US9270658B2ExpiredUtilityA1

Auditing communications

Assignee: XCEEDIUM INCPriority: Apr 13, 2006Filed: Oct 25, 2013Granted: Feb 23, 2016
Est. expiryApr 13, 2026(expired)· nominal 20-yr term from priority
Inventors:David Van
G06F 21/30H04L 63/08G06F 21/00H04L 63/00H04L 63/108H04L 63/1416H04L 63/1466H04L 63/10H04L 67/141
53
PatentIndex Score
0
Cited by
33
References
19
Claims

Abstract

Auditing a communication is disclosed. Credentials are received from a client. It is determined whether the client is authorized to communicate with a remote resource. If it is determined that the communication with the remote resource is allowed, a communication is forwarded from the local resource to the remote resource.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
       1. A gatekeeper device, comprising:
 an interface configured to receive credentials from a remote client, wherein the remote client is configured to receive and follow instructions for accessing a remote resource; and 
 a set of one or more processors configured to:
 determine that the remote client is authorized to communicate with the remote resource, wherein determining that the remote client is authorized to communicate with the remote resource includes:
 determining, using the received credentials, that the remote client is authorized to access the remote resource; and 
 determining that one or more constraints associated with use of the remote resource are satisfied; 
 
 provide a set of instructions to the remote client indicating how the remote resource can be accessed, wherein the set of instructions includes instructions to map a port on the remote client with the remote resource; 
 obtain a communication from the remote client that is intended for the remote resource; and 
 forward, based at least in part on the determination that the remote client is authorized to communicate with the remote resource, the communication to the remote resource; and 
 
 a memory coupled to the set of one or more processors and configured to provide the set of one or more processors with instructions. 
 
     
     
       2. The gatekeeper device recited in  claim 1 , wherein the provided set of instructions include mapping a client local resource with the remote resource through the gatekeeper device. 
     
     
       3. The gatekeeper device recited in  claim 1 , wherein the provided set of instructions include information associated with at least one of a port binding and a port forwarding. 
     
     
       4. The gatekeeper device recited in  claim 1 , wherein determining that the one or more constraints are satisfied includes determining that a client request occurs at an authorized time. 
     
     
       5. The gatekeeper device recited in  claim 1 , wherein determining that the remote client is authorized includes determining a window of time during which a communication request from the remote client to the remote resource is authorized. 
     
     
       6. The gatekeeper device recited in  claim 1 , wherein communications from the remote client that are intended for the remote resource continue to be forwarded from the remote client to the remote resource. 
     
     
       7. The gatekeeper device recited in  claim 1 , wherein the set of one or more processors is further configured to determine whether the remote client ceases to be authorized to communicate with the remote resource. 
     
     
       8. The gatekeeper device recited in  claim 7 , wherein forwarding of communications from the client to the remote resource is refused in response to determining that the remote client is no longer authorized to communicate with the remote resource. 
     
     
       9. The gatekeeper device recited in  claim 7 , wherein forwarding of communications from the client to the remote resource is refused after a period of time upon determining that the remote client is no longer authorized to communicate with the remote resource. 
     
     
       10. A method, comprising:
 receiving, via an interface, credentials from a remote client, wherein the remote client is configured to receive and follow instructions for accessing a remote resource; 
 determining, using a gatekeeper device, that the remote client is authorized to communicate with the remote resource, wherein determining that the remote client is authorized to communicate with the remote resource includes:
 determining, using the received credentials, that the remote client is authorized to access the remote resource; and 
 determining that one or more constraints associated with use of the remote resource are satisfied; 
 
 providing a set of instructions to the remote client indicating how the remote resource can be accessed, wherein the set of instructions includes instructions to map a port on the remote client with the remote resource; 
 obtaining a communication from the remote client that is intended for the remote resource; and 
 forwarding, based at least in part on the determination that the remote client is authorized to communicate with the remote resource, the communication to the remote resource. 
 
     
     
       11. The method of  claim 10 , wherein the provided set of instructions include mapping a client local resource with the remote resource through the gatekeeper device. 
     
     
       12. The method of  claim 10 , wherein the provided set of instructions include information associated with at least one of a port binding and a port forwarding. 
     
     
       13. The method of  claim 10 , wherein determining that the one or more constraints are satisfied includes determining whether a client request occurs at an authorized time. 
     
     
       14. The method of  claim 10 , wherein determining that the remote client is authorized includes determining a window of time during which a communication request from the remote client to the remote resource is authorized. 
     
     
       15. The method of  claim 10 , wherein communications from the remote client that are intended for the remote resource continue to be forwarded from the remote client to the remote resource. 
     
     
       16. The method of  claim 10 , further comprising, determining, using the gatekeeper device, whether the remote client ceases to be authorized to communicate with the remote resource. 
     
     
       17. The method of  claim 16 , wherein forwarding of communications from the remote client to the remote resource is refused in response to determining that the remote client is no longer authorized to communicate with the remote resource. 
     
     
       18. The method of  claim 16 , wherein forwarding of communication from the remote client to the remote resource is refused after a period of time upon determining that the client is no longer authorized to communicate with the remote resource. 
     
     
       19. A computer program product, the computer program product being embodied in a non-transitory computer readable storage medium and comprising computer instructions for:
 receiving credentials from a remote client, wherein the client is configured to receive and follow instructions for accessing a remote resource; and 
 determining, using a gatekeeper device, that the remote client is authorized to communicate with the remote resource, wherein determining that the remote client is authorized to communicate with the remote resource includes:
 determining, using the received credentials, that the remote client is authorized to access the remote resource; and 
 determining that one or more constraints associated with use of the remote resource are satisfied; 
 
 providing a set of instructions to the remote client indicating how the remote resource can be accessed, wherein the set of instructions includes instructions to map a port on the remote client with the remote resource; 
 obtaining a communication from the remote client that is intended for the remote resource; and 
 forwarding, based at least in part on the determination that the remote client is authorized to communicate with the remote resource, the communication to the remote resource.

Join the waitlist — get patent alerts

Track US9270658B2 — get alerts on status changes and closely related new filings.

We store only your email — no account needed. See our privacy policy.