CN1783778B - 网关服务器、及加密通信的中继方法 - Google Patents

网关服务器、及加密通信的中继方法 Download PDF

Info

Publication number
CN1783778B
CN1783778B CN2005101257517A CN200510125751A CN1783778B CN 1783778 B CN1783778 B CN 1783778B CN 2005101257517 A CN2005101257517 A CN 2005101257517A CN 200510125751 A CN200510125751 A CN 200510125751A CN 1783778 B CN1783778 B CN 1783778B
Authority
CN
China
Prior art keywords
encrypted communication
server device
client device
access request
client
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2005101257517A
Other languages
English (en)
Chinese (zh)
Other versions
CN1783778A (zh
Inventor
竹岛由晃
小川贵央
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hitachi Ltd
Original Assignee
Hitachi Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hitachi Ltd filed Critical Hitachi Ltd
Publication of CN1783778A publication Critical patent/CN1783778A/zh
Application granted granted Critical
Publication of CN1783778B publication Critical patent/CN1783778B/zh
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0464Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/166Implementing security features at a particular protocol layer at the transport layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
    • H04L69/322Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Information Transfer Between Computers (AREA)
  • Computer And Data Communications (AREA)
CN2005101257517A 2004-12-02 2005-12-01 网关服务器、及加密通信的中继方法 Expired - Fee Related CN1783778B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
JP2004350099 2004-12-02
JP2004-350099 2004-12-02
JP2004350099A JP4520840B2 (ja) 2004-12-02 2004-12-02 暗号化通信の中継方法、ゲートウェイサーバ装置、暗号化通信のプログラムおよび暗号化通信のプログラム記憶媒体

Publications (2)

Publication Number Publication Date
CN1783778A CN1783778A (zh) 2006-06-07
CN1783778B true CN1783778B (zh) 2011-03-30

Family

ID=35985242

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2005101257517A Expired - Fee Related CN1783778B (zh) 2004-12-02 2005-12-01 网关服务器、及加密通信的中继方法

Country Status (5)

Country Link
US (1) US7849306B2 (enExample)
EP (1) EP1667398B1 (enExample)
JP (1) JP4520840B2 (enExample)
CN (1) CN1783778B (enExample)
DE (1) DE602005007310D1 (enExample)

