Developing, testing and demonstrating automation solutions using web and vpn tunnelling based virtual computers

IPC classes for russian patent Developing, testing and demonstrating automation solutions using web and vpn tunnelling based virtual computers (RU 2483454):

H04L12/46 - Interconnection of networks

G06F12/08 - in hierarchically structured memory systems, e.g. virtual memory systems

G06F11/22 - Detection or location of defective computer hardware by testing during standby operation or during idle time, e.g. start-up testing (testing of digital circuits, e.g. of separate computer components, G01R0031317000)

Another patents in same IPC classes:

Method to set maximum size of transmitted data unit (mtu) of communication line in user equipment (ue) / 2480931
In a network of radio communication of architecture of system architecture evolution/long-term evolution (SAE/LTE), the network is made as capable of setting a communication line MTU in user equipment (UE) for each channel of data transfer, besides, the communication line MTU set by the network may represent an MTU of a route of a service of SAE data transfer in a complete network or a part of a specific SAE/LTE network.

Method of acars messages transfer along ip protocol / 2479141
A message ACARS (M), transferred by an application, is broken into multiple units (B₁,B₂,…,B_n). For each unit of the specified message, apart from the last one, locally at the level of a transmitter, an imitation of acceptance acknowledgment of the specified unit is sent to the specified application, and when the transmitter receives from a receiver a message indicating normal acceptance of specified multiple transferred units, it generates acceptance acknowledgment (ack_n) of the last unit, afterwards it sends it to the specified application.

Communication module / 2454710
Communication module (2) for connecting a serial bus (3), which transmits data in packets, to a plurality of system buses (5) of a multiprocessor gateway (1), which transmit data word by word, the communication module having a communication protocol unit (2c), which is connected to the serial bus (3), for converting between data packages (DP) and messages (MSG), each consisting of a plurality of data words (DW), a message relaying unit (2d) for relaying messages (MSG) between at least one message memory (2e) and the communication protocol unit (2c), as well as buffer memories (2f, 2g), a plurality of interface units (2a, 2b), each connected to an associated system bus (5-1, 5-2) of the multiprocessor gateway (1), each interface unit being connected to at least one associated buffer memory (2f, 2g), which stores a message (MSG) temporarily, wherein transmission of data words (DW) from buffer memory (2f, 2g) of interface units (2a, 2b) via said plurality of system buses (5-1, 5-2) and their associated interface units (2a, 2b), each system bus (5-1, 5-2) having an associated master device (4-1, 4-2).

Method and apparatus for internetwork retrieval of user-associated data / 2454010
Invention relates to mobile communication. Data associated with a user (A) in a communication network (100) must be retrieved, for which a first general user profile (GUP) server (104) receives an incoming request for obtaining the data associated with the user from a data consumer (102) in a first communication domain (101) and determines that the data are in a second communication domain (109). The outgoing request for obtaining data is then transmitted to a second GUP server (110) in a second communication domain through an interface (111). The second GUP server then retrieves the requested data associated with the user from the network repository (112) and transmits the requested data to the second GUP server which then relays the requested data to the data consumer. Service access to user data in domains other than the GUP server domain is activated, for example, when the user is in roaming. Data associated with the user can also be distributed both in the first and second communication domains.

Information processing apparatus, device, method of controlling information processing apparatus and data storage medium / 2448422
Information processing apparatus has a control unit for controlling a plurality of network addresses, an allocation unit for allocating a network address from network addresses controlled by the control unit, which is not allocated to another apparatus, in accordance with a request from the apparatus which has reconnected to a network, a storage unit for storing the network address of a search server for searching device information in the device information storage unit based on the search request and response to the search request through the found result, a first transmitting unit for transmitting to the reconnected apparatus a network address allocated by the allocation unit and a second transmitting unit for transmitting a network address allocated by the allocation unit to the search server based on the network address stored in the storage unit.

Dynamic connection method for virtual private networks / 2438254
Disclosed invention uses dynamic routing protocol BGP and a BGP route updating method in order to sent local resource information needed for protection to remote VPN equipment. Then, the remote VPN equipment may use the address of the next transmission, obtained in the new version of the BGP route and extended group feature of the BGP route to obtain the real address of the VPN equipment at its end. IPSec responds to creation of the corresponding IPSec tunnel according to the obtained information.

Method for network address port translation request processing in data transmission network / 2409904
Method involves the following: receiving a first network address and/or port request message which contains information on request priority, through a one-way data transmission channel functional control element, from a communication session and/or service functional control element; identification by the one-way data transmission channel functional control element of the request priority in accordance with the information on priority contained in the said request message; controlling the one-way data transmission channel functional control element, processing the request based on the identified request priority; and sending a second network address and/or port request message containing information on priority on a functional switching element, where the functional switching element allocates network address and/or port resources for the request based on the information on priority.

Devices, provided for transportation, oriented for path setting in communication network with packets switching / 2373655
Particular invention relates to control system and communications, which make possible transport of traffic in mode, oriented for path setting with application of infrastructure (30) of network and hardware support of traditional network (34), non-oriented for path setting. According to the invention, traditional network, non-oriented for path setting, is added by plane (37) of control, oriented for path setting. Subset (38b) of address space (38), which in network, non-oriented for path setting, is used for definition of destination address, reserved for transportation, oriented for path setting, and used for definition of path mark. Advantage of invention is that inexpensive infrastructure (30) Ethernet can be used for implementation of network (35), oriented for path setting.

Method of transmitting messages in h323 communication system / 2371868
First terminal point and second terminal point confirm identification information via gateway; according to the above identification information, the first terminal point and the second terminal point exchange messages in a direct way. It is not necessary to change the functions of intermediate objects in order to apply the method provided with this invention because Diffie-Hellman key exchange method has been accepted in this method.

Method of controlling data flow in switching centres when connecting heterogeneous networks / 2369028
Invention relates to data flow control in asynchronous discrete data transmission networks with packet switching, particularly to systems for controlling traffic through a packet switching centre. For this purpose in the proposed method of controlling flow of data packets through a switching centre, occupance rate and rate of change of the free space of the buffer memory of the switching centre are calculated. Establishment of the functional relationship between occupance rate and rate of filling up of the buffer memory allows for limiting traffic such that, flow of data packets with higher priority have minimum restriction. Intensity of input streams is changed through adaptive variation of available memory allocated for packets of each stream when filling the next elementary memory unit.

Caching apparatus, method and system / 2483347
Caching apparatus has: cache memory for storing one or more entries, wherein each entry corresponds to an input/output memory access request, and each entry should contain a guest physical address (GPA) which corresponds to the input/output memory access request, and a corresponding host physical address (HPA); and a first logic circuitry which receives a first input/output memory access request from a terminal device and determines the first input/output memory access request includes future access prompting associated with an address, wherein the future access prompting should indicate to the host whether the address can be accessed in the future, and entries in the cache memory which do not contain prompting which corresponds to the previous input/output memory access requests, containing future access prompting should be replaced with earlier entries which contain prompting; and the first logic circuitry should provide updating of one or more bits, which corresponds to the address of both the entry in the cache memory and the entry in the input/output translation look-aside buffer (IOTLB), in response to the determination that the first input/output memory access request includes a future access prompt.

Microprocessor core memory subsystem / 2475822
Memory subsystem which is connected to a central processing unit, a system controller, external memory and which includes cache memory, a set of data and instruction buffers, consisting of a stored data buffer, a write-back buffer, a downloaded data buffer, wherein the memory subsystem has additional stored data buffers, wherein the cache memory is two-layered, the first layer being connected to the central processing unit, the second-layer cache memory and the write-back buffer, and the second layer is connected to stored data buffers, the downloaded data buffer and the write-back buffer, wherein the buffer for stored data falling in the second-layer cache memory has parity bits for noiseless coding and is connected to the write-back buffer.

Method of storing virtual port and material medium merger / 2451991
Method of storing the state of a virtual port in a virtual computer system, in which a distributed virtual port (DVport) is stored in a read-only memory cell, wherein the DVport has a given dynamic state and configuration parameters; storing the link between the DVport and VNIC for a first connection between VNIC of the corresponding virtual machine and a virtual switch associated with a first virtual port; and retrieving the state from the DVport into a new second virtual port using the dynamic state and configuration installation from the read-only memory cell when restarting the VM corresponding to the connected VNIC, restoring the state which enables the second virtual port to set up a second connection for transmitting network frames between the VNIC, corresponding to the virtual machine, and the virtual switch associated with the first virtual port, wherein the second connection is set up based on the state of the first connection.

Filtration of tracing using the tracing requests cash / 2443011

FIELD: computational engineering.

SUBSTANCE: computational system contains memory, the first processor having data cash, a detection object and at least one tracing requests cash. The method describes the operation of this system.

EFFECT: reduction in the number of tracing requests with cancellation to be processed by the processor, which results in a reduction in the number of processor stop cycles caused by the detecting processor.

41 cl, 5 dwg

Hybrid memory device with a single interface / 2442211

FIELD: computer engineering.

SUBSTANCE: invention relates to computer engineering namely to hybrid memory units; the memory device for the processing of operations with data in a single interface for two types of memory contains the first type of memory and the second type of memory where the first and the second types of memory are the types of the hardware memory; the interface corresponds to the first type of memory; the controller is connected to the interface of the first type of memory and the second type of memory at that on the basis of the information accepted to the interface the controller defines if other information accepted through the interface has been directed to the first type of memory or the second type of memory; the method describes the operation of this system.

EFFECT: expansion of memory of the computer device respectively to availability of relatively big volumes of volatile and nonvolatile memory without alteration of the current physical architecture of the computer device.

17 cl, 10 dwg.

Apparatus and method for reducing displacements in multilevel cache hierarchy / 2438165
Techniques and methods are used to reduce allocations to a higher level cache of cache lines displaced from a lower level cache. When it is determined that displaced lines have already been allocated on a higher level, the allocation of the displaced cache lines is prevented in the next level cache, thus, reducing displacements. To this end, a line is selected to be displaced in a lower level cache. Information associated with the selected line is identified which indicates that the selected line is present in a higher level cache. Allocation of the selected line in the higher level cache is prevented based on the identified information. Preventing allocation of the selected line saves power which would be associated with the allocation.

Method and apparatus for caching variable length instructions / 2435204
Method of caching variable length instructions comprises steps for writing instruction data to a cache line and storing a redundant copy of instruction data for one or more cache boundary positions.

Virtually tagged instruction cache with physically tagged behaviour / 2433456
System contains a virtually tagged instruction cache; a means for address translation which responds to an address translation invalidate instruction; and a control logic circuit configured to invalidate not all entries in the virtually tagged instruction cache in response to the address translation invalidate instruction.

Virtual network system of information storage, network storage device and virtual method / 2427891
Virtualised network system of information storage, comprising at least two network storage devices, connected to one and the same storage area network (SAN), where at least one of network storage devices comprises a unit of devices control arranged with the possibility to develop and maintain ratio of display between a global volume and local volumes of network storage devices, and redirection of access to the global volume to a network storage device, where there is a unit of global volumes control, which controls a global volume, more than one of network storage devices include a unit of global volumes control, arranged with the possibility to provide access to a global volume according to display ratio between a global volume and local volumes.

Region-based security / 2413978
System includes a data base component which stores multiple objects having hierarchical relationships between objects. The region component defines the security zone for a subset of objects and displays security data on that subset, where security zones are independent, separate or separated from hierarchical relationships between objects.

Domestic appliance and system of domestic appliance / 2477516
Information of a product and on a condition of a domestic appliance is converted into several acoustic signals of transmission, and a sound corresponding to the specified acoustic signals of transmission is discharged outside. Information on the product and information on the condition are formed in the form of a digital signal and are stored in a memory device. The digital signal is coded with the help of a conversion device and is converted into at least one acoustic signal of transmission. At least one acoustic signal of transmission is formed as an analogue signal. At the same time at least one acoustic signal of transmission may be formed as capable of separation.

FIELD: radio engineering, communication.

SUBSTANCE: result is achieved through a system for remote access to provider software, which comprises: at least one user device which is configured for electronic access to the provider software over the Internet; and electronic access to at least one client hardware; and at least one tunnel of a virtual private network (VPN) between said provider software and said at least one client hardware through said at least one user device and the Internet; wherein said user device is configured to perform the software function on said client hardware using said provider software.

EFFECT: providing a reliable and automated solution which allows clients to use provider software or hardware using web and VPN tunnelling based virtual computers.

12 cl, 2 dwg

Cross-reference to related application

This patent application claims the priority of provisional patent application U.S. No. 61/082578 filed July 22, 2008, entitled "Development, testing and demonstration of automation solutions using virtual computers based on the web and VPN tunneling, all disclosure of which is incorporated herein by reference.

The technical field

The present invention relates generally to Internet-based management software and/or hardware. More specifically, the invention covers the development, testing and demonstration of automation solutions using virtual computers based on the web and VPN (virtual private network) tunneling. The present invention is also directed to a new principle of maintaining different versions of the software and demo programs in a virtual database that can be accessed through the VPN tunnel.

Prior art

The number of subscribers and applications communication services increases dramatically in the past few decades. As the popularity of web-centric and Internet-centric devices is expanding also develop the underlying technologies and applications, providing communications is. This development captured several new technologies and applications of these technologies.

U.S. patent 6445920 (in the name of Matthias Pfundstein), all disclosure of which is incorporated herein by reference, discloses the installation of a virtual private network (VPN) in the mobile radio network (MRN), and the proposed equipment, which connects to the base station (BS) and controls the establishment and release of calls between mobile subscribers (MS1...MSX)assigned to the coverage area of base stations, and the database (HLR)connected to equipment that contains a set of subscriber data (DS) for each of the mobile subscribers with the first set of logical data LDS) to be registered as users of mobile radio communications. Each of some of these mobile subscribers (MS1, MS2, MS3) has a second set of logical data (LDS-VN) to be registered as subscribers of the virtual private network. Thus, in addition to the data set (LDS), which provides access to the mobile radio network (MRN), as such, the invention adds to the set of subscriber data in an existing database (HLR) additional data set (LDS-VN), which provides the mobile subscriber with access to a virtual private network (VPN). Essentially, it requires only the steps are executed in the field of software both the cookies mobile radio communications, while the installation of one or more virtual private networks can be performed in a simple way. Implementation of a smart grid that is superimposed on the network of mobile radio communication, can be omitted.

U.S. patent No. 6675067 (Steven J. Blad), all disclosure of which is incorporated herein by reference, discloses a system for remote monitoring of interacting machines. Data from machines is collected and transmitted by the machine to a remote server. In alternative embodiments, the implementation of multiple machines can be interconnected through a local area network LAN local processor unit CPU, which transmits data to a remote server, typically via the Internet. Combination with one or more remote machines and the Central site monitoring form a virtual private network (VPN). An optional feature provides for the sending of e-mail messages or warning messages of a different type from the remote server in response to identification of one or more predefined events, which the client must be notified immediately. Provides tools to view and query running against the database machine information provided so that authorized customers or other interested parties can Posmotri the performance data for individual or groups of interacting machines through a web page, the access may be via the Internet.

U.S. patent No. 6680922 (Jacob W. Jorgensen), all disclosure of which is incorporated herein by reference, discloses a packet-based wireless communication system "from the point to the set of points that includes a wireless base station associated with the first data network; one or more workstations hosts associated with the first data network; one or more subscriber stations equipment in the customer premises (CPE), which performs wireless communication with a wireless base station in a shared wireless bandwidth using a packet-oriented Protocol; and one or more subscriber workstations associated with each of the subscriber CPE stations over a second network; an allocator of resources, optimizing quality of service (QoS) end-user and allocating shared bandwidth among the subscriber CPE stations; a scheduler for scheduling the Internet Protocol (IP) over a shared wireless bandwidth. The scheduler includes prioritization to prioritize IP-flow priority-based virtual private network (VPN). The system may include an analyzer for analysis of the priorities of the virtual private network (VPN) for IP stream and the and prioritize all VPN IP flows. The system can include prioritization to prioritize IP stream based on one or more defined subscriber parameters. In this system, the VPN may include a scheme of coordination based on a table provided by the directory networking (DEN). VPN can be implemented using tunneling Protocol point-to-point (RTR). Also included is a way to implement the above.

U.S. patent No. 7409201 (Arturo Maria, et al.), all disclosure of which is incorporated herein by reference, discloses a system, method and machine-readable medium that provides for automation of the process of ensuring and maintaining Access Point Names (APN) for use in digital networks, such as GPRS network. Many network elements, including but not limited to, the GGSN table, router table, system, firewall, VPN tunnels, tables home register location (HLR)can be ensured and maintained through a centralized system. The invention integrates a centralized registration of security, support and access to events, as well as feedback provided from network elements to improve the safety, reporting and Troubleshooting. Thus, the invention ensures accuracy and reduces perhatiannya costs for the integration of mobile communication systems and digital networks.

Therefore, there is a need for improvement in the tunneling virtual private network (VPN) and, in particular, in the development, testing and demonstration of automation solutions using virtual computers based on the web and VPN tunneling.

The present invention provides for overcoming the problems existing in the prior art, and provides you with features of the invention development, testing and demonstration of automation solutions using virtual computers based on the web and VPN tunneling.

The purpose and essence of the invention

The invention describes a new development, testing and demonstration of automation solutions using virtual computers based on the web and VPN tunneling.

Therefore, the aim of the present invention is to provide development, testing and demonstration of automation solutions using virtual computers based on the web and VPN tunneling.

Another objective of the present invention is to provide a reliable solution for customers to use the software and/or hardware provider.

Another objective of the present invention is to provide a reliable virtual data center, which has a virtual library of different versions of the software is about ensuring provider.

Another objective of the present invention is to provide a reliable virtual data center, which has a virtual library of different versions of the software provider, which can be easily accessed through the Internet or the world wide web.

Therefore, in one aspect the present invention provides a system for remote access to the software provider, which includes the following steps:

(a) using at least one user device for electronic access to the software provider via the Internet;

(b) the use of the above at least one user device for electronic access to at least one client hardware tool;

(c) establishing at least one tunnel virtual private network (VPN) between these software provider and said at least one client hardware tool through the mentioned at least one user device and said Internet; and

(d) the resolution referred to the user device to perform the function of software on said client hardware means using the software provider.

In other aspects the e present invention provides the method for remote access to the software provider, moreover, the method comprises the steps:

(a) electronic access software provider over the Internet using at least one user device;

(b) electronic access to at least one client hardware means using the at least one user device;

(d) perform the functions of the software on said client hardware means using the software provider and said user device.

In another aspect of the present invention includes a device storing program readable by machine, material embodying a program of instructions executable by the machine to perform a method for remote access to the software provider, and the method comprises the steps:

(a) electronic access software provider over the Internet using at least one user device is istwa;

(b) electronic access to at least one client hardware means using the at least one user device;

(d) perform the functions of the software on said client hardware means using the software provider and said user device.

Brief description of drawings

Although the scope of the present invention is broader than any particular variant of implementation, followed by a detailed description of the preferred option for implementation in conjunction with the drawings. These drawings are only for purposes of illustration and are not to scale. Such reference positions are similar characteristics and components on the drawings. The invention may be better understood with reference to the detailed description in conjunction with drawings which show the following:

Figure 1 is an architectural diagram of a variant embodiment of the invention.

Figure 2 - detailed b is OK-scheme, describing some of the steps to implement the option of implementing the present invention.

Detailed description

The present invention mainly aims at the development, testing and demonstration of automation solutions using virtual computers based on the web and VPN tunneling.

When developing automation solutions provider for customers now also provides software clients or staff provider for sales and applications to provide customer support. This means that the software provider should be downloaded and executed on the local PC to view and use technology provider.

Method of providing software solutions for any specific application software and/or hardware requires time-consuming and sometimes requires staff support provider to help ensure the operation of the software. Time and money can be wasted on sending hardware and/or software on the client station. Also, in many cases, clients will feel frustrated when downloading large software packages on your computer resources is s, especially for trial use. Additionally, resources, sales and application provider may have difficulty in supporting their software current in accordance with the latest version. On the other hand, customer support sometimes requires older versions of the software that causes the need for constant load different versions of the software.

