the mappings become invalid.
PCT/US2000/033458 1999-12-10 2000-12-11 Secure address resolution for a private network using a public-network infrastructure WO2001043391A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU20810/01A AU2081001A (en) 1999-12-10 2000-12-11 Secure address resolution for a private network using a public-network infrastructure

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US45789499A 1999-12-10 1999-12-10
US09/457,894 1999-12-10

Publications (2)

Publication Number Publication Date
WO2001043391A2 WO2001043391A2 (en) 2001-06-14
WO2001043391A3 true WO2001043391A3 (en) 2002-01-17

Family

ID=23818494

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2000/033458 WO2001043391A2 (en) 1999-12-10 2000-12-11 Secure address resolution for a private network using a public-network infrastructure

Country Status (2)

Country Link
AU (1) AU2081001A (en)
WO (1) WO2001043391A2 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5572528A (en) * 1995-03-20 1996-11-05 Novell, Inc. Mobile networking method and apparatus
WO1997048210A1 (en) * 1996-06-14 1997-12-18 Bell Communications Research, Inc. Logical ip address assignment in atm lan
WO1999011019A1 (en) * 1997-08-26 1999-03-04 V-One Corporation Multi-access virtual private network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5572528A (en) * 1995-03-20 1996-11-05 Novell, Inc. Mobile networking method and apparatus
WO1997048210A1 (en) * 1996-06-14 1997-12-18 Bell Communications Research, Inc. Logical ip address assignment in atm lan
WO1999011019A1 (en) * 1997-08-26 1999-03-04 V-One Corporation Multi-access virtual private network

Also Published As

Publication number Publication date
WO2001043391A2 (en) 2001-06-14
AU2081001A (en) 2001-06-18

Similar Documents

Publication Publication Date Title
WO2001072011A3 (en) Methods and systems for proofing identities using a certificate authority
AU4713801A (en) Client-side boot domains and boot rules
IL131831A0 (en) Nomadic translator or router
FI974665A (en) A method for verifying the origin of packets despite modifications to web addresses and protocols
GB2399480A (en) Mechanism for supporting wired and wireless methods for client and server side authentication
AU4267999A (en) Preventing unauthorized use of service
WO2002044858A3 (en) System and method for securing a non-secure communication channel
WO2001086421A3 (en) Message gates in a distributed computing environment
MXPA03010476A (en) System and method for transmitting reduced information from a certificate to perform encryption operations.
WO2002033516A3 (en) Method and apparatus for encrypted communications to a secure server
WO2001080488A3 (en) Methods and systems for managing virtual addresses for virtual networks
WO2001073522A3 (en) Methods and apparatus for securing access to a computer
WO1998026385A3 (en) Reliance server for electronic transaction system
AU6816101A (en) Systems, methods and software for remote password authentication using multiple servers
IL153877A0 (en) Systems and methods for authenticating a user to a web server
EP0913757A3 (en) Protected software
WO2004079497A3 (en) Using tcp to authenticate ip source addresses
WO2003032603A3 (en) Ip hopping for secure data transfer
GB2329807A (en) Digitalling signing agreements from remotely located nodes
EP0798906A3 (en) System and method for secure peer-to-peer communication
AU2233601A (en) Method and system for authenticating identity on internet
WO2005008442A3 (en) Ticket-based secure time delivery in digital networks
WO2007015253A3 (en) Two-factor authentication employing a user's ip address
WO2001024437A3 (en) Systems and methods for authenticating an electronic message
WO2003067905A3 (en) Method and system for providing third party authentification of authorization

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP