首页> 外国专利> Systems and methods for policy driven fine grain validation of servers' SSL certificate for clientless SSLVPN access

Systems and methods for policy driven fine grain validation of servers' SSL certificate for clientless SSLVPN access

机译：用于无客户端SSLVPN访问的服务器SSL证书的策略驱动的细粒度验证的系统和方法

页面导航

摘要
著录项
相似文献

摘要

The present disclosure is directed towards systems and methods for validation of a secure socket layer (SSL) certificate of a server for clientless SSL virtual private network (VPN) access. An intermediary device can receive a first request from a client for a clientless SSL VPN connection to a first server. The intermediary device can determine, using a preconfigured policy, that the first server in the first request meets a condition of the preconfigured policy. The intermediary device 801 can perform, responsive to the determination, an action to validate a SSL certificate of the first server using one or more certificate authority (CA) certificate files available to the intermediary device. The one or more CA certificate files can be specified by the preconfigured policy for the action.

机译：本公开针对用于验证服务器的安全套接字层（SSL）证书以用于无客户端SSL虚拟专用网（VPN）访问的系统和方法。中间设备可以从客户端接收到与第一服务器的无客户端SSL VPN连接的第一请求。中间设备可以使用预先配置的策略来确定第一请求中的第一服务器满足预先配置的策略的条件。中间设备 801 可以响应于该确定而执行使用中间设备可用的一个或多个证书颁发机构（CA）证书文件来验证第一服务器的SSL证书的动作。可以通过针对该操作的预配置策略来指定一个或多个CA证书文件。 展开▼

著录项

公开/公告号US10652229B2

专利类型

公开/公告日2020-05-12

原文格式PDF

申请/专利权人 CITRIX SYSTEMS INC.;
展开▼

申请/专利号US201815923977

发明设计人 JAYDEEP KHANDELWAL;PUNIT GUPTA;ARKESH KUMAR;
展开▼

申请日2018-03-16

分类号H04L29/06;

国家 US

入库时间 2022-08-21 11:31:06

相似文献

专利

外文文献

中文文献

1. 用于核实IP资源的有效性的方法以及相关联的访问控制服务器、验证服务器、客户端节点、中继节点和计算机程序 [P] . 中国专利： CN112514350A . 2021-03-16

2. 用于应用服务器的基于令牌的细粒度访问控制系统及方法 [P] . 中国专利： CN100490387C . 2009.05.20

3. SYSTEMS AND METHODS FOR POLICY DRIVEN FINE GRAIN VALIDATION OF SERVERS SSL CERTIFICATE FOR CLIENTLESS SSLVPN ACCESS [P] . 美国专利： US2020274867A1 . 2020-08-27

机译：用于对SSL VPN进行无访问权限的服务器SSL证书的策略驱动的精细粒度验证的系统和方法

4. SYSTEMS AND METHODS FOR POLICY DRIVEN FINE GRAIN VALIDATION OF SERVERS? SSL CERTIFICATE FOR CLIENTLESS SSLVPN ACCESS [P] . 美国专利： US2018212953A1 . 2018-07-26

机译：用于策略驱动的服务器细粒度验证的系统和方法？ SSL凭证可实现无访问权限的SSLVPN

5. Systems and methods for policy driven fine grain validation of servers' SSL certificate for clientless SSLVPN access [P] . 美国专利： US9948633B2 . 2018-04-17

机译：用于无客户端SSLVPN访问的服务器SSL证书的策略驱动的细粒度验证的系统和方法

1. Vertical Migration of Fine-Grained Sediments from Interior to Surface of Seabed Driven by Seepage Flows-‘Sub-Bottom Sediment Pump Action’ [J] . ZHANG Shaotong, JIA Yonggang, WEN Mingzheng, 中国海洋大学学报（英文版） . 2017,第001期

2. Access Control Policy Analysis and Access Denial Method for Cloud Services [J] . Chi-Lun Liu 电子科技学刊：英文版 . 2013,第002期

3. Clientless SSL for Remote Access [J] . HUGH SMITH, SCOTT THOMAS, NEWMAN CHAN Network Computing . 2003,第25期

4. Provably Secure Fine-Grained Data Access Control Over Multiple Cloud Servers in Mobile Cloud Computing Based Healthcare Applications [J] . Roy Sandip, Das Ashok Kumar, Chatterjee Santanu, IEEE transactions on industrial informatics . 2019,第1期

