Information security – Access control or authentication – Network
Reexamination Certificate
2003-03-19
2008-10-21
Vu, Kim (Department: 2135)
Information security
Access control or authentication
Network
C713S153000, C713S154000
Reexamination Certificate
active
07441267
ABSTRACT:
The present invention performs “flow control” based on the remaining encryption capacity of an encrypted outbound network interface link of a network routing device, such as a router or switch. As the encrypted link begins to run low on encryption key material, this invention begins to discard datagrams queued for transit across that link, in order to signal distant host computers that they should slow down the rate at which they are sending datagrams. The invention, which is particularly useful in cryptographically protected networks that run the TCP/IP protocol stack, allows fine-grained flow control of individual traffic classes because it can determine, for example, how various classes of data traffic (e.g., voice, video, TCP) should be ordered and transmitted through a network. Thus, the invention can be used to implement sophisticated flow control rules so as to give preferential treatment to certain people, departments or computers.
REFERENCES:
patent: 5459717 (1995-10-01), Mullan et al.
patent: 5915025 (1999-06-01), Taguchi et al.
patent: 6240514 (2001-05-01), Inoue et al.
patent: 6295361 (2001-09-01), Kadarsky et al.
patent: 6317831 (2001-11-01), King
patent: 6463068 (2002-10-01), Lin et al.
patent: 6463537 (2002-10-01), Tello
patent: 6510349 (2003-01-01), Schneck et al.
patent: 6578086 (2003-06-01), Regan et al.
patent: 6690798 (2004-02-01), Dent
patent: 6744774 (2004-06-01), Sharma
patent: 6850524 (2005-02-01), Troxel et al.
patent: 6895091 (2005-05-01), Elliott et al.
patent: 6967958 (2005-11-01), Ono et al.
patent: 6976087 (2005-12-01), Westfall et al.
patent: 6980659 (2005-12-01), Elliott
patent: 7006633 (2006-02-01), Reece
patent: 7068790 (2006-06-01), Elliott
patent: 7219223 (2007-05-01), Bacchus et al.
patent: 2001/0005885 (2001-06-01), Elgamal et al.
patent: 2003/0002674 (2003-01-01), Nambu et al.
patent: 2003/0149883 (2003-08-01), Hopkins et al.
patent: 2004/0120528 (2004-06-01), Elliott et al.
patent: 2004/0196808 (2004-10-01), Chaskar et al.
Perlman, Radia. Interconnections: Bridges, Routers, Switches and Internetworking Protocols (Second Edition). Chaps. 10, 12, 14,16, 17, and 18. Addison Wesley, 2000.
Stevens, W. Richard. TCP/IP Illustrated, vol. 1: The Protocols. Addison-Wesley, 1994.
Schneier, Bruce.Applied Cryptography: Protocols, Algorithms and Source Code in C(Second Edition). John Wiley & Sons, Inc., 1996.
Floyd, S., and Jacobson, V.,Random Early Detection gateways for Congestion Avoidance. V.1 N.4, Aug. 1993, p. 397-413. Abstract.
Braden B., Clark, D., Crowcroft, J., Davie, B., Deering, S., Estrin, D., Floyd, S., Jacobson, V., Minshall, G., Partridge, C., Peterson, L., Ramakrishnan, K., Shenker, S., Wroclawski, J., Zhang, L.Recommendations on Queue Management and Congestion Avoidance in the Internet. Apr. 1998.
Floyd, S., and Fall, K.Promoting the Use of End-to-End Congestion Control in the Internet. IEEE/ACM Transactions on Networking, vol. 7, No. 4, Aug. 1999.
Elloumi, O., and Afifi, H.,RED Algorithm in ATM Networks. IEEE Tech Report, Jun. 1997.
Lin, D. and Morris, R.,Dynamics of Random Early Detections. Proceedings of SIGCOMM '97. Sep. 1997.
Feng, W., Kandlur, D.,Saha, D., Shin, K.,Techniques for Eliminating Packet Loss in Congested TCP/IP Networks, U. Michigan CSE-TR-349-97, Nov. 1997.
Jacobson, V.,Notes on using RED for Queue Management and Congestion Avoidance. Nanog 13 Viewgraphs. Dearborn, MI. Jun. 1998.
Rosolen, V., Bonaventure, O., and Leduc, G.A RED Discard Strategy for ATM Networks and its Performance Evaluation with TCP/IP Traffic, Proceedings of the 6th Workshop on Performance Modelling and Evaluation of ATM Networks (IFIP ATM'98) Ilkley, UK, Jul. 1998.
Cisco IOS Software Releases 12.2: Configuring Weighted Random Early Detection, URL: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos—c/fqcprt3/qcfwred.pdf, Printed Jan. 10, 2003.
Fransorn, J.D., “Violations of a New Inequality for Classical Fields”, Johns Hopkins University, NTIS-NASA Publication, Goddard Space Flight Center, Workshop on Squeezed States and Uncertainty Relations, Feb. 1991, pp. 23-32.
BBN Technologies Corp.
Patel Nirav
Verizon Corporate Service Group Inc.
Vu Kim
LandOfFree
Method and apparatus for controlling the flow of data across... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for controlling the flow of data across..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for controlling the flow of data across... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4011144