Encryption of payload on narrow-band IP links
First Claim
1. A method of synchronizing encrypted data in an Internet Protocol based network, comprising the steps of:
- encrypting a data packet to be transmitted;
generating a sequence number associated with said encrypted data packet; and
transmitting said encrypted data packet together with said sequence number via an Internet Protocol based link.
1 Assignment
0 Petitions
Accused Products
Abstract
Method and apparatus for synchronizing the transmitting side and the receiving side in an IP network that uses a stream encryption algorithm are disclosed. A sequence number is introduced into the payload of each packet at the transmitting side and transmitted with the packets. Upon receipt at the receiving side, the sequence number is extracted from the payload and used to synchronize the receiving side to the transmitting side. An error detection mechanism is used to detect when the synchronization is lost and a recovery procedure is initiated. The length of the sequence number is made sufficiently long to cope with any jitter variations in the IP network. This sequence number length is dynamically adjustable based on the amount of jitter detected in the network.
-
Citations
18 Claims
-
1. A method of synchronizing encrypted data in an Internet Protocol based network, comprising the steps of:
-
encrypting a data packet to be transmitted;
generating a sequence number associated with said encrypted data packet; and
transmitting said encrypted data packet together with said sequence number via an Internet Protocol based link. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus for synchronizing encrypted data in an Internet Protocol based network, comprising:
-
an encryption/decryption module configured to encrypt a data packet to be transmitted;
a sequence number processor in said encryption/decryption module configured to generate a sequence number associated with said encrypted data packet; and
a transceiver module connected to said encryption/decryption module configured to transmit said encrypted data packet together with said sequence number via an Internet Protocol based link. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An apparatus for synchronizing encrypted data in an Internet Protocol based network, comprising:
-
an encryption/decryption module configured to encrypt a data packet to be transmitted;
a sequence number processor in said encryption/decryption module configured to generate a sequence number associated with said encrypted data packet;
a transceiver module connected to said encryption/decryption module configured to transmit said encrypted data packet together with said sequence number via an Internet Protocol based link, wherein said sequence number processor is further configured to extract a sequence number from a received encrypted data packet, and said encryption/decryption module is further configured to decrypt said encrypted data packet based on a value of said extracted sequence number; and
an error detection module configured to check said decrypted data packet for errors and to cause an error message to be sent if errors are detected in a predetermined number of data packets, said error detection module being further configured to initiate a data recovery procedure upon detecting that errors have occurred in said predetermined number of data packets, wherein said sequence number processor is further configured to reset said sequence number to an initial value after initiation of said data recovery procedure and to issue a sequence number reset notification message after said sequence number is reset.
-
Specification