Home | Links | Contact Us | More About Intellectual Property | Bookmark

Search patents:

Home

Processing Data

System-and-method-for-transacting-a-validated-application-session-in-a-networked-computing-environment

Simultaneously acquiring video images and analog signals

We claim: 1. A system for processing multiple signals comprising: means for receiving a video ...

LAN early warning system

OF THE INVENTION The present invention may be used in virtually any LAN/WAN environment. For the ...

Rejection of light intrusion false alarms in a video security system

Having thus described the invention, what is claimed and desired to be secured by Letters Patent is:...

System for reading the status and for controlling the power supplies of appliances connected to computer networks

OF THE PREFERRED EMBODIMENTS FIG. 1 illustrates a simple network management protocol (SNMP) ...

Network enhanced BIOS enabling remote management of a computer without a functioning operating system

In addition to the object listed above, it is an object of the present invention to provide a ...

Method and apparatus for detecting the presence of a remote device and providing power thereto

The present invention provides a detection circuit for detecting the presence of a remote device, ...

Apparatus and a method for detecting motion within an image sequence

The disadvantages heretofore associated with prior art motion direction detection are overcome by ...

Machine monitor with tethered sensors

OF PREFERRED EMBODIMENTS In accordance with a preferred embodiment of the present invention shown ...

Motion detection and motion compensative prediction circuit

In view of such aspects, it is an object of the present invention to provide a motion-detecting and ...

Adaptive polling rate algorithm for SNMP-based network monitoring

Accordingly, the present invention provides an adaptive rate of polling which is sensitive to ...

System and method for transacting a validated application session in a networked computing environment

Details

Inventors: Watson, Robert N. M.; Gudmundsson, Olafur; Kindred, Darrell;
Assignee: Networks Associates Technology, Inc. (Santa Clara, CA)
Primary Examiner: Lim; Krisna
Assistant Examiner:
Attorney, Agent or Firm: Inouye; Patrick J. S., Hamaty; Christopher J.

A system and method for transacting a validated application session in a networked computing environment is described. A hierarchical protocol stack having a plurality of interfaced protocol layers is defined. A connection-based session protocol layer is included. A session is opened with a requesting client responsive to a request packet containing a source address of uncertain trustworthiness. A client connection with the requesting client is negotiated. A stateless validation of the source address contained in the request packet is performed using encoded information obtained from the request packet headers. A server connection is negotiated with a responding server upon successful validation of the requesting client. The session is facilitated by translating packets independently exchanged over the client connection and the server connection. The session is closed through a controlled termination of each of the client connection and the server connection.

DETAILED DESCRIPTION The present invention provides a system and method for validating a session request and transacting a communication session for a validated connection.
An intermediary receives a session request from a requesting client.
A SYN cookie is generated and a session is opened only if the SYN cookie is properly acknowledged by the requesting client.
A connection is initiated with a responding server and the session is transacted by translating sequence numbers by an offset reflecting the client versus the server sequence numbers.
The session is terminated upon the request of either the client or server.
An embodiment of the present invention is a system and method for transacting a validated application session in a networked computing environment.
A hierarchical protocol stack having a plurality of interfaced protocol layers is defined.
A connection-based session protocol layer is included.
A session is opened with a requesting client responsive to a request packet containing a source address of uncertain trustworthiness.
A client connection with the requesting client is negotiated.
A stateless validation of the source address contained in the request packet is performed using encoded information obtained from the request packet headers.
A server connection is negotiated with a responding server upon successful validation of the requesting client.
The session is facilitated by translating packets independently exchanged over the client connection and the server connection.
The session is closed through a controlled termination of each of the client connection and the server connection.
Still other embodiments of the present invention will become readily apparent to those skilled in the art from the following detailed description, wherein is described embodiments of the invention by way of illustrating the best mode contemplated for carrying out the invention.
As will be realized, the invention is capable of other and different embodiments and its several details are capable of modifications in various obvious respects, all without departing from the spirit and the scope of the present invention

Related patents

	Dynamic next hop routing protocol The present invention provides a network in which mobile devices themselves serve as routers of data packets. Each mobile device represents a node in the network. The ...
	Load sharing and redundancy scheme An invention is described herein that provides load sharing and redundancy in a network. This is accomplished, according to one embodiment, through the use of a master ...
	Selecting a wireless link in a public wireless communication network The invention helps solve the above problems by selecting a wireless link based on historical performance data for the wireless links. A wireless communication device ...
	Programmable auto-converting analog to digital conversion module According to the present invention, an A/D conversion on a device is accomplished using fewer A/D conversion circuits than analog input channels. Signals from many ...
	Federated operating system for a server Various aspects of the invention concern a server, methods, and software for implementing a distributed, high capacity, high speed, operating system referred to as the F...
	Integrating switching and facility networks The problems associated with prior solutions for implementing ATM or IP/MPLS in a large-scale network are overcome by providing an efficient means by which capacity in ...
	Electric circuit control device OF A PREFERRED EMBODIMENT In one advantageous embodiment of the invention, the memory means consist of a capacitor associated with at least one resistor, parallel-...
	Apparatus for monitoring disturbances in environmental conditions OF EMBODIMENT OF THE INVENTION The apparatus of the embodiment as shown in FIG. 1 comprises central operation unit 11, a transmission control circuit 2 connected to the ...
	Motion vector detector employing image subregions and median values This invention is intended to solve the foregoing prior art problems, and its object is to provide an image motion vector detection apparatus which effectively reduces ...
	Meter for measuring accumulated power consumption of an electrical appliance during operation of the appliance OF PREFERRED EMBODIMENTS With reference to FIGS. 1A to 1D, reference numeral 10 generally indicates a power meter comprising a body member 12 provided with prongs 14 on ...

0.004
Archive: All patents - Links Copyright (c)2006 Eipa-patents.org - All rights reserved