Information security – Access control or authentication – Network
Reexamination Certificate
2005-07-12
2011-10-18
Chai, Longbit (Department: 2431)
Information security
Access control or authentication
Network
C726S003000, C726S004000, C726S005000, C726S006000, C726S014000, C713S168000, C713S169000, C713S170000, C713S171000, C713S172000
Reexamination Certificate
active
08042170
ABSTRACT:
In a communication session in which data flows with encrypted data packets pass through a monitoring intermediary for data traffic control. The encrypted data packets include SPIs (Secured Parameter Indexes) which are used to identify SAs (Security Associations) for data decryption. During the initial signaling process for the communication session, the nodes seeking the communication session include the SPIs in the signaling messages and send the signaling messages through the monitoring intermediary which in turn matches the SPIs of the signaling messages with the corresponding SPIs extracted from the data packets. In enforcing data traffic control, the monitoring intermediary allows data flows to pass through if comparison matches in the SPIs are found. Otherwise, the data flows are rejected.
REFERENCES:
patent: 5081678 (1992-01-01), Kaufman et al.
patent: 7120930 (2006-10-01), Maufer et al.
patent: 7539186 (2009-05-01), Aerrabotu et al.
patent: 7562393 (2009-07-01), Buddhikot et al.
patent: 7668145 (2010-02-01), Le et al.
patent: 2003/0018908 (2003-01-01), Merced et al.
patent: 2003/0060210 (2003-03-01), Ravishankar et al.
patent: 2003/0097584 (2003-05-01), Haukka et al.
patent: 2004/0008632 (2004-01-01), Hsu et al.
patent: 2004/0109459 (2004-06-01), Madour et al.
patent: 2004/0210766 (2004-10-01), Kroselberg
patent: 2005/0223228 (2005-10-01), Ogawa
patent: 1249980 (2002-10-01), None
patent: 1289227 (2003-03-01), None
patent: 2004180155 (2004-06-01), None
patent: 2005529554 (2005-09-01), None
patent: 100899960 (2009-05-01), None
patent: WO02056562 (2002-07-01), None
patent: 03085904 (2003-10-01), None
patent: WO 03/085904 (2003-10-01), None
patent: WO2004045159 (2004-05-01), None
Nenning Schulzrinne, Jonathan Rosenberg: “The Session initiation Protocol: Internet-Centric Signaling” IEEE Communications Magazine, ′Online! Oct. 2000, pp. 134-141, XP002352523.
International Search Report—PCT/US2005/025150—International Search Authority—European Patent Office—Nov. 22, 2005.
Schulzrinne, et al., “The Session Initiation Protocol: Internet-Centric Signaling”,IEEE Communication Magazine, XP002352523, Oct. 2000, pp. 134-141.
O. Egashira, “IPSec and ISAKMP Analysis Software—Utilised for VPN Equipment Interconnect Testing”, Interop Magazine (Softbank Publishing Ltd.), vol. 9, 9 (Nov. 1, 1999) pp. 139.
Written Opinion—PCT/US2005/025150, International Search Authority, European Patent Office, Nov. 22, 2005.
Y. Kobayashi, “Practical References ofVPN Service”, Computer & Network, (Ohmsha, Ltd.), vol. 21, 3 (Mar. 1, 2003), pp. 25-40.
Hsu Raymond Tah-Sheng
Mahendran Arungundram C.
Wang Jun
Chai Longbit
Ekwueme Kristine U.
QUALCOMM Incorporated
Tam Kam T.
LandOfFree
Bearer control of encrypted data flows in packet data... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Bearer control of encrypted data flows in packet data..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Bearer control of encrypted data flows in packet data... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4270701