News Column

Patent Issued for VPN Session Migration across Clients

August 21, 2014



By a News Reporter-Staff News Editor at Computer Weekly News -- A patent by the inventor Rajagopalan, Chandrasekaran (Bangalore, IN), filed on June 24, 2011, was published online on August 5, 2014, according to news reporting originating from Alexandria, Virginia, by VerticalNews correspondents.

Patent number 8800007 is assigned to Juniper Networks, Inc. (Sunnyvale, CA).

The following quote was obtained by the news editors from the background information supplied by the inventors: "Use of mobile computing devices to access computer data networks has recently increased dramatically. These mobile computing devices, e.g., smartphones, tablet computers, and laptops, provide platforms for access to computer data services. The ubiquitous use of mobile computing devices and the increasing desire by users for fast, secure network access from around the world has presented many challenges for enterprises. Enabling even basic connectivity across all desired mobile computing device platforms can be a huge challenge. Enabling secure connectivity with an easy end-user experience can be even more challenging. As numerous different endpoint security and connectivity software applications are added to each end user mobile device, the potential for problems and network conflicts increases. It is currently very difficult for information technology (IT) staff to enable network connectivity for users from any device, at any time, from virtually anywhere, without requiring significant end-user interaction with complex technologies.

"Secure access appliances may provide secure access to resources including network storage or other network services. A user may use secure access client software executing on a computing device to securely connect to a secure access appliance. For example, the user may initially authenticate with the secure access appliance using the secure access client software to create a secure session. The secure session may, e.g., create and/or connect to a Virtual Private Network (VPN)."

In addition to the background information obtained for this patent, VerticalNews journalists also obtained the inventor's summary information for this patent: "In general, techniques are described to enable a user to seamlessly migrate a secure session from one computing device to another with minimal or no user intervention. The secure session may include state information generated when the secure access client software accesses services provided via the secure access appliance.

"The techniques may be useful in environments where a user alternately employs multiple computing devices, e.g., a smartphone, laptop, and desktop personal computer that each executes secure access client software. In one example implementation, the user may initiate a secure session on a first computing device, e.g., a desktop personal computer, but may later wish to continue the secure session on a second computing device, e.g., a smartphone. In some aspects of the present disclosure, the second device may request and receive secure session data from the first device that enables the second device to automatically authenticate to the secure access appliance and reestablish the secure session for the user with the second device without user intervention. In this way, techniques of the present disclosure eliminate the need for a user to manually re-authenticate to a secure access appliance when connecting to an existing secure session from a different computing device. Such techniques also decouple a particular secure session from a particular computing device.

"Thus, aspects of the present disclosure may enable seamless migration of a secure session from one computing device to another to allow a user to transition to another computing device without having to manually re-authenticate the computing device to a secure access appliance. Such techniques may remove the burden on the user to re-enter user authentication credentials, for example, in order to re-authenticate and/or reestablish a secure session. Aspects of the present disclosure may therefore simplify a user's experience by enabling the user to continue using a secure session regardless of the computing device currently employed by the user.

"In one example, a method comprises establishing, by a first client computing device, a first secure session with a secure access appliance. The method also comprises receiving, by the first client computing device via a communication channel, a request from a second client computing device for secure session data for the first secure session usable by the second client computing device to establish a second secure session with the secure access appliance. The method also includes generating, by the first client computing device, a message including the secure session data for the first secure session. The method also includes sending, by the first client computing device, the message to the second client computing device.

"In one example, a client computing device comprises a session migration module that establishes a first secure session with the secure access appliance. The client computing device also comprises one or more network interfaces that receive, via a communication channel, a request from a second client computing device for secure session data for the first secure session usable by the second client computing device to establish a second secure session with the secure access appliance. The session migration module further generates a message including the secure session data for the first secure session and the one or more network interfaces send the message to the second client computing device.

"In another example, a secure access appliance comprises one or more network interfaces to receive, from a first client computing device, a message that identifies a second client computing device. The secure access appliance also comprises a session management module to generate secure session data usable by the second client computing device to establish a secure session with the secure access appliance. The one or more network interfaces receive, from the second client computing device, a request to establish the secure session with the secure access appliance; and the session management module establishes the secure session with the second client computing device.

"In another example, a system comprises a first client computing device; a second client computing device; a communication channel between the first client computing device and the second client computing device; and a secure access appliance. The first client computing device comprises a control unit comprising a session migration module configured to establish a secure session with the secure access appliance. The first client computing device also comprises one or more network interfaces configured to receive a request, via the communication channel, from the second client computing device for secure session data usable by the second client computing device to establish the secure session with the secure access appliance. The session migration module is further configured to generate a message that includes the secure session data. The one or more network interfaces are also configured to send the secure session data to the second client computing device. In the example, the second client computing device, responsive to receiving the message, establishes the secure session with the secure access appliance.

"The details of one or more embodiments of the invention are set forth in the accompanying drawings and the description below. Other features, objects, and advantages of the invention will be apparent from the description and drawings, and from the claims."

URL and more information on this patent, see: Rajagopalan, Chandrasekaran. VPN Session Migration across Clients. U.S. Patent Number 8800007, filed June 24, 2011, and published online on August 5, 2014. Patent URL: http://patft.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&d=PALL&p=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.htm&r=1&f=G&l=50&s1=8800007.PN.&OS=PN/8800007RS=PN/8800007

Keywords for this news article include: Software, Juniper Networks Inc..

Our reports deliver fact-based news of research and discoveries from around the world. Copyright 2014, NewsRx LLC


For more stories covering the world of technology, please see HispanicBusiness' Tech Channel



Source: Computer Weekly News


Story Tools






HispanicBusiness.com Facebook Linkedin Twitter RSS Feed Email Alerts & Newsletters