Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
2011-04-05
2011-04-05
Chai, Longbit (Department: 2431)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
C713S152000, C713S153000, C713S168000, C713S169000, C713S170000, C726S034000, C726S004000, C726S005000, C726S006000, C726S007000
Reexamination Certificate
active
07921282
ABSTRACT:
A method, apparatus, and system are directed toward managing a Transmission Control Protocol/Internet Protocol (TCP/IP) handshake. A SYN-ACK cookie is determined based on a cryptographic operation using a secret key and at least one network characteristic. The SYN-ACK cookie is provided in a SYN message's field. The SYN message is sent from a client to a server. Another sequence number based on the received SYN-ACK cookie is included in a SYN-ACK message. The SYN-ACK message is sent to and received by the client. The other sequence number is validated based on the secret key to generate at least another network characteristic. A TCP/IP connection is established if the network characteristic matches the other network characteristic. In one embodiment, the component sending the SYN message may be a different component than the component receiving the SYN-ACK message. In this embodiment, the secret key may be shared between the two components.
REFERENCES:
patent: 6981014 (2005-12-01), Jayam et al.
patent: 7675854 (2010-03-01), Chen et al.
patent: 2007/0195792 (2007-08-01), Chen et al.
“Transmission Control Protocol—DARPA Internet Program Protocol Specification”, Sep. 1981, pp. 1-91, Information Sciences Institute, Marina del Rey, California, http://tools.ietf.org/html/rfc793 (accessed May 14, 2007).
Ramakrishnan, et al., “The Addition of Explicit Congestion Notification (ECN) to IP”, Sep. 2001, pp. 1-49, Network Working Group, http://www.apps.ietf.org/rfc/rfc3168.html (accessed May 14, 2007).
Stevens, “TCP Slow Start, Congestion Avoidance, Fast Retransmit, and Fast Recovery Algorithms”, Jan. 1997, pp. 1-5, Network Working Group, http://www.apps.ietf.org/rfc/rfc2001.html (accessed May 14, 2007).
Jacobson, V. et al, “TCP Extensions for High Performance,” Network Working Group, Request for Comments 1323, May 1992, 31 pages, http://www.ietf.org/rfc/rfc1323.txt?number=1323 (accessed Jan. 13, 2008).
Mukerji Arindum
Rothstein Jesse Abraham
Chai Longbit
F5 Networks, Inc.
Frommer & Lawrence & Haug LLP
Wiegand Jamie L.
LandOfFree
Using SYN-ACK cookies within a TCP/IP protocol does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Using SYN-ACK cookies within a TCP/IP protocol, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Using SYN-ACK cookies within a TCP/IP protocol will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2666876