Using the present invention the virtual PC can be pre-loaded demo application, and different versions of software can be deployed on a centralized computer system (the server). Virtual PC can be accessed through the Internet or the world wide web using only a web browser (no software provider and/or hardware for the PC), making them available to anyone who has received permission from the provider. Additionally, the VPN tunnel can be configured between virtual PC and any other PC, which is connected to the Internet or the world wide web. This PC can be connected to the local hardware automation provider, such as, for example, programmable logic controller, allowing you to program and control the hardware through the software is rovider on virtual PC. Essentially, the present invention provides programmability, control or any software support automation system provider from any place and to any place on a global scale if it can be provided a connection to the Internet or the world wide web.

Figure 1 shows the architecture of 23 variants of implementation of the present invention. As shown in figure 1, using user PC 20 to use a web browser to connect to a virtual PC virtual center demo data or repository 32 via the Internet or world wide web (WWW) 22. The user PC 20 is also connected to client hardware 10, 12, 14. For some applications one or more of the client hardware 10, 12, 14 can be provided by your ISP. Virtual center 32 demo data is preferably supported by the provider using at least one server 24 and demo virtual machine 34. It is preferable that the virtual PC is pre-configured the correct software version and/or demonstration of the application provider. VPN tunnel 30 is then created using the software on the virtual PC and the local user PC 20. Local user PC 20 routes set the second traffic virtual PC in the local network, which contains hardware 12, 14 of the provider, such as, for example, a PLC (programmable logic controller) 12, 14 of the provider. This allows software running on virtual PC, to communicate with the local hardware 12, 14 of the provider. The present invention allows the user using the web browser to use hardware and/or software provider. The client, which it is desirable to use or access the virtual PC for your specific application, would have to either have a contract at a fixed price, or you would be billed for usage based on time or some mutually agreed contract between the client and the provider. For some applications, the user PC 20 would be connected with hardware 10 provider through at least one second NIC (network interface controller) in the local network. For other applications the user PC 20 would be connected to the Internet 22 via at least one NIC (network interface controller) internal access. Once the VPN tunnel is set, transmission from the user PC 20 to the virtual center 32 demo data and/or demo virtual machine 34 will be routed through the VPN to the local VLAN (in rtually local network).

Figure 2 shows a detailed block diagram 40 that describes some steps to implement the option of implementing the present invention. The user will launch the user PC 20 on the launch stage 41. At step 42, the user will connect the user PC 20 to the Internet or the world wide web 22 and from the local hardware 10, 12, 14. At step 43, the provider staff in a remote location will be assigned to the virtual PC to the user 20. At step 44, the user 20 will be logged in the virtual center 32 data and run virtual PC. The user 20 is then at step 45 to start the VPN tunnel 30 on virtual PC. At step 46, the user 20 starts the VPN tunnel 30 on the local PC 20. Then, in step 47, the user 20 will be able to configure the routing information of the network traffic. At step 48, the user 20 can now use hardware 12, 14 and/or the software provider. Once the user 20 has completed the necessary tasks, the user 20 will terminate the program or task at stage 49.

The user device 20 may be selected from the group consisting of a personal computer (PC) 20, a personal digital assistant (PDA) 20, the electronic device 20 and the mobile device 20. For many applications is predpochtitel the tion, user device 20 has at least one means of display, such as, for example, screen, web page buttons or input fields, etc. In most cases, the provider is at least one of the client hardware 12, 14.

The software provider is preferably in the virtual data center provider, however, for some applications, the software provider may be placed in the virtual data center to a third party. For many applications, the software provider is located on at least one server 24, a managed service provider, however, for some applications, the server 24 can be controlled by a third party provider.

The software provider, which is located in the virtual center 32 demo data or server 24 may be selected from the group consisting of software source version of the software intermediate version software updated versions of the software, the current version or any other version of the software. For most applications, the software provider is selected from a group consisting of software programming, software for diagnosis, software is about monitoring, demonstration software, security software or any other software.

Specialist in the art should understand that by using the present invention the provider only needs to place at least one version of the software on the virtual center 32 data or server 24, and any authorized for access, the user can access it at any time from any location globally. So any updates or version or "patches" (insert the program to correct or change) for this software can now be placed on the virtual center 32 data or server 24, without replacing any of the previous versions, and any user authorized to access the different versions, can be accessed at any time from any location globally. Since the software is now in a safe and secure location provider, user, or client no longer needs to have it on his user device 20 or on the client hardware 10, 12, 14 or store a copy of the software in your location or to support updates and/or patches. This can be very important when, in the example, ISP has installed hardware 10, 12 or 14, and, say, after 14 years there is a failure or required maintenance of these hardware. The client may or may not have the original software or the version that was installed on these specific hardware 10, 12 or 14. So now, using the present invention, the client can simply contact the provider and the provider may authorize the user to use the user device 20 to establish the VPN tunnel 30 and perform the necessary repairs or to provide maintenance. In this way neither the client nor the user does not need to worry about whether or not more specific software for a specific hardware or is still available updates or patches. This is also valid for any demo programs in which the provider may want to provide the user and/or client.

To ensure a secure connection between the user device 20 and the software provider, it is preferable that the user device 20 is authenticated by the provider before establishing at least one VPN tunnel 30. Similarly, to establish a secure soy is inania, it is preferable that at least one security software controls the electronic link between the software provider and at least one of the client hardware. It is preferable that the software provider has at least one means for associating an authorized operator of the at least one parameter with at least one VPN tunnel.

Although the present invention has been specifically described in connection with specific preferred embodiment, it is evident that many alternatives, modifications and variations will be obvious to a person skilled in the art in light of the preceding description. Therefore, it is assumed that the appended claims cover all such alternatives, modifications and variations as appropriate to the scope and essence of the present invention.

1. System for remote access software provider that contains
at least one user device is made with the possibility
electronic access software provider via the Internet and
electronic access to at least one client hardware tool; and
at least one tunnel virtual private network (VPN) is mentioned between software provider and said at least one client hardware tool through the mentioned at least one user device and the Internet;
moreover, the mentioned user device is configured to perform the function of software on said client hardware means using the software provider.

2. System for remote access software provider according to claim 1, in which the mentioned at least one user device is selected from the group consisting of a personal computer (PC), personal digital assistant (PDA), electronic devices and mobile devices.

3. System for remote access software provider according to claim 1, in which the mentioned software provider located in the virtual data center provider.

4. System for remote access software provider according to claim 1, in which the mentioned software provider is located on at least one server that is managed by the provider.

5. System for remote access software provider according to claim 1, in which the mentioned software provider selected from the group consisting of software source version of the software intermediate version software updated versions of the software and the current is version.

6. System for remote access software provider according to claim 1, in which the mentioned user device is authenticated referred provider before establishing at least one VPN tunnel.

7. System for remote access software provider according to claim 1, in which at least one security software controls the electronic connection between the mentioned software provider and said at least one client hardware item.

8. System for remote access software provider according to claim 1, in which the mentioned user device has at least one tool display.

9. System for remote access software provider according to claim 1, additionally containing at least one means for associating an authorized operator of the at least one parameter with said at least one VPN tunnel.

10. System for remote access software provider according to claim 1, in which the mentioned software provider selected from the group consisting of software programming, software diagnostics, monitoring software, dem is stratienko software and security software.

11. Method for remote access to the software provider, and the method comprises the steps
electronic access software provider over the Internet using at least one user device and
electronic access to at least one client hardware means using the at least one user device;
establishing at least one tunnel virtual private network (VPN) between these software provider and said at least one client hardware tool through the mentioned at least one user device and the Internet and
perform the functions of the software on said client hardware means using the software provider and said user device.

12. The storage device program, readable by machine, material embodying a program of instructions executable by the machine to perform a method for remote access to the software provider, and the said method comprises the steps
electronic access software provider over the Internet using at least one user is skogo device;
electronic access to at least one client hardware means using the at least one user device;
establishing at least one tunnel virtual private network (VPN) between these software provider and said at least one client hardware tool through the mentioned at least one user device and the Internet; and
perform the functions of the software on said client hardware means using the software provider and said user device.