Families Citing this family (68)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7058822B2 (en) 2000-03-30 2006-06-06 Finjan Software, Ltd. Malicious mobile code runtime monitoring system and methods
US8079086B1 (en) 1997-11-06 2011-12-13 Finjan, Inc. Malicious mobile code runtime monitoring system and methods
US9219755B2 (en) 1996-11-08 2015-12-22 Finjan, Inc. Malicious mobile code runtime monitoring system and methods
US7197661B1 (en) 2003-12-05 2007-03-27 F5 Networks, Inc. System and method for dynamic mirroring of a network connection
EP2035948B1 (en) * 2006-06-27 2016-04-13 Waterfall Security Solutions Ltd. Unidirectional secure links from and to a security engine
IL177756A (en) * 2006-08-29 2014-11-30 Lior Frenkel Encryption-based protection against attacks
US9154557B2 (en) * 2006-10-12 2015-10-06 Cisco Technology, Inc. Automatic proxy registration and discovery in a multi-proxy communication system
JP2008129673A (ja) * 2006-11-17 2008-06-05 Nippon Telegr & Teleph Corp <Ntt> ユーザ認証システム、ユーザ認証方法、それに用いるゲートウェイ及びプログラムとその記録媒体
US9055107B2 (en) * 2006-12-01 2015-06-09 Microsoft Technology Licensing, Llc Authentication delegation based on re-verification of cryptographic evidence
IL180020A (en) 2006-12-12 2013-03-24 Waterfall Security Solutions Ltd Encryption -and decryption-enabled interfaces
IL180748A (en) * 2007-01-16 2013-03-24 Waterfall Security Solutions Ltd Secure archive
KR100867130B1 (ko) * 2007-02-23 2008-11-06 (주)코리아센터닷컴 보안 데이터 송수신 시스템 및 방법
US8549157B2 (en) * 2007-04-23 2013-10-01 Mcafee, Inc. Transparent secure socket layer
US8650389B1 (en) * 2007-09-28 2014-02-11 F5 Networks, Inc. Secure sockets layer protocol handshake mirroring
US8223205B2 (en) 2007-10-24 2012-07-17 Waterfall Solutions Ltd. Secure implementation of network-based sensors
CN101500230B (zh) * 2008-01-30 2010-12-08 华为技术有限公司 建立安全关联的方法和通信网络
US8566580B2 (en) 2008-07-23 2013-10-22 Finjan, Inc. Splitting an SSL connection between gateways
EP2335402A4 (en) * 2008-10-01 2013-04-24 Twilio Inc TELEPHONY WEB EVENT SYSTEM AND METHOD
JP2011081762A (ja) * 2009-03-10 2011-04-21 Ricoh Co Ltd 機器設定装置及び機器設定装置における機器再設定方法
CN102045317B (zh) * 2009-10-15 2016-06-08 华为技术有限公司 实现多方通信的方法、装置及系统
EP2456158B1 (en) * 2010-11-16 2016-06-01 BlackBerry Limited Apparatus, system and method for verifying server certificates
US9264235B2 (en) * 2010-11-16 2016-02-16 Blackberry Limited Apparatus, system and method for verifying server certificates
US9104882B2 (en) 2010-12-07 2015-08-11 Comcast Cable Communications, Llc Reconfigurable access network encryption architecture
JP5569440B2 (ja) 2011-03-11 2014-08-13 ブラザー工業株式会社 通信装置およびコンピュータプログラム
US9998545B2 (en) * 2011-04-02 2018-06-12 Open Invention Network, Llc System and method for improved handshake protocol
WO2013011730A1 (ja) * 2011-07-21 2013-01-24 インターナショナル・ビジネス・マシーンズ・コーポレーション 文書を処理する装置及び方法
CN102984115B (zh) * 2011-09-02 2016-03-16 中国长城计算机深圳股份有限公司 一种网络安全方法、及客户端服务器
CN103188224A (zh) * 2011-12-29 2013-07-03 北京中文在线数字出版股份有限公司 一种wap内容授权阅览方法
US9635037B2 (en) 2012-09-06 2017-04-25 Waterfall Security Solutions Ltd. Remote control of secure installations
US9317718B1 (en) 2013-03-29 2016-04-19 Secturion Systems, Inc. Security device with programmable systolic-matrix cryptographic module and programmable input/output interface
US9355279B1 (en) 2013-03-29 2016-05-31 Secturion Systems, Inc. Multi-tenancy architecture
US8739243B1 (en) 2013-04-18 2014-05-27 Phantom Technologies, Inc. Selectively performing man in the middle decryption
US9419975B2 (en) 2013-04-22 2016-08-16 Waterfall Security Solutions Ltd. Bi-directional communication over a one-way link
US9021575B2 (en) 2013-05-08 2015-04-28 Iboss, Inc. Selectively performing man in the middle decryption
WO2014196963A1 (en) * 2013-06-04 2014-12-11 Intel Corporation End-to-end secure communication system
WO2014196964A1 (en) 2013-06-04 2014-12-11 Intel Corporation Application integrity protection via secure interaction and processing
US9009461B2 (en) 2013-08-14 2015-04-14 Iboss, Inc. Selectively performing man in the middle decryption
US10178086B2 (en) * 2013-11-28 2019-01-08 Telefonaktiebolaget Lm Ericsson (Publ) Method and arrangements for intermediary node discovery during handshake
JP6451086B2 (ja) * 2014-05-29 2019-01-16 ブラザー工業株式会社 中継装置、サービス実行システム、及びプログラム
JP6226080B2 (ja) 2014-09-25 2017-11-08 日本電気株式会社 通信制御装置、通信制御方法、通信制御プログラム、及び、情報システム
CN107077432B (zh) * 2014-09-29 2020-04-14 阿卡麦科技公司 Https请求充实
IL235175A (en) 2014-10-19 2017-08-31 Frenkel Lior Secure desktop remote control
WO2016141549A1 (zh) * 2015-03-10 2016-09-15 华为技术有限公司 数据传输方法和设备
JP6529820B2 (ja) * 2015-05-13 2019-06-12 株式会社 インターコム 通信装置及びプログラム
US20160381061A1 (en) * 2015-06-28 2016-12-29 Check Point Software Technologies Ltd. Proxy for mitigation of attacks exploiting misconfigured or compromised web servers
US11283774B2 (en) * 2015-09-17 2022-03-22 Secturion Systems, Inc. Cloud storage using encryption gateway with certificate authority identification
US10887314B2 (en) 2015-09-29 2021-01-05 Verisign, Inc. Access control for named domain networking
EP3369206A1 (en) * 2015-12-23 2018-09-05 Nagravision S.A. Secure provisioning, by a client device, cryptographic keys for exploiting services provided by an operator
IL250010B (en) 2016-02-14 2020-04-30 Waterfall Security Solutions Ltd Secure connection with protected facilities
US9680801B1 (en) 2016-05-03 2017-06-13 Iboss, Inc. Selectively altering references within encrypted pages using man in the middle
US10904069B2 (en) * 2016-11-29 2021-01-26 Brother Kogyo Kabushiki Kaisha Communication apparatus executing specific process related to security
US11100250B2 (en) 2017-09-05 2021-08-24 Philips Healthcare Informatics, Inc. Controlling access to data in a health network
JP7203297B2 (ja) * 2017-09-27 2023-01-13 有限会社シモウサ・システムズ エンドツーエンド暗号化通信システム
US10778642B2 (en) * 2017-12-23 2020-09-15 Mcafee, Llc Decrypting transport layer security traffic without man-in-the-middle proxy
CN110830413B (zh) * 2018-08-07 2023-09-26 京东科技控股股份有限公司 通信方法、客户端、服务器、通信装置和系统
EP3900280B1 (en) 2018-12-21 2024-06-12 Telefonaktiebolaget Lm Ericsson (Publ) User data traffic handling
JP7241620B2 (ja) * 2019-06-21 2023-03-17 APRESIA Systems株式会社 認証スイッチ、ネットワークシステムおよびネットワーク装置
US11356423B2 (en) * 2020-01-14 2022-06-07 Cisco Technology, Inc. Managing encrypted server-name-indication (ESNI) at proxy devices
US11361112B2 (en) * 2020-07-07 2022-06-14 Mastercard International Incorporated Managing secure document exchanges
JP7502618B2 (ja) * 2020-07-20 2024-06-19 富士通株式会社 通信プログラム、通信装置、及び通信方法
KR102405977B1 (ko) * 2020-08-11 2022-06-03 이청종 전산망 해킹방지 시스템 및 방법
US11563665B2 (en) * 2021-03-05 2023-01-24 Zscaler, Inc. Detecting web probes versus regular traffic through a proxy including encrypted traffic
US11528601B1 (en) 2021-06-09 2022-12-13 T-Mobile Usa, Inc. Determining and ameliorating wireless telecommunication network functionalities that are impaired when using end-to-end encryption
CN113507479B (zh) * 2021-07-23 2022-11-08 上海颜硕信息科技有限公司 针对web代码和数据的网关型加解密透明sdk方法
CN115967717B (zh) * 2021-10-12 2024-07-16 支付宝(杭州)信息技术有限公司 基于中继集群的通信方法和装置
CN114462059B (zh) * 2021-12-30 2025-05-16 济南超级计算技术研究院 一种表字段级加密及安全访问控制方法及系统
CN115550041A (zh) * 2022-09-30 2022-12-30 上海浦东发展银行股份有限公司 数据的传输方法、装置、计算机设备和存储介质
CN119945679B (zh) * 2025-04-10 2025-06-17 北京星驰致远科技有限公司 一种存储加密网关及加解密方法

