公开(公告)号：US20220182420A1

公开(公告)日：2022-06-09

申请号：US17378535

申请日：2021-07-16

申请人： Tempered Networks, Inc.

发明人： Nicholas Anthony Marrone ,  Bryan David Skene

IPC分类号： H04L9/40 ,  H04L12/66

摘要： Embodiments are directed to managing communication. Credentials of a user may be provided to an authorization service such that the authorization service authenticates the user as a member of authorization groups and such that the user may be associated with a gateway on an overlay network. The authorization groups may be compared with user groups to associate the user with one or more user group. The gateway may be associated with one or more resource group based on the user groups. Policy information may be generated for the gateway based on each resource group. The policy information may be provided to the gateway to define policies associated with resources in the overlay network. The policy information may be enforced against source nodes providing overlay traffic directed to target nodes in the overlay network.

公开(公告)号：US11070594B1

公开(公告)日：2021-07-20

申请号：US17084557

申请日：2020-10-29

申请人： Tempered Networks, Inc.

发明人： Nicholas Anthony Marrone ,  Bryan David Skene

IPC分类号： H04L29/06 ,  H04L12/66

摘要： Embodiments are directed to managing communication. Credentials of a user may be provided to an authorization service such that the authorization service authenticates the user as a member of authorization groups and such that the user may be associated with a gateway on an overlay network. The authorization groups may be compared with user groups to associate the user with one or more user group. The gateway may be associated with one or more resource group based on the user groups. Policy information may be generated for the gateway based on each resource group. The policy information may be provided to the gateway to define policies associated with resources in the overlay network. The policy information may be enforced against source nodes providing overlay traffic directed to target nodes in the overlay network.

公开(公告)号：US10797993B2

公开(公告)日：2020-10-06

申请号：US16267166

申请日：2019-02-04

申请人： Tempered Networks, Inc.

发明人： Jeffrey Michael Ahrenholz ,  Orlie Thomas Brewer, Jr. ,  Jeff James Costlow

IPC分类号： H04L12/715 ,  H04L12/751 ,  H04L12/741

摘要： Embodiments are directed to a relay that receives packets from a source gateway associated with a source gateway identifier (GID) and a target GID associated with a target gateway where each GID is separate from a network address or a hostname of the source gateway or the target gateway. The relay determines a connection route based on an association between the connection route and an ingress identifier obtained from the packets. The relay provides the connection route based on the source GID and the target GID. The relay determines network address information associated with the target gateway based on the connection route. And, the relay forwards the packets provided by the source gateway to the target gateway based on the network address information.

公开(公告)号：US20180183834A1

公开(公告)日：2018-06-28

申请号：US15670925

申请日：2017-08-07

申请人： Tempered Networks, Inc.

发明人： David Mattes ,  Ludwin Fuchs

IPC分类号： H04L29/06 ,  H04L12/24

CPC分类号： H04L63/20 ,  H04L41/0668 ,  H04L41/08 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/08 ,  H04L63/0884

摘要： Embodiments are directed towards, gateway computers and management platform server computers for managing secure communication over a network. Gateway computer may intercept communications from unauthenticated source node computers directed to target node computers. If the unauthenticated node computer provides its credentials in response to a request for credentials from the gateway computer, the credentials and the intercepted communications may be provided to a management platform server for further processing. The management platform server may authenticate the unauthenticated source node computer based on its credentials and the intercepted communication and the management platform server may determine a target gateway computer that corresponds to the target node computer based on content of the intercepted communication. The management platform server may provide configuration information for generating a secure private network connection between the gateway computer and the target gateway computer.

公开(公告)号：US11729152B2

公开(公告)日：2023-08-15

申请号：US17164488

申请日：2021-02-01

申请人： Tempered Networks, Inc.

发明人： Ludwin Fuchs ,  Dustin Orion Lundquist

IPC分类号： H04L9/40 ,  G06F9/455 ,  H04L45/64 ,  H04L12/66

CPC分类号： H04L63/0428 ,  G06F9/45558 ,  H04L12/66 ,  H04L45/64 ,  G06F2009/45595

摘要： Embodiments are directed to managing communication over one or more networks. An underlay network that couples a source gateway and a target gateway using underlay protocols may be provided such that the target gateway includes two or more port groups that may each be associated with a separate target node. An overlay network may be provided on the underlay network based on policy information such that the source gateway and the target gateway may each be assigned separate gateway identifiers (GIDs) that are associated with the overlay network. In response to the source gateway authorizing a source node to employ the overlay network to communicate one or more encrypted payloads to a target node, the one or more encrypted payloads may be provided to the target node based on the overlay network and the policy information.

公开(公告)号：US10326799B2

公开(公告)日：2019-06-18

申请号：US15670859

申请日：2017-08-07

申请人： Tempered Networks, Inc.

