Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Packet header designating cryptographically protected data
Reexamination Certificate
2011-04-05
2011-04-05
Zia, Syed A. (Department: 2431)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Packet header designating cryptographically protected data
C713S150000, C713S162000, C709S230000, C709S236000, C370S351000, C370S389000, C370S475000, C726S022000, C726S023000
Reexamination Certificate
active
07921285
ABSTRACT:
Embodiments of the invention reduce the probability of success of a DOS attack on a node receiving packets by decreasing the probability of random collisions of packets sent by a malicious user with those sent by honest users. The probability of random collisions may be reduced in one class of embodiments of the invention by supplementing the identification field of the IP header of each transmitted packet with at least one bit from another field of the header. The probability of random collisions may be reduced in another class of embodiments of the invention by ensuring that packets sent from a transmitting IPsec node to a receiving IPsec node are not fragmented.
REFERENCES:
patent: 6185208 (2001-02-01), Liao
patent: 6341129 (2002-01-01), Schroeder et al.
patent: 6438612 (2002-08-01), Ylonen et al.
patent: 6650636 (2003-11-01), Bradshaw et al.
patent: 6665292 (2003-12-01), Bradshaw et al.
patent: 6684329 (2004-01-01), Epstein et al.
patent: 6714985 (2004-03-01), Malagrino et al.
patent: 6781992 (2004-08-01), Rana et al.
patent: 7027443 (2006-04-01), Nichols et al.
patent: 7061914 (2006-06-01), Mankins
patent: 7062782 (2006-06-01), Stone et al.
patent: 7065086 (2006-06-01), Basso et al.
patent: 7277963 (2007-10-01), Dolson et al.
patent: 7356599 (2008-04-01), Pochon et al.
patent: 7426534 (2008-09-01), Challenger et al.
patent: 7487255 (2009-02-01), Roeder et al.
patent: 7509393 (2009-03-01), Agarwalla et al.
patent: 7519070 (2009-04-01), Van Lunteren
patent: 7602809 (2009-10-01), Henriques
patent: 7653864 (2010-01-01), Schroeder
patent: 7697524 (2010-04-01), Subramanian et al.
patent: 7710893 (2010-05-01), Yoon et al.
patent: 7724776 (2010-05-01), Julien et al.
patent: 7730154 (2010-06-01), Agarwalla et al.
patent: 7739497 (2010-06-01), Fink et al.
patent: 7792147 (2010-09-01), Hernacki
patent: 2003/0039249 (2003-02-01), Basso et al.
patent: 2003/0048793 (2003-03-01), Pochon et al.
patent: 2003/0135616 (2003-07-01), Carrico et al.
patent: 2004/0093521 (2004-05-01), Hamadeh et al.
patent: 2004/0215976 (2004-10-01), Jain
patent: 2004/0243782 (2004-12-01), Mankins
patent: 2005/0220017 (2005-10-01), Brand et al.
patent: 2006/0185010 (2006-08-01), Sultan
patent: 2006/0218390 (2006-09-01), Loughran et al.
patent: 2006/0262808 (2006-11-01), Lin et al.
patent: 2007/0237157 (2007-10-01), Frank et al.
patent: 2008/0028467 (2008-01-01), Kommareddy et al.
Information Sciences Institute, “Internet Protocol; DARPA Internet Program Protocol Specification” RFC 791, Defense Advanced Research Projects Agency (Sep. 1981).
S. Kent et al., “Security Architecture for the Internet Protocol” RFC 2401, network Working Group (Nov. 1998).
S. Kent et al., “IP Authentication Header” RFC 2402, Network Working Group (Nov. 1998).
C. Madson et al., “The Use of HMAC-MD5-96 within ESP and AH” RFC 2403, Network Working Group (Nov. 1998).
C. Madson, “The Use of HMAC-SHA-1-96 within ESP and AH” RFC 2404, Network Working Group (Nov. 1998).
C. Madson et al., “The ESP DES-CBC Cipher Algorith with Explicit IV” RFC 2405, Network Working Group (Nov. 1998).
S. Kent et al., “IP Encapsulating Security Payload (ESP)” RFC 2406, Network Working Group (Nov. 1998.)
D. Piper, “The Internet IP Security Domain of Interpretation for ISAKMP” RFC 2407, Network Working Group (Nov. 1998).
D. Maughan et al., “Internet Security Association and Key Management Protocol (ISAKMP)” RFC 2408, Network Working Group (Nov. 1998).
D. Harkins et al., “The Internet Key Exchange (IKE)” RFC 2409, Network Working Group (Nov. 1998).
R. Glenn et al., “The NULL Encryption Algorithm and its Use with IPsec” RFC 2410, Network Working Group (Nov. 1998).
R. Thayer et al., “IP Security Document Roadmap” RFC 2411, Network Working Group (Nov. 1998).
H. Orman, “The Oakley Key Determination Protocol” RFC 2412, Network Working Group (Nov. 1998).
Mankins David Patrick
Milliken Walter Clark
Partridge Craig
Raytheon BBN Technologies Corp.
Verizon Corporate Services Group Inc.
Zia Syed A.
LandOfFree
Means of mitigating denial of service attacks on IP... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Means of mitigating denial of service attacks on IP..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Means of mitigating denial of service attacks on IP... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2676368