US9270658B2ExpiredUtilityA1
Auditing communications
Est. expiryApr 13, 2026(expired)· nominal 20-yr term from priority
Inventors:David Van
G06F 21/30H04L 63/08G06F 21/00H04L 63/00H04L 63/108H04L 63/1416H04L 63/1466H04L 63/10H04L 67/141
53
PatentIndex Score
0
Cited by
33
References
19
Claims
Abstract
Auditing a communication is disclosed. Credentials are received from a client. It is determined whether the client is authorized to communicate with a remote resource. If it is determined that the communication with the remote resource is allowed, a communication is forwarded from the local resource to the remote resource.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1. A gatekeeper device, comprising:
an interface configured to receive credentials from a remote client, wherein the remote client is configured to receive and follow instructions for accessing a remote resource; and
a set of one or more processors configured to:
determine that the remote client is authorized to communicate with the remote resource, wherein determining that the remote client is authorized to communicate with the remote resource includes:
determining, using the received credentials, that the remote client is authorized to access the remote resource; and
determining that one or more constraints associated with use of the remote resource are satisfied;
provide a set of instructions to the remote client indicating how the remote resource can be accessed, wherein the set of instructions includes instructions to map a port on the remote client with the remote resource;
obtain a communication from the remote client that is intended for the remote resource; and
forward, based at least in part on the determination that the remote client is authorized to communicate with the remote resource, the communication to the remote resource; and
a memory coupled to the set of one or more processors and configured to provide the set of one or more processors with instructions.
2. The gatekeeper device recited in claim 1 , wherein the provided set of instructions include mapping a client local resource with the remote resource through the gatekeeper device.
3. The gatekeeper device recited in claim 1 , wherein the provided set of instructions include information associated with at least one of a port binding and a port forwarding.
4. The gatekeeper device recited in claim 1 , wherein determining that the one or more constraints are satisfied includes determining that a client request occurs at an authorized time.
5. The gatekeeper device recited in claim 1 , wherein determining that the remote client is authorized includes determining a window of time during which a communication request from the remote client to the remote resource is authorized.
6. The gatekeeper device recited in claim 1 , wherein communications from the remote client that are intended for the remote resource continue to be forwarded from the remote client to the remote resource.
7. The gatekeeper device recited in claim 1 , wherein the set of one or more processors is further configured to determine whether the remote client ceases to be authorized to communicate with the remote resource.
8. The gatekeeper device recited in claim 7 , wherein forwarding of communications from the client to the remote resource is refused in response to determining that the remote client is no longer authorized to communicate with the remote resource.
9. The gatekeeper device recited in claim 7 , wherein forwarding of communications from the client to the remote resource is refused after a period of time upon determining that the remote client is no longer authorized to communicate with the remote resource.
10. A method, comprising:
receiving, via an interface, credentials from a remote client, wherein the remote client is configured to receive and follow instructions for accessing a remote resource;
determining, using a gatekeeper device, that the remote client is authorized to communicate with the remote resource, wherein determining that the remote client is authorized to communicate with the remote resource includes:
determining, using the received credentials, that the remote client is authorized to access the remote resource; and
determining that one or more constraints associated with use of the remote resource are satisfied;
providing a set of instructions to the remote client indicating how the remote resource can be accessed, wherein the set of instructions includes instructions to map a port on the remote client with the remote resource;
obtaining a communication from the remote client that is intended for the remote resource; and
forwarding, based at least in part on the determination that the remote client is authorized to communicate with the remote resource, the communication to the remote resource.
11. The method of claim 10 , wherein the provided set of instructions include mapping a client local resource with the remote resource through the gatekeeper device.
12. The method of claim 10 , wherein the provided set of instructions include information associated with at least one of a port binding and a port forwarding.
13. The method of claim 10 , wherein determining that the one or more constraints are satisfied includes determining whether a client request occurs at an authorized time.
14. The method of claim 10 , wherein determining that the remote client is authorized includes determining a window of time during which a communication request from the remote client to the remote resource is authorized.
15. The method of claim 10 , wherein communications from the remote client that are intended for the remote resource continue to be forwarded from the remote client to the remote resource.
16. The method of claim 10 , further comprising, determining, using the gatekeeper device, whether the remote client ceases to be authorized to communicate with the remote resource.
17. The method of claim 16 , wherein forwarding of communications from the remote client to the remote resource is refused in response to determining that the remote client is no longer authorized to communicate with the remote resource.
18. The method of claim 16 , wherein forwarding of communication from the remote client to the remote resource is refused after a period of time upon determining that the client is no longer authorized to communicate with the remote resource.
19. A computer program product, the computer program product being embodied in a non-transitory computer readable storage medium and comprising computer instructions for:
receiving credentials from a remote client, wherein the client is configured to receive and follow instructions for accessing a remote resource; and
determining, using a gatekeeper device, that the remote client is authorized to communicate with the remote resource, wherein determining that the remote client is authorized to communicate with the remote resource includes:
determining, using the received credentials, that the remote client is authorized to access the remote resource; and
determining that one or more constraints associated with use of the remote resource are satisfied;
providing a set of instructions to the remote client indicating how the remote resource can be accessed, wherein the set of instructions includes instructions to map a port on the remote client with the remote resource;
obtaining a communication from the remote client that is intended for the remote resource; and
forwarding, based at least in part on the determination that the remote client is authorized to communicate with the remote resource, the communication to the remote resource.Join the waitlist — get patent alerts
Track US9270658B2 — get alerts on status changes and closely related new filings.
We store only your email — no account needed. See our privacy policy.