Apparatus, system and method for validating integrity of transmitted data
First Claim
1. A method comprising:
- selecting a fixed length segment of a continuous decryption key stream based on a received session count of a data packet; and
decrypting a payload of the data packet by applying a portion of the fixed length segment to the data packet.
6 Assignments
0 Petitions
Accused Products
Abstract
An apparatus, system and method maintain synchronization of an encryption key stream at the transmitter to a decryption key stream at a receiver. The transmitter applies a portion of a fixed segment of the continuous encryption key stream to data to form an encrypted payload. At least a portion of a session count is combined with the encrypted payload to form an encrypted data packet. The receiver decrypts the encrypted data packet by applying a portion of a current fixed segment of a continuous decryption key stream to the encrypted payload if the difference between a received session count and locally generated session count is less than a threshold. Otherwise, the packet is discarded and the system is reset. Since fixed length segments of the encryption key streams are dedicated to each packet, synchronization of the key streams is maintained even if synchronization for a particular packet is lost.
-
Citations
53 Claims
-
1. A method comprising:
-
selecting a fixed length segment of a continuous decryption key stream based on a received session count of a data packet; and
decrypting a payload of the data packet by applying a portion of the fixed length segment to the data packet. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method of generating an encrypted data packet, the method comprising:
-
selecting a fixed length segment of a continuous encryption key stream;
applying a portion of the fixed length segment to data to form an encrypted payload;
generating a session count based in accordance with the fixed length segment; and
combining the encrypted payload and the at least a portion of the session count to form an encrypted data packet. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. A receiver comprising:
-
a session count evaluator configured to determine if a difference between a received session count within a received encrypted data packet and a locally generated session count is less than a threshold; and
a decryption engine configured to decrypt a payload of the received encrypted data packet by applying a portion of a current fixed length segment of a continuous decryption key stream to the data packet if the difference is less than the threshold. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40)
-
-
41. A transmitter configured to generate an encrypted data packet, the transmitter comprising:
-
an encryption engine configured to apply a portion of a fixed length segment of a continuous encryption key stream to data to form an encrypted payload;
a session count generator configured to generate a packet number in accordance with the fixed length segment, the encrypted data packet comprising the encrypted payload and at least a portion of the session count. - View Dependent Claims (42, 43, 44, 45, 46, 47)
-
-
48. A system comprising:
-
a transmitter configured to generate an encrypted data packet, the transmitter comprising;
an encryption engine configured to apply a portion of a fixed length segment of a continuous encryption key stream to data to form an encrypted payload;
a session count generator configured to generate a session count in accordance with the fixed length segment;
the encrypted data packet comprising the encrypted payload and at least a portion of the session count; and
a receiver configured to receive the encrypted data packet, the receiver comprising;
a session count evaluator configured to determine if a difference between a received session count within the encrypted data packet and a locally generated session count is less than a threshold; and
a decryption engine configured to decrypt the encrypted payload by applying a portion of a current fixed length segment of a continuous decryption key stream to the data packet if the difference is less than the threshold.
-
-
49. A method comprising:
-
receiving a data packet through a communication channel;
the data packet comprising at least a portion of a session count;
selecting a fixed length segment of a continuous decryption key stream based on the session count; and
applying a portion of the fixed length segment by performing a bit per bit streaming encryption to decrypt a payload of the data packet. - View Dependent Claims (50, 51, 52)
-
-
53. A method of generating an encrypted data packet, the method comprising:
-
selecting a fixed length segment of a continuous encryption key stream;
applying a portion of the fixed length segment to data by performing a bit per bit streaming encryption process to form an encrypted payload;
generating a session count in accordance with the fixed length segment; and
combining the encrypted payload and the at least a portion of the session count to form an encrypted data packet.
-
Specification