5. Achieving fine-grained access control for secure data sharing on cloud servers [J] . Guojun Wang, Qin Liu, Jie Wu Concurrency, practice and experience . 2011,第12期

6. A secure revocable personal health record system with policy-based fine-grained access control [C] . Debnath Mitu Kumar, Samet Saeed, Vidyasankar Krishnamurthy Annual Conference on Privacy, Security and Trust . 2015

7. Enabling Fine-grained Network Flow Management in Data Center Networks and Servers [D] . Tewari, Malveeka 2015

8. Using Frankencerts for Automated Adversarial Testing of Certificate Validation in SSL/TLS Implementations [O] . Chad Brubaker, Suman Jana, Baishakhi Ray, -1

9. Volume 2, Issue 3, Special issue on Recent Advances in Engineering Systems (Published Papers) Articles Transmit / Received Beamforming for Frequency Diverse Array with Symmetrical frequency offsets Shaddrack Yaw Nusenu Adv. Sci. Technol. Eng. Syst. J. 2(3), 1-6 (2017); View Description Detailed Analysis of Amplitude and Slope Diffraction Coefficients for knife-edge structure in S-UTD-CH Model Eray Arik, Mehmet Baris Tabakcioglu Adv. Sci. Technol. Eng. Syst. J. 2(3), 7-11 (2017); View Description Applications of Case Based Organizational Memory Supported by the PAbMM Architecture Martín, María de los Ángeles, Diván, Mario José Adv. Sci. Technol. Eng. Syst. J. 2(3), 12-23 (2017); View Description Low Probability of Interception Beampattern Using Frequency Diverse Array Antenna Shaddrack Yaw Nusenu Adv. Sci. Technol. Eng. Syst. J. 2(3), 24-29 (2017); View Description Zero Trust Cloud Networks using Transport Access Control and High Availability Optical Bypass Switching Casimer DeCusatis, Piradon Liengtiraphan, Anthony Sager Adv. Sci. Technol. Eng. Syst. J. 2(3), 30-35 (2017); View Description A Derived Metrics as a Measurement to Support Efficient Requirements Analysis and Release Management Indranil Nath Adv. Sci. Technol. Eng. Syst. J. 2(3), 36-40 (2017); View Description Feedback device of temperature sensation for a myoelectric prosthetic hand Yuki Ueda, Chiharu Ishii Adv. Sci. Technol. Eng. Syst. J. 2(3), 41-40 (2017); View Description Deep venous thrombus characterization: ultrasonography, elastography and scattering operator Thibaud Berthomier, Ali Mansour, Luc Bressollette, Frédéric Le Roy, Dominique Mottier Adv. Sci. Technol. Eng. Syst. J. 2(3), 48-59 (2017); View Description Improving customs’ border control by creating a reference database of cargo inspection X-ray images Selina Kolokytha, Alexander Flisch, Thomas Lüthi, Mathieu Plamondon, Adrian Schwaninger, Wicher Vasser, Diana Hardmeier, Marius Costin, Caroline Vienne, Frank Sukowski, Ulf Hassler, Irène Dorion, Najib Gadi, Serge Maitrejean, Abraham Marciano, Andrea Canonica, Eric Rochat, Ger Koomen, Micha Slegt Adv. Sci. Technol. Eng. Syst. J. 2(3), 60-66 (2017); View Description Aviation Navigation with Use of Polarimetric Technologies Arsen Klochan, Ali Al-Ammouri, Viktor Romanenko, Vladimir Tronko Adv. Sci. Technol. Eng. Syst. J. 2(3), 67-72 (2017); View Description Optimization of Multi-standard Transmitter Architecture Using Single-Double Conversion Technique Used for Rescue Operations Riadh Essaadali, Said Aliouane, Chokri Jebali and Ammar Kouki Adv. Sci. Technol. Eng. Syst. J. 2(3), 