Method and system for IPSec security for IPP-USB data
First Claim
1. A method of providing security for data being transferred over a Universal Serial Bus (USB) connection, the method comprising:
- setting an IPsec policy configuration on a host device and a client device, the IPsec policy configuration including a first loopback interface and an IP address for the host device and a second loopback interface and an IP address for the client device;
sending an IP packet to the first loopback interface on the host device, wherein the first loopback interface configures the packet to be routed to the second loopback interface;
sending the IP packet from the first loopback interface to an IPsec module on the host device for encryption pursuant to IPsec protocol;
filtering the encrypted packet received from the first loopback interface on the host device and configuring the encrypted packet to be sent via USB protocol over the USB connection to the client device from the host device;
sending the encrypted packet from the host device to the client device over the USB connection;
injecting the encrypted packet into the second loopback interface on the client device;
sending the encrypted packet from the second loopback interface on the client device to the IPsec module on the client device for decryption; and
sending the decrypted packet to the second loopback interface on the client device, wherein the packet is received on the client device.
1 Assignment
0 Petitions
Accused Products
Abstract
A method of providing security for data being transferred over a Universal Serial Bus (USB) connection, the method comprising: setting an IPsec policy configuration on a host device hand a client device; sending a packet to a first loopback interface on the host device, wherein the first loopback interface configures the packet to be routed to a second loopback interface on the client device; sending the packet from the first loopback interface to an IPsec module for encryption; filtering the packet received from first loopback interface; sending the packet to the client device over the USB connection; injecting the packet into the second loopback interface; sending the packet from the second loopback interface on the client device to the IPsec module on the client device for decryption; and sending the decrypted packet to the second loopback interface on the device application, wherein the packet is received on the client device.
15 Citations
20 Claims
-
1. A method of providing security for data being transferred over a Universal Serial Bus (USB) connection, the method comprising:
-
setting an IPsec policy configuration on a host device and a client device, the IPsec policy configuration including a first loopback interface and an IP address for the host device and a second loopback interface and an IP address for the client device; sending an IP packet to the first loopback interface on the host device, wherein the first loopback interface configures the packet to be routed to the second loopback interface; sending the IP packet from the first loopback interface to an IPsec module on the host device for encryption pursuant to IPsec protocol; filtering the encrypted packet received from the first loopback interface on the host device and configuring the encrypted packet to be sent via USB protocol over the USB connection to the client device from the host device; sending the encrypted packet from the host device to the client device over the USB connection; injecting the encrypted packet into the second loopback interface on the client device; sending the encrypted packet from the second loopback interface on the client device to the IPsec module on the client device for decryption; and sending the decrypted packet to the second loopback interface on the client device, wherein the packet is received on the client device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer readable medium containing a computer program having computer readable code embodied to carry out a method of providing security for data being transferred over a Universal Serial Bus (USB) connection, the method comprising:
-
setting an IPsec policy configuration on a host device, the IPsec policy configuration including a first loopback interface and an IP address for the host device; sending an IP packet to the first loopback interface on the host device, wherein the first loopback interface configures the packet to be routed to a second loopback interface on a client device, wherein the second loopback interface on the client device is configured to decrypt the packet; sending the packet from the first loopback interface to an IPsec module on the host device for encryption pursuant to IPsec protocol; filtering the encrypted packet received from first loopback interface on the host device and configuring the encrypted packet to be sent via USB protocol over the USB connection to the client device from the host device; and sending the encrypted packet to the client device over the USB connection. - View Dependent Claims (9, 10, 11, 19)
-
-
12. A non-transitory computer readable medium containing a computer program having computer readable code embodied to carry out a method of providing security for data being transferred over a Universal Serial Bus (USB) connection, the method comprising:
-
setting an IPsec policy configuration on a client device, the IPsec policy configuration including a second loopback interface and an IP address for the client device; receiving an encrypted packet on the client device over the USB connection from a host device, the encrypted packet encrypted on the host device pursuant to IPsec protocol and configured via USB protocol to be sent over the USB connection to the client device; injecting the encrypted packet into the second loopback interface on the client device; sending the encrypted packet from the second loopback interface on the client device to the IPsec module on the client device for decryption; and sending the decrypted packet to the second loopback interface on the client device, wherein the decrypted packet is received on the client device. - View Dependent Claims (20)
-
-
13. A system for providing security for data being transferred over a Universal Serial Bus (USB) connection, the system comprising:
-
a USB connection; a host device, the host device having a host application configured with an IPsec policy including a first loopback interface and an IP address for the host device; and a client device, the client device having a device application configured with the IPsec policy including a second loopback interface and an IP address for the client device, and wherein the host device and the client device are configured to; send an IP packet to the first loopback interface on the host device, wherein the first loopback interface configures the packet to be routed to the second loopback interface; send the packet from the first loopback interface to an IPsec module on the host device for encryption pursuant to IPsec protocol; filter the encrypted packet received from the first loopback interface on the host device and configure the encrypted packet to be sent via USB protocol over the USB connection to the client device from the host device; send the encrypted packet to the client device over the USB connection; inject the encrypted packet into the second loopback interface on the client device; send the encrypted packet from the second loopback interface on the client device to the IPsec module on the client device for decryption; and send the decrypted packet to the second loopback interface on the device application, wherein the packet is received on the client device. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification