Session ID

Abstract: A method and system for establishing and maintaining a secure TCP/IP session between a server (1) having a database (3) and a client (21-a, 21-b, 21-c), the method includes sending a hello message from the client to the server (1) to establish client authorization, the server (1) sends a server session ID and a session private key to the client to establish the session.

Abstract: An apparatus and method for providing a secure firewall between a private network and a public network are disclosed. The apparatus is a gateway station having an operating system that is modified to disable communications packet forwarding, and further modified to process any communications packet having a network encapsulation address which matches the device address of the gateway station. The method includes enabling the gateway station to transparently initiate a first communications session with a client on a first network requesting a network service from a host on a second network, and a second independent communications session with the network host to which the client request was addressed. The data portion of communications packets from the first session are passed to the second session, and vice versa, by application level proxies which are passed the communications packets by the modified operating system. Data sensitivity screening is preferably performed on the data to ensure security. Only communications enabled by a security administrator are permitted. The advantage is a transparent firewall with application level security and data screening capability.

Abstract: A method of monitoring browser interactions with a server arrangement includes: capturing information regarding requests and corresponding responses; identifying sessions, each session including requests received at the server arrangement and corresponding responses; assigning a session identification (SessionID) for each identified session; recording in a database the SessionID, the content of each respective request in the session, the content of each corresponding response, and a chronological order of the requests; and re-creating selected pages representative of a particular browser's interactions and identifying browsing patterns.

Abstract: A method and system for handling roaming mobile nodes in a wireless network. The system uses a Subnet Context Manager to store current Network session keys, security policy and duration of the session (e.g. session timeout) for mobile nodes, which is established when the mobile node is initially authenticated. Pairwise transit keys are derived from the network session key. The Subnet Context Manager handles subsequent reassociation requests. When a mobile node roams to a new access point, the access point obtains the network session key from the Subnet Context Manager and validates the mobile node by computing a new pairwise transient key from the network session key.