4 HAT: Hypertext Address Translation

Table 1: URLs before and after HAT

URLs of intranet pages	URLs after HAT (Sent to the remote browser)
http://intranet.finance.example.com	https://awayweb.example.com/p/s/http%3a//intranet.finance.example.com
index.html	https://awayweb.example.com/p/s/http%3a//intranet.finance.example.com/index.html
sales/2001.html	https://awayweb.example.com/p/s/http%3a//intranet.finance.example.com/sales/2001.html
Same URL with URL encryption feature enabled	https://awayweb.example.com/p/s/P98jA(86a99976vd699a8dhn9m(dFUTFhtgYTF/X/X

The awayWEB system provides a secured central control point for all access to intranet services. The system enables all intranet services to be presented as a single, secured, web server on the Internet.

This is achieved through 'Hypertext Address Translation' (HAT). As each intranet request is serviced by the awayWEB system, the HTML content of each page is examined and every hypertext link is modified by the awayWEB system. The links are extracted and re-written so that every link on the page is a link to a location on the awayWEB system. No matter what link is chosen by the user, it points to the awayWEB system, not directly to any intranet site.

When the awayWEB system receives a request for a link, it re-translates the intranet link, checks the users' authorisation and fetches the correct content from the original intranet server. As this content is retrieved and forwarded to the client, the links are again translated.

All intranet URLs are translated to URLs on the awayWEB gateway, so that internal systems can share the security and encryption features through a single Internet connection.