公开(公告)号：US20240364678A1

公开(公告)日：2024-10-31

申请号：US18752532

申请日：2024-06-24

Applicant: Cisco Technology, Inc.

Inventor： George Mathew Koikara ,  Pruthvi Panyam Nataraj ,  Naveen Gujje ,  Sujith RS ,  Pranav Balakumar

IPC: H04L9/40 ,  H04L67/141

CPC classification number: H04L63/0823 ,  H04L63/0281 ,  H04L67/141

Abstract: Techniques and architecture are described for protecting non-http and TCP/UDP applications in a zero trust network access (ZTNA)/web virtual private network (VPN) environment by establishing a secure communication channel between a native application and an application server providing an application service. More particularly, the present disclosure describes techniques and architecture that leverage the firewall wherein a thin client on a client device enables a client desktop, establishes a secure channel from a native application, e.g., the client desktop, to the firewall, and acts as a proxy.

公开(公告)号：US20250023915A1

公开(公告)日：2025-01-16

申请号：US18220057

申请日：2023-07-10

Applicant: Cisco Technology, Inc.

Inventor： George Mathew Koikara ,  Pruthvi Panyam Nataraj ,  Naveen Gujje

IPC: H04L9/40

Abstract: Techniques and architecture are described for eliminating double encryption in zero-trust network access authenticated sessions. The techniques include an endpoint client-based proxy of a network receiving, from a browser, a request to access a protected private service. The endpoint client-based proxy pauses access of the browser to the protected private service and establishes a transport layer security (TLS) connection between the endpoint client-based proxy and a zero-trust network access (ZTNA) gateway. The ZTNA gateway determines whether the protected private service uses a secure transport mechanism and establishes either a null cipher encrypted tunnel between at least the endpoint client-based proxy and the ZTNA gateway or a non-null cipher encrypted tunnel between at least the endpoint client-based proxy and the ZTNA gateway. The endpoint client-based proxy resumes access of the browser to the protected private service.

公开(公告)号：US12052235B2

公开(公告)日：2024-07-30

申请号：US17866871

申请日：2022-07-18

Applicant: Cisco Technology, Inc.

Inventor： George Mathew Koikara ,  Pruthvi Panyam Nataraj ,  Naveen Gujje ,  Sujith RS ,  Pranav Balakumar

IPC: H04L9/40 ,  H04L9/08 ,  H04L67/141

CPC classification number: H04L63/0823 ,  H04L63/0281 ,  H04L67/141

Abstract: Techniques and architecture are described for protecting non-http and TCP/UDP applications in a zero trust network access (ZTNA)/web virtual private network (VPN) environment by establishing a secure communication channel between a native application and an application server providing an application service. More particularly, the present disclosure describes techniques and architecture that leverage the firewall wherein a thin client on a client device enables a client desktop, establishes a secure channel from a native application, e.g., the client desktop, to the firewall, and acts as a proxy.

公开(公告)号：US20240022555A1

公开(公告)日：2024-01-18

申请号：US17866871

申请日：2022-07-18

Applicant: Cisco Technology, Inc.

Inventor： George Mathew Koikara ,  Pruthvi Panyam Nataraj ,  Naveen Gujje ,  Sujith RS ,  Pranav Balakumar

IPC: H04L9/40 ,  H04L67/141

CPC classification number: H04L63/0823 ,  H04L63/0281 ,  H04L67/141

Abstract: Techniques and architecture are described for protecting non-http and TCP/UDP applications in a zero trust network access (ZTNA)/web virtual private network (VPN) environment by establishing a secure communication channel between a native application and an application server providing an application service. More particularly, the present disclosure describes techniques and architecture that leverage the firewall wherein a thin client on a client device enables a client desktop, establishes a secure channel from a native application, e.g., the client desktop, to the firewall, and acts as a proxy.