Browse Prior Art Database

Server SSL Service Methodology on Intermediator with Reverse Proxy

IP.com Disclosure Number: IPCOM000010375D
Original Publication Date: 2002-Nov-22
Included in the Prior Art Database: 2002-Nov-22
Document File: 3 page(s) / 55K

Publishing Venue

IBM

Abstract

Disclosed is a way to SSL secured connection service for thin client by the intermediator proxy server

This text was extracted from a PDF file.
At least one non-text object (such as an image or picture) has been suppressed.
This is the abbreviated version, containing approximately 50% of the total text.

Page 1 of 3

Server SSL Service Methodology on Intermediator with Reverse Proxy

   Disclosed is a way to SSL secured connection service for thin client by the intermediator proxy server

This method enables the intermediator proxy server to provide the service to the traffic by disabling end-to-end SSL secured connection between clients and servers . The solution can be acceptable for Internet Service Gateway of wireless phone carriers.

1. Background - Network Intermediator and End-To-End Secured Connection

In current web environment there are a lot of kind of networks; Intranet of each corporations/universities, ISP's networks. In near future, pervasive computing (ubiquitous computing) environment, more and more devices are connected to other kind of networks. For example, many devices like TV, Audio Device, Microwave oven, refrigerator, Air Conditioner, are connected to the home network via wired/wireless connections. The number of network intermediators are increasing more and more. On each intermediator many services will be introduced to adapt the differences between the networks. The intermediator's role is become more important too. The Intermediator is usually implemented by service proxy system.

Web Servers

Clients Intermediator

Network-A Network-B

When client makes an end-to-end SSL secured connection to Web Server through the intermediator, then the intermediator can not serve this secured traffic. Intermediator have to terminate or disable End-To-End Secured Connection. to serve this traffic flow data. But if the client does not have SSL connection capability, then the client can not access to the SSL secured contents.

Figure.1. Intermediator

Clients Intermediator Web Servers

End-To-End SSL Connection Network-A Network-B

If the intermediator proxy system have SSL connection capability, the thin client can also access SSL secured contents. But the forward proxy usually don't have such function. If Network-A is secured environment like an intranet of a company, then End-To-End Secured Connection must not be required in Network-A.

Figure.2. End-To-End SSL Connection Through Intermediator

Server SSL Connection

Intermediator Web Servers

Network-A Network-B

Secured

Clients

Figure.3. Server SSL Connection by Intermediator

1

[This page contains 3 pictures or other non-text objects]

Page 2 of 3

2. Server SSL Connection Function in the intermediator proxy system.

IBM WebSphere Edge Server Caching Proxy component can run as a reverse proxy which works like a usually Web Server and also has a SSL connection function to other back-end Web servers. SSL connection between the reverse proxy and the other web server can be available just by reverse...