发明人： Bryan David Skene ,  Jeff James Costlow ,  Ludwin Fuchs

IPC分类号： H04L29/06 ,  H04L12/803 ,  H04L29/08 ,  H04L12/751

摘要： Embodiments are directed to secure communication over a network. If a source node sends a communication to a target node, a source gateway may forward the communication to the target node. The source gateway may provide a gateway identifier (GID) that may be associated with one or more target gateways associated with the target node. Further, the source gateway may embed marker information that includes at least a portion of the GID in the communication. If the GID is associated with more than one target gateway, a TMD selects one target gateway from the more than one target gateways. Also, the TMD provides a gateway key associated with the selected target gateway that is associated with the communication. And, the TMD may provide the communication to the selected target gateway that provides the communication to the target node.

公开(公告)号：US20180183833A1

公开(公告)日：2018-06-28

申请号：US15670859

申请日：2017-08-07

申请人： Tempered Networks, Inc.

发明人： Bryan David Skene ,  Jeff James Costlow ,  Ludwin Fuchs

IPC分类号： H04L29/06 ,  H04L29/08 ,  H04L12/751 ,  H04L12/803

CPC分类号： H04L63/20 ,  H04L45/02 ,  H04L47/125 ,  H04L63/06 ,  H04L63/164 ,  H04L67/10 ,  H04L67/1027 ,  H04L67/1036 ,  H04L67/327

摘要： Embodiments are directed to secure communication over a network. If a source node sends a communication to a target node, a source gateway may forward the communication to the target node. The source gateway may provide a gateway identifier (GID) that may be associated with one or more target gateways associated with the target node. Further, the source gateway may embed marker information that includes at least a portion of the GID in the communication. If the GID is associated with more than one target gateway, a TMD selects one target gateway from the more than one target gateways. Also, the TMD provides a gateway key associated with the selected target gateway that is associated with the communication. And, the TMD may provide the communication to the selected target gateway that provides the communication to the target node.

公开(公告)号：US09729581B1

公开(公告)日：2017-08-08

申请号：US15201063

申请日：2016-07-01

申请人： Tempered Networks, Inc.

发明人： Bryan David Skene ,  Jeff James Costlow ,  Ludwin Fuchs

IPC分类号： G06F15/16 ,  G06F17/00 ,  H04L29/12 ,  H04L12/801 ,  H04L29/06 ,  H04L12/803 ,  H04L29/08

CPC分类号： H04L63/20 ,  H04L45/02 ,  H04L47/125 ,  H04L63/06 ,  H04L63/164 ,  H04L67/10 ,  H04L67/1027 ,  H04L67/1036 ,  H04L67/327

摘要： Embodiments are directed to secure communication over a network. If a source node sends a communication to a target node, a source gateway may forward the communication to the target node. The source gateway may provide a gateway identifier (GID) that may be associated with one or more target gateways associated with the target node. Further, the source gateway may embed marker information that includes at least a portion of the GID in the communication. If the GID is associated with more than one target gateway, a TMD selects one target gateway from the more than one target gateways. Also, the TMD provides a gateway key associated with the selected target gateway that is associated with the communication. And, the TMD may provide the communication to the selected target gateway that provides the communication to the target node.

公开(公告)号：US09729580B2

公开(公告)日：2017-08-08

申请号：US14814283

申请日：2015-07-30

申请人： Tempered Networks, Inc.

发明人： David Mattes ,  Ludwin Fuchs

IPC分类号： G06F17/00 ,  H04L29/06 ,  H04L12/24

CPC分类号： H04L63/20 ,  H04L41/0668 ,  H04L41/08 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/08 ,  H04L63/0884

摘要： Embodiments are directed towards, gateway computers and management platform server computers for managing secure communication over a network. Gateway computer may intercept communications from unauthenticated source node computers directed to target node computers. If the unauthenticated node computer provides its credentials in response to a request for credentials from the gateway computer, the credentials and the intercepted communications may be provided to a management platform server for further processing. The management platform server may authenticate the unauthenticated source node computer based on its credentials and the intercepted communication and the management platform server may determine a target gateway computer that corresponds to the target node computer based on content of the intercepted communication. The management platform server may provide configuration information for generating a secure private network connection between the gateway computer and the target gateway computer.

公开(公告)号：US11824901B2

公开(公告)日：2023-11-21

申请号：US17378535

申请日：2021-07-16

申请人： Tempered Networks, Inc.

发明人： Nicholas Anthony Marrone ,  Bryan David Skene

IPC分类号： H04L9/40 ,  H04L12/66

CPC分类号： H04L63/205 ,  H04L12/66 ,  H04L63/102 ,  H04L63/104 ,  H04L63/108

摘要： Embodiments are directed to managing communication. Credentials of a user may be provided to an authorization service such that the authorization service authenticates the user as a member of authorization groups and such that the user may be associated with a gateway on an overlay network. The authorization groups may be compared with user groups to associate the user with one or more user group. The gateway may be associated with one or more resource group based on the user groups. Policy information may be generated for the gateway based on each resource group. The policy information may be provided to the gateway to define policies associated with resources in the overlay network. The policy information may be enforced against source nodes providing overlay traffic directed to target nodes in the overlay network.