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1358386A (zh) * 1999-06-30 2002-07-10 国际商业机器公司 对代码转换代理主机中的多个源服务器的动态连接

Family Cites Families (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6550012B1 (en) * 1998-12-11 2003-04-15 Network Associates, Inc. Active firewall system and methodology
US6643701B1 (en) * 1999-11-17 2003-11-04 Sun Microsystems, Inc. Method and apparatus for providing secure communication with a relay in a network
US6324648B1 (en) * 1999-12-14 2001-11-27 Gte Service Corporation Secure gateway having user identification and password authentication
US7149803B2 (en) * 2000-06-08 2006-12-12 At&T Corp. Method for content distribution in a network supporting a security protocol
US6963972B1 (en) * 2000-09-26 2005-11-08 International Business Machines Corporation Method and apparatus for networked information dissemination through secure transcoding
US7360075B2 (en) * 2001-02-12 2008-04-15 Aventail Corporation, A Wholly Owned Subsidiary Of Sonicwall, Inc. Method and apparatus for providing secure streaming data transmission facilities using unreliable protocols
US6996841B2 (en) * 2001-04-19 2006-02-07 Microsoft Corporation Negotiating secure connections through a proxy server
US6986047B2 (en) * 2001-05-10 2006-01-10 International Business Machines Corporation Method and apparatus for serving content from a semi-trusted server
JP3842100B2 (ja) * 2001-10-15 2006-11-08 株式会社日立製作所 暗号化通信システムにおける認証処理方法及びそのシステム
US7093121B2 (en) * 2002-01-10 2006-08-15 Mcafee, Inc. Transferring data via a secure network connection
US7430755B1 (en) * 2002-09-03 2008-09-30 Fs Networks, Inc. Method and system for providing persistence in a secure network access
US20040255037A1 (en) * 2002-11-27 2004-12-16 Corvari Lawrence J. System and method for authentication and security in a communication system
JP2004206573A (ja) * 2002-12-26 2004-07-22 Toshiba Corp データ転送装置、サーバー装置、情報提供システム、データ転送方法及びプログラム
US7506368B1 (en) * 2003-02-13 2009-03-17 Cisco Technology, Inc. Methods and apparatus for network communications via a transparent security proxy
US8615795B2 (en) * 2003-06-25 2013-12-24 Ntrepid Corporation Secure network privacy system
US7584500B2 (en) * 2003-11-19 2009-09-01 Hughes Network Systems, Llc Pre-fetching secure content using proxy architecture
WO2005060202A1 (en) * 2003-12-10 2005-06-30 International Business Machines Corporation Method and system for analysing and filtering https traffic in corporate networks

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1358386A (zh) * 1999-06-30 2002-07-10 国际商业机器公司 对代码转换代理主机中的多个源服务器的动态连接

Also Published As

Publication number Publication date
DE602005007310D1 (de) 2008-07-17
CN1783778A (zh) 2006-06-07
US7849306B2 (en) 2010-12-07
US20060136724A1 (en) 2006-06-22
JP4520840B2 (ja) 2010-08-11
EP1667398B1 (en) 2008-06-04
EP1667398A1 (en) 2006-06-07
JP2006165678A (ja) 2006-06-22

Similar Documents

Publication Publication Date Title
CN1783778B (zh) 网关服务器、及加密通信的中继方法
US12177351B2 (en) Authorized data sharing using smart contracts
US12101416B2 (en) Accessing hosts in a computer network
CN100508517C (zh) 选择用于有线和无线设备的安全格式转换
JP5744172B2 (ja) 中間ストリーム再ネゴシエーションを介したプロキシsslハンドオフ
US8316429B2 (en) Methods and systems for obtaining URL filtering information
EP3328023B1 (en) Authentication of users in a computer network
CN1615632B (zh) 用于支持对有线和无线客户端的服务器端认证的方法、装置和系统
JP5239341B2 (ja) ゲートウェイ、中継方法及びプログラム
US20220067189A1 (en) Data Sharing Via Distributed Ledgers
CN100525304C (zh) 网络系统、内部服务器、终端设备、存储介质和分组中继方法
JP2002523973A (ja) コンピュータ・ネットワークにおけるサービスへの安全なアクセスを可能にするシステムおよび方法
CN102685165A (zh) 基于代理网关对访问请求进行控制的方法及装置
EP3328025B1 (en) Accessing hosts in a hybrid computer network
JP2025532226A (ja) ドメイン名システム(dns)プラットフォームを使用したドメインフィルタリングルールのidベースのアプリケーション
US20160226831A1 (en) Apparatus and method for protecting user data in cloud computing environment
WO2016112580A1 (zh) 业务处理方法及装置
CN101370007B (zh) Wimax网络中对定位业务增强安全性和保护隐私权的方法
Mayank et al. Tor traffic identification
TWI416923B (zh) 網路服務中之安全資料通信
JP2001005746A (ja) ファイル転送システム
CN116684113A (zh) 一种基于软件定义边界sdp的业务处理方法及相关装置
Nainar et al. Capturing Secured Application Traffic for Analysis
WO2002046861A2 (en) Systems and methods for communicating in a business environment
JP2024035501A (ja) プログラム、サーバ及びファイル管理方法

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20110330

Termination date: 20141201

EXPY Termination of patent right or utility model