Browse Prior Art Database

Tunneling and Multiplexing UDP and TCP over SSL/TCP connections to enable full secure communication suite in the absence of a VPN

IP.com Disclosure Number: IPCOM000015380D
Original Publication Date: 2002-Sep-30
Included in the Prior Art Database: 2003-Jun-20

Publishing Venue

IBM

Abstract

Tunneling and Multiplexing UDP and TCP over SSL/TCP connections to enable full secure communication suite in the absence of a VPN Disclosed is a device that is solves the problem of using a cable modem or DSL connection or T1/T3 to securely connect to an enterprise with a full communication suite in the absence of a Virtual Private Network (VPN). Today there is no standard for UDP over SSL. There is also no standard way of enabling a user at home or on the internet to run applications that require a reverse connection without complex IPSEC software. It is true that Secure Shell (SSH) allows a reverse connection however this is frowned upon by many enterprises because the user would then be using a non enterprise approved method of encryption and would be simply seen as piercing the enterprise's firewall. An example of a restriction on applications would be the use of Xclient and Xserver; this dampens Unix* application suites. Additionally SSH does not permit UDP communication, hence, software applications requiring UDP transmissions are disabled. For example: mapping network drives for Windows** systems is not possible since the SMB protocol relies on UDP communication. These are just examples of applications that were once functional on a VPN and are restricted once DSL or cable modem is in the picture with simple enterprise authenticate SSL connections. When users use broadband communication like DSL or cable modems, the enterprise that users connect to provides special means by which users access its internal network