发明名称 |
Protocol translation |
摘要 |
A system and method for securing data by receiving encrypted data at a security appliance transmitted from a client, wherein at least a portion of the encrypted data is encrypted according to a first encryption protocol, and wherein the encrypted data is transmitted to the security appliance according to a first data transfer protocol. The encrypted data is then decrypted at the security appliance, wherein at least a portion of the decrypted data is re-encrypted according to a second encryption protocol at the security appliance. The re-encrypted data is transmitted from the security appliance to a storage device, wherein the re-encrypted data is transmitted according to a second data transfer protocol that is different than the first data transfer protocol. |
申请公布号 |
US8898452(B2) |
申请公布日期 |
2014.11.25 |
申请号 |
US200511222684 |
申请日期 |
2005.09.08 |
申请人 |
NetApp, Inc. |
发明人 |
Plotkin Serge;Bojinov Hristo;Frandzel Yuval;Narver Andrew;Yang Zi-Bin |
分类号 |
H04L9/00;H04L29/06;G06F21/62 |
主分类号 |
H04L9/00 |
代理机构 |
Cesari and McKenna, LLP |
代理人 |
Cesari and McKenna, LLP |
主权项 |
1. A method for protocol translation executed on a security appliance, comprising:
receiving a first access request having a first command and a data payload, wherein the first command is formatted according to a first data transfer protocol, wherein the data payload is encrypted according to a first encryption protocol, wherein the first encryption protocol operates at a first layer of a multi-layered protocol stack; decrypting the encrypted data payload; translating the first command into a second command formatted according to a second data transfer protocol different than the first data transfer protocol; re-encrypting the decrypted data payload according to a second encryption protocol different than the first encryption protocol, wherein the second command is not encrypted, wherein the second encryption protocol operates at a second layer of the multi-layered protocol stack different from the first layer; and transmitting a second access request having the second command and the re-encrypted data payload to a server, wherein the second access request is transmitted according to the second data transfer protocol, wherein the re-encryption is transparent to the server. |
地址 |
Sunnyvale CA US |