Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.

Abstract: Methods, systems, and apparatuses for managing access to a stored object/resource are provided. A shared access credential service may manage access attempts to the stored object by a client. A first request is received by the service from the client. The first request includes an authorization token. Whether an application in the client is authorized to access the stored object based upon the authorization token is determined. In response to determining the application to be authorized to access the stored object, (a) a shared access credential is generated to replace a prior-generated shared access credential (if existing) associated with the stored object, (b) the replacement shared access credential is associated with the stored object, and (c) the replacement shared access credential is provided by the service to the client. The replacement shared access credential is configured to be presented by the application to enable access to the stored object.

Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.

Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.

Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.

Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.

Abstract: A method is disclosed that includes assigning a service address to a service of a private network. The service of the private network is accessible, via a gateway, by a client computer. The method also includes turning off duplicate address detection at the gateway. The gateway is associated with a public network address that is different from the service address.

Abstract: A proxy system may use Layer 3 security mechanisms to establish secure communications between two devices. Each device may establish a secure session with the proxy using the same or a different configuration of a secure session. The proxy may pass traffic between the two devices and perform translation of the traffic between the two secure sessions. The proxy may also perform application layer gateway translations for communication traffic. Some embodiments may comprise a distribution or master proxy that may assign a communication session to a slave proxy in a scalable architecture.

Abstract: An address resolver such as a DNS service may use the identity of a requesting client device to determine a response of a network address for a hostname in a request. A requesting client device may transmit a hardware or user identifier to an address resolving server in order to authenticate the client. The server may determine if the requesting client is authorized to have access to the requested hostname, and respond with the network address when the client is authorized. The address resolver may be used to limit access for users to various devices or hosts across a network and in some cases may track which users are accessing which hosts.

Abstract: A method is disclosed that includes assigning a service address to a service of a private network. The service of the private network is accessible, via a gateway, by a client computer. The method also includes turning off duplicate address detection at the gateway. The gateway is associated with a public network address that is different from the service address.

Abstract: A proxy system may use Layer 3 security mechanisms to establish secure communications between two devices. Each device may establish a secure session with the proxy using the same or a different configuration of a secure session. The proxy may pass traffic between the two devices and perform translation of the traffic between the two secure sessions. The proxy may also perform application layer gateway translations for communication traffic. Some embodiments may comprise a distribution or master proxy that may assign a communication session to a slave proxy in a scalable architecture.

Abstract: An address resolver such as a DNS service may use the identity of a requesting client device to determine a response of a network address for a hostname in a request. A requesting client device may transmit a hardware or user identifier to an address resolving server in order to authenticate the client. The server may determine if the requesting client is authorized to have access to the requested hostname, and respond with the network address when the client is authorized. The address resolver may be used to limit access for users to various devices or hosts across a network and in some cases may track which users are accessing which hosts.

Abstract: A connection monitor utility may monitor the availability of various resources, display a status, and provide various optimization functions for each resource. Performance data may be collected and displayed, and the performance data may be used to optimize, troubleshoot, and notify administrators or users for each connection. Some embodiments may store optimized parameters for connections from different locations. In one use model, the monitor utility may be used with a secure connection to a private network to provide visual feedback of connectivity to various resources and simple optimization of the connections.

Abstract: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.

Abstract: A method and apparatus for configuring a plurality of computers, each of which requires interaction with at least one resource to advance a configuration state of the computer. A request for access to a resource may be received from at least one of the computers, and a resource needed may be determined. An availability of the resource needed may be determined, and the computer instructed to interact with the resource if the resource is available. If the resource is not available, the computer may be caused to not interact with the resource.