Information security – Access control or authentication – Network
Reexamination Certificate
2006-12-22
2010-11-16
Zand, Kambiz (Department: 2434)
Information security
Access control or authentication
Network
C726S001000, C726S013000, C726S014000
Reexamination Certificate
active
07836497
ABSTRACT:
A method and apparatus adapting a Virtual Router Redundancy Protocol (VRRP) between a set of physical SEGs that realize a V-SEG function towards a remote IPsec/IKE peer. In tandem with the VRRP, a new protocol, referred to herein as the IPsec/IKE SA Transfer Protocol (SATP), is introduced to exchange IKE and IPsec SA information between VRRP capable SEGs. SATP synchronizes all participating SEGs with respect to dynamic IPsec state information in near real time. Thus, in the event of a master VRRP SEG failure, one of the hot-standby SEGs takes over the V-SEG function. This allows the V-SEG function to remain functional despite the possible failure of one or more participating SEGs.
REFERENCES:
patent: 2002/0080752 (2002-06-01), Johansson et al.
patent: 2003/0191963 (2003-10-01), Balissat et al.
patent: 2007/0016947 (2007-01-01), Balissat et al.
patent: 2007/0169187 (2007-07-01), Balissat et al.
patent: 2007/0186281 (2007-08-01), McAlister
patent: 2008/0016550 (2008-01-01), McAlister
patent: 2008/0075088 (2008-03-01), Carrasco
patent: 2008/0155676 (2008-06-01), Johnson et al.
patent: 2008/0155677 (2008-06-01), Hossain et al.
patent: 2008/0155678 (2008-06-01), Ohkubo et al.
patent: 2008/0172582 (2008-07-01), Sinicrope et al.
patent: 2008/0192930 (2008-08-01), Balissat et al.
patent: 2008/0301797 (2008-12-01), Mathai et al.
Knight D. Weaver Ascend Communications S et al: “Virtual Router Redundancy—Protocol; draft-ietf-vrrp-spec-01.txt”, Jul. 28, 1997.
Kent K Seo BBN Technologies S: “Security Architecture for the Internet Protocol; rfc4301.txt”, Dec 1, 2005.
Devarapalli Nokia R Wakikawa Wide P Thubert Cisco V: “Local HA to HA protocol; draft-devarapalli-mip6-nemo-local-haha-01.txt”, Mar. 5, 2006.
Jahanzeb Faizan Hesham El-Rewini Southern Methodist University Mohammad Khalil Nortel Networks: “Virtual Home Agent Reliability Protocol (VHAR); draft-jfaizan-mipv6-vhar-01.txt”, Feb. 1, 2004.
R. Hott, “Timer Enhancements to Reduce Failover Times for the Virtual Router Redundancy Protocol for IPv4,” draft-ietf-vrrp-ipv4-timers-02.txt, Internet-Draft, Mar. 6, 2006.
C. Kaufman, “Internet Key Exchange (IKEv2) Protocol,” rfc4306.txt, Network Working Group, Request for Comments: 4306, Dec. 2005.
S. Kent, “IP Authentication Header,” rfc4302.txt, Network Working Group, Request for Comments: 4302, Dec. 2005.
S. Kent, “IP Encapsulating Security Payload (ESP),” rfc4303.txt, Network Working Group, Request for Comments: 4303, Dec. 2005.
S. Kent, et al., “Security Architecture for the Internet Protocol,” rfc4301.txt, Network Working Group. Request for Comments: 4301, Dec. 2005.
R. Hinden, “Virtual Router Redundancy Protocol for IPv6,” draft-ietf-vrrp-ipv6-spec-07.txt, Internet Draft, Sep. 28, 2004.
R. Hinden, “Virtual Router Redundancy Protocol (VRRP),” rfc3768.txt, Network Working Group, Request for Comments: 3768, Apr. 2004.
G. Huang, et al., “A Traffic-Based Method of Detecting Dead Internet Key Exchange (IKE) Peers,” rfc3706.txt, Network Working Group, Request for Comments: 3706, Feb. 2004.
Knight D. Weaver Ascend Communications S et al. Virtual Router Redundancy Protocol—Jul. 28, 1997, pp. 3-9; 21-23.
Devarapalli Knoia R. Wakikawa Wide P. Thurbert Cicso V: “Local Ha to HA Protocol”—Mar. 5, 2006—p. 3, pp. 6-7.
Jahanzeb Faizan Hesham El-Rewini Southern Methodist University Mohammad Khalil Nortel Networks: Virtual Home Agent Reliability Protocol (VHAR)—Feb. 1, 2004; pp. 4-7 p. 19.
Comen James
Hossain Mahmood
Bayou Yonas
Telefonaktiebolaget L M Ericsson (Publ)
Zand Kambiz
LandOfFree
Apparatus and method for resilient IP security/internet key... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Apparatus and method for resilient IP security/internet key..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Apparatus and method for resilient IP security/internet key... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4243637