73-81 (2017); View Description Singular Integral Equations in Electromagnetic Waves Reflection Modeling A. S. Ilinskiy, T. N. Galishnikova Adv. Sci. Technol. Eng. Syst. J. 2(3), 82-87 (2017); View Description Methodology for Management of Information Security in Industrial Control Systems: A Proof of Concept aligned with Enterprise Objectives. Fabian Bustamante, Walter Fuertes, Paul Diaz, Theofilos Toulqueridis Adv. Sci. Technol. Eng. Syst. J. 2(3), 88-99 (2017); View Description Dependence-Based Segmentation Approach for Detecting Morpheme Boundaries Ahmed Khorsi, Abeer Alsheddi Adv. Sci. Technol. Eng. Syst. J. 2(3), 100-110 (2017); View Description Paper Improving Rule Based Stemmers to Solve Some Special Cases of Arabic Language Soufiane Farrah, Hanane El Manssouri, Ziyati Elhoussaine, Mohamed Ouzzif Adv. Sci. Technol. Eng. Syst. J. 2(3), 111-115 (2017); View Description Medical imbalanced data classification Sara Belarouci, Mohammed Amine Chikh Adv. Sci. Technol. Eng. Syst. J. 2(3), 116-124 (2017); View Description ADOxx Modelling Method Conceptualization Environment Nesat Efendioglu, Robert Woitsch, Wilfrid Utz, Damiano Falcioni Adv. Sci. Technol. Eng. Syst. J. 2(3), 125-136 (2017); View Description GPSR+Predict: An Enhancement for GPSR to Make Smart Routing Decision by Anticipating Movement of Vehicles in VANETs Zineb Squalli Houssaini, Imane Zaimi, Mohammed Oumsis, Saïd El Alaoui Ouatik Adv. Sci. Technol. Eng. Syst. J. 2(3), 137-146 (2017); View Description Optimal Synthesis of Universal Space Vector Digital Algorithm for Matrix Converters Adrian Popovici, Mircea Băbăiţă, Petru Papazian Adv. Sci. Technol. Eng. Syst. J. 2(3), 147-152 (2017); View Description Control design for axial flux permanent magnet synchronous motor which operates above the nominal speed Xuan Minh Tran, Nhu Hien Nguyen, Quoc Tuan Duong Adv. Sci. Technol. Eng. Syst. J. 2(3), 153-159 (2017); View Description A synchronizing second order sliding mode control applied to decentralized time delayed multi−agent robotic systems: Stability Proof Marwa Fathallah, Fatma Abdelhedi, Nabil Derbel Adv. Sci. Technol. Eng. Syst. J. 2(3), 160-170 (2017); View Description Fault Diagnosis and Tolerant Control Using Observer Banks Applied to Continuous Stirred Tank Reactor Martin F. Pico, Eduardo J. Adam Adv. Sci. Technol. Eng. Syst. J. 2(3), 171-181 (2017); View Description Development and Validation of a Heat Pump System Model Using Artificial Neural Network Nabil Nassif, Jordan Gooden Adv. Sci. Technol. Eng. Syst. J. 2(3), 182-185 (2017); View Description Assessment of the usefulness and appeal of stigma-stop by psychology students: a serious game designed to reduce the stigma of mental illness Adolfo J. Cangas, Noelia Navarro, Juan J. Ojeda, Diego Cangas, Jose A. Piedra, José Gallego Adv. Sci. Technol. Eng. Syst. J. 2(3), 186-190 (2017); View Description Kinect-Based Moving Human Tracking System with Obstacle Avoidance Abdel Mehsen Ahmad, Zouhair Bazzal, Hiba Al Youssef Adv. Sci. Technol. Eng. Syst. J. 2(3), 191-197 (2017); View Description A security approach based on honeypots: Protecting Online Social network from malicious profiles Fatna Elmendili, Nisrine Maqran, Younes El Bouzekri El Idrissi, Habiba Chaoui Adv. Sci. Technol. Eng. Syst. J. 2(3), 198-204 (2017); View Description Pulse Generator for Ultrasonic Piezoelectric Transducer Arrays Based on a Programmable System-on-Chip (PSoC) Pedro Acevedo, Martín Fuentes, Joel Durán, Mónica Vázquez, Carlos Díaz Adv. Sci. Technol. Eng. Syst. J. 2(3), 205-209 (2017); View Description Enabling Toy Vehicles Interaction With Visible Light Communication (VLC) M. A. Ilyas, M. B. Othman, S. M. Shah, Mas Fawzi Adv. Sci. Technol. Eng. Syst. J. 2(3), 210-216 (2017); View Description Analysis of Fractional-Order 2xn RLC Networks by Transmission Matrices Mahmut Ün, Manolya Ün Adv. Sci. Technol. Eng. Syst. J. 2(3), 217-220 (2017); View Description Fire extinguishing system in large underground garages Ivan Antonov, Rositsa Velichkova, Svetlin Antonov, Kamen Grozdanov, Milka Uzunova, Ikram El Abbassi Adv. Sci. Technol. Eng. Syst. J. 2(3), 221-226 (2017); View Description Directional Antenna Modulation Technique using A Two-Element Frequency Diverse Array Shaddrack Yaw Nusenu Adv. Sci. Technol. Eng. Syst. J. 2(3), 227-232 (2017); View Description Classifying region of interests from mammograms with breast cancer into BIRADS using Artificial Neural Networks Estefanía D. Avalos-Rivera, Alberto de J. Pastrana-Palma Adv. Sci. Technol. Eng. Syst. J. 2(3), 233-240 (2017); View Description Magnetically Levitated and Guided Systems Florian Puci, Miroslav Husak Adv. Sci. Technol. Eng. Syst. J. 2(3), 241-244 (2017); View Description Energy-Efficient Mobile Sensing in Distributed Multi-Agent Sensor Networks Minh T. Nguyen Adv. Sci. Technol. Eng. Syst. J. 2(3), 245-253 (2017); View Description Validity and efficiency of conformal anomaly detection on big distributed data Ilia Nouretdinov Adv. Sci. Technol. Eng. Syst. J. 2(3), 254-267 (2017); View Description S-Parameters Optimization in both Segmented and Unsegmented Insulated TSV upto 40GHz Frequency Juma Mary Atieno, Xuliang Zhang, HE Song Bai Adv. Sci. Technol. Eng. Syst. J. 2(3), 268-276 (2017); View Description Synthesis of Important Design Criteria for Future Vehicle Electric System Lisa Braun, Eric Sax Adv. Sci. Technol. Eng. Syst. J. 2(3), 277-283 (2017); View Description Gestural Interaction for Virtual Reality Environments through Data Gloves G. Rodriguez, N. Jofre, Y. Alvarado, J. Fernández, R. Guerrero Adv. Sci. Technol. Eng. Syst. J. 2(3), 284-290 (2017); View Description Solving the Capacitated Network Design Problem in Two Steps [O] . Meriem Khelifi, Mohand Yazid Saidi, Saadi Boudjit 2017

10. Message Driven File System: A Network Accessible File System for Fine-Grain Message Passing Multicomputers. [R] . Zadik, Y. 1996

1. Notification Services for the Server-Based Certificate Validation Protocol [J] . Johannes BUCHMANN ,Vangelis KARATSIOLIS . 通讯、网络与系统学国际期刊（英文） . 2009,第5期

2. Access Control Policy Analysis and Access Denial Method for Cloud Services [J] . Chi-Lun Liu . 电子科技学刊 . 2013,第002期

3. Application of Total Error Strategy in Validation of Affordable and Accessible UV-Visible Spectrophotometric Methods for Quality Control of Poor Medicines [J] . Jérémie Kindenge Mbinze ,Jean Nsangu Mpasi ,Elza Maghe . 美国分析化学（英文） . 2015,第2期

4. 基于客户端和服务器端双重加密的数据备份方法的研究及应用 [C] . 王子骏 ,林伟伟 ,马立珂 . 第二十三届全国信息保密学术会议（IS2013） . 2013

5. OPC数据访问服务器和客户端的设计与实现 [A] . 田宏 . 2014