Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020117676 - SYSTEM AND APPARATUS FOR ENHANCED QOS, STEERING AND POLICY ENFORCEMENT FOR HTTPS TRAFFIC VIA INTELLIGENT INLINE PATH DISCOVERY OF TLS TERMINATING NODE

Publication Number WO/2020/117676
Publication Date 11.06.2020
International Application No. PCT/US2019/064012
International Filing Date 02.12.2019
IPC
H04L 29/06 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 12/801 2013.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
801Flow control or congestion control
H04L 12/911 2013.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
911Network admission control and resource allocation, e.g. bandwidth allocation or in-call renegotiation
H04L 12/813 2013.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
801Flow control or congestion control
811Bitrate adaptation in active flows
813Policy-based control, e.g. policing
H04L 12/851 2013.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
801Flow control or congestion control
851Traffic type related actions, e.g. QoS or priority
H04L 12/823 2013.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
801Flow control or congestion control
811Bitrate adaptation in active flows
823Packet dropping
CPC
H04L 45/24
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
45Routing or path finding of packets in data switching networks
24Multipath
H04L 45/302
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
45Routing or path finding of packets in data switching networks
30Special provisions for routing multiclass traffic
302Route determination based on requested QoS
H04L 45/7453
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
45Routing or path finding of packets in data switching networks
74Address processing for routing
745Address table lookup or address filtering
7453using hashing
H04L 47/24
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
47Traffic regulation in packet switching networks
10Flow control or congestion control
24depending on the type of traffic, e.g. priority or quality of service [QoS]
H04L 47/32
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
47Traffic regulation in packet switching networks
10Flow control or congestion control
32Packet discarding or delaying
H04L 47/825
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
47Traffic regulation in packet switching networks
70Admission control or resource allocation
82Miscellaneous aspects
825Involving tunnels, e.g. MPLS
Applicants
  • CITRIX SYSTEMS, INC. [US]/[US]
Inventors
  • ARISANKALA, J Mohan Rao
  • RAMAIAH, Chaitra Maraliga
  • SRIVATSAN, Karthick
Agents
  • MCKENNA, Christopher J.
  • PUA, Meng H.
Priority Data
16/209,07004.12.2018US
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) SYSTEM AND APPARATUS FOR ENHANCED QOS, STEERING AND POLICY ENFORCEMENT FOR HTTPS TRAFFIC VIA INTELLIGENT INLINE PATH DISCOVERY OF TLS TERMINATING NODE
(FR) SYSTÈME ET APPAREIL D'AMÉLIORATION DE QOS, DE DIRECTION ET D'APPLICATION DE POLITIQUE POUR UN TRAFIC HTTP PAR L'INTERMÉDIAIRE D'UNE DÉCOUVERTE DE TRAJET EN LIGNE INTELLIGENTE DE NŒUD DE TERMINAISON DE TLS
Abstract
(EN)
Described embodiments provide systems and apparatuses for enhanced quality of service, steering and policy enforcement for https traffic via intelligent in-line path discovery of a TLS terminating node. The system may include a first network device having a secure connection traversing through the first network device, and in communication with a second network device. The first network device and the second network device may be intermediary to a client device and a server. The first network device may determine that the second network device terminates the secure connection. The first network device may receive key generation information of the secure connection from the second network device following determining the second network device terminates the secure connection. The first network device may decipher packet(s) of the secure connection destined for the device or the server using the received key generation information, to regulate network traffic of the secure connection at the first network device.
(FR)
Des modes de réalisation de la présente invention concernent des systèmes et des appareils permettant d'améliorer la qualité de service, de direction et d'application de politique pour un trafic HTTP par l'intermédiaire d'une découverte de trajet en ligne intelligente d'un nœud de terminaison TLS. Le système peut comprendre un premier dispositif réseau ayant une connexion sécurisée traversant le premier dispositif réseau, et en communication avec un second dispositif réseau. Le premier dispositif réseau et le second dispositif de réseau peuvent servir d'intermédiaires à un dispositif client et à un serveur. Le premier dispositif réseau peut déterminer que le second dispositif de réseau termine la connexion sécurisée. Le premier dispositif réseau peut recevoir des informations de génération de clé de la connexion sécurisée en provenance du second dispositif réseau suite à la détermination indiquant que le second dispositif réseau termine la connexion sécurisée. Le premier dispositif réseau peut déchiffrer un ou des paquets de la connexion sécurisée destinés au dispositif ou au serveur à l'aide des informations de génération de clé reçues, pour réguler le trafic réseau de la connexion sécurisée au niveau du premier dispositif réseau.
Also published as
Latest bibliographic data on file with the International Bureau