Information security – Access control or authentication – Network
Reexamination Certificate
2005-10-12
2010-06-29
Abrishamkar, Kaveh (Department: 2431)
Information security
Access control or authentication
Network
C726S004000, C726S022000, C726S023000, C713S168000, C713S171000, C713S176000
Reexamination Certificate
active
07748034
ABSTRACT:
A mechanism for providing strong anti-replay protection at a security gateway in a network for protection against an attacker duplicating encrypted packets. The mechanism assigns a unique sequence number to each encrypted packet and a time stamp. A receiving security gateway rejects packets that have a duplicative sequence number or that is too old to protect itself against replay attacks. Each security gateway checks off the sequence numbers as they are received knowing that the sending security gateway assigns sequence numbers in an increasing order. The receiving security gateway remembers the value of the highest sequence number that it has already seen as well as up to N additional sequence numbers. Any packet with a duplicative sequence number is discarded. In addition to the sequence number, each packet also has an associated time stamp that corresponds to an epoch during which it should be received. If the packet is received after the epoch has expired, the packet is rejected.
REFERENCES:
patent: 6851054 (2005-02-01), Wheeler et al.
patent: 7139916 (2006-11-01), Billingsley et al.
patent: 7313816 (2007-12-01), Sinha et al.
patent: 7370211 (2008-05-01), Rindborg et al.
patent: 2002/0170053 (2002-11-01), Peterka et al.
patent: 2003/0067921 (2003-04-01), Sivalingham
patent: 2004/0066935 (2004-04-01), Marino
patent: 2004/0205332 (2004-10-01), Bouchard et al.
patent: 2004/0215753 (2004-10-01), Chan et al.
patent: 2010/0023762 (2010-01-01), Kailash et al.
The Internet Society, “MIKEY: Multimedia Internet KEYing”, “Replay Handling and Timestamp Usage” (Section 5.4), Copyright © The Internet Society (2004), 62 pages.
Fluhrer Scott Roy
Weis Brian E.
Abrishamkar Kaveh
Cisco Technology Inc.
Trellis IP Law Group, PC
LandOfFree
Strong anti-replay protection for IP traffic sent point to... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Strong anti-replay protection for IP traffic sent point to..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Strong anti-replay protection for IP traffic sent point to... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4222195