Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Packet header designating cryptographically protected data
Reexamination Certificate
2005-08-30
2005-08-30
Morse, Gregory (Department: 2136)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Packet header designating cryptographically protected data
C713S153000, C713S154000, C713S155000, C713S161000, C709S223000, C709S229000
Reexamination Certificate
active
06938155
ABSTRACT:
A system and method for providing multiple virtual private networks from a computer system. The computer system communicates with a remote computer system in order to allow encrypted data traffic to flow between the respective systems. Two phases are used to authenticate the computer systems to one another. During the first phase, digital certificates or pre-shared keys are used to authenticate the computer systems. A phase1ID rules list contains authentication rules for local-remote computer pairs. During the second phase, a hash value is used to authenticate the computer systems and a security association payload is created. The remote system's IP address is used for connecting. The phase1ID rules list corresponds to one or more phase2ID rules lists. If the remote ID is not found in the phase2ID rules list, a default rule is used based upon the phase1ID rules list.
REFERENCES:
patent: 5657390 (1997-08-01), Elgamal et al.
patent: 5671279 (1997-09-01), Elgamal
patent: 5677955 (1997-10-01), Doggett et al.
patent: 5903882 (1999-05-01), Asay et al.
patent: 5922074 (1999-07-01), Richard et al.
patent: 5950195 (1999-09-01), Stockwell et al.
patent: 5983350 (1999-11-01), Minear et al.
patent: 6202157 (2001-03-01), Brownlie et al.
patent: 6289450 (2001-09-01), Pensak et al.
patent: 6618806 (2003-09-01), Brown et al.
patent: 2002/0099668 (2002-07-01), Perlman
Wu, C.L., et al, “IPSec/PHIL (Packet Header Information List): Design, Implementation, and Evaluation”, NC State University, 2000, entire document, http://seclab.cs.ucdavis.edu/papers/314-PHIL.pdf.
Iyer, P. et al, “Scalable Deployment of IPsec in Corporate Intranets”, Intel Architecture Labs, 2000, entire document, www.dell.com/downloads/global/solutions/ipsec_dep_ial_122.pdf.
D'Sa Ajit Clarence
Fiveash William Alton
Genty Denise Marie
Venkataraman Guha Prasad
Wilson Jacqueline Hegedus
Baum Ronald
Leeuwen Joseph T. Van
Morse Gregory
Rodriguez Herman
Van Leeuwen & Van Leeuwen
LandOfFree
System and method for multiple virtual private network... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for multiple virtual private network..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for multiple virtual private network... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3462885