Methods and protocols for intrusion-tolerant management of collaborative network groups

US 20040049676A1
Filed: 09/15/2003
Published: 03/11/2004
Est. Priority Date: 04/26/2001
Status: Abandoned Application

First Claim

Patent Images

1. A secure method of transmitting a message between a sender node and a recipient node within a network collaboration group, the sender and the recipient sharing a secret encryption key and an expected nonce value comprising:

generating a new nonce value known to the sender;

encrypting the message including the expected nonce value and the new nonce value, using the encryption key;

transmitting the encrypted message from the sender to the recipient; and

verifying, by the recipient, that the encrypted message includes the expected nonce value.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The inventive subject matter provides reliable methods and apparatus for secure communication within a network collaboration group including a VPN. Distribution of critical group data to member nodes (such as encryption keys for communication with other member nodes) is preferably handled by master nodes in a manner relatively resistant to misbehavior by current, past, or other nodes, and to outsider attacks such as replay attacks. A particular embodiment enables distribution of critical group data by master nodes to member nodes in a manner that offers confidentiality (the critical data cannot be read by eavesdropper), integrity (the receiving member node has evidence that the critical data has not been tampered with in transit), authenticity (the receiving member node has evidence that the critical data was sent by a master node), and freshness (the critical data is not a replay of a previous message). In an embodiment, communication of critical data between the master node and the member node may be encrypted with a session key. Preferably, in each round of communication between master and member, the transmitting node generates a new nonce value and embeds it in the encrypted communication, for use by the recipient in the next communication. This nonce value typically becomes the expected nonce, for purposes of the next communication. If the next communication does not contain the expected nonce value, then the communication may be readily identified and rejected by the recipient as a replay attack or otherwise illicit communication.

Citations

18 Claims

1. A secure method of transmitting a message between a sender node and a recipient node within a network collaboration group, the sender and the recipient sharing a secret encryption key and an expected nonce value comprising:
- generating a new nonce value known to the sender;
  
  encrypting the message including the expected nonce value and the new nonce value, using the encryption key;
  
  transmitting the encrypted message from the sender to the recipient; and
  
  verifying, by the recipient, that the encrypted message includes the expected nonce value.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, further comprising:
    - generating a second new nonce value, known to the recipient node;
      
      transmitting a secure response from the recipient to the sender by repeating the method of claim 1, but this time using the second new nonce value in place of the new nonce value and using the new nonce value in place of the expected nonce value.
  - 3. The method of claim 2, wherein the method is further repeated for one or more subsequent rounds of secure communication between the sender and the recipient, such that for each round the new nonce value of the previous message is used as the expected nonce value for the current message.
  - 4. The method of claim 1, wherein the network collaboration group is a virtual private network.
  - 5. The method of claim 1, wherein the sender is a key managing master node and the recipient is a member node of the collaboration group.
  - 6. The method of claim 1, wherein the recipient is a key-managing master node and the sender is a member node of the collaboration group.
  - 7. The method of claim 1, wherein the method is used with a key-managing master node in order to perform an authentication process for opening a collaboration group session with a new member node.
  - 8. The method of claim 7, wherein the method is used with the new member as the sender and the master node as the recipient, in order to initiate the authentication process.
  - 9. The method of claim 7, wherein the method is used with the master node as the sender in order to distribute a session encryption key from the master to the member.
  - 10. The method of claim 9, wherein a long-term password key is used as the encryption key in order to perform the authentication process, and the session key is used as the encryption key for one or more subsequent communications between the new member and the master.
  - 11. The method of claim 10, wherein the session key is revoked by the master upon receipt of a termination message from the member.
  - 12. The method of claim 1, further including receiving a copy of a prior message being transmitted as a replay attack, and rejecting the replay as illicit at least in part because the replay does not contain the current expected nonce value.

13. A system for managing communications within a network collaboration group, comprising:
- means for generating a new nonce value;
  
  means for incorporating an expected nonce value and the new nonce value in a message to be transmitted;
  
  means for encrypting the message;
  
  means for transmitting the encrypted message from a sender node of the group to a recipient node of the group; and
  
  means for verifying, by the recipient node, that the encrypted message includes the expected nonce value.
- View Dependent Claims (14, 15)
- - 14. The system of claim 13, wherein the means for incorporating are operable to use the new nonce value, contained in a most recent previous message from the sender to the recipient, as the expected nonce value in a current message from the recipient to the sender.
  - 15. The system of claim 13, wherein the network collaboration group is a virtual private network.

16. A data-carrying signal for transmitting information securely between a master node and a member node of a network collaboration group, the signal being encrypted using an encryption key shared by the master and the member, the signal comprising:
- the information to be transmitted;
  
  an expected nonce value known to the master and the member; and
  
  a new nonce value, different than the expected nonce, provided by a sender of the signal.
- View Dependent Claims (17)
- - 17. The data-carrying signal of claim 16, wherein the expected nonce value in the current transmission is obtained from the new nonce value contained in a most recent previous transmission from the sender to the recipient.

18. A method for transmitting secure messages between a master node and a member node of a network collaboration group comprising:
- encrypting-messages using a key shared by the master and the member, so as to protect confidentiality of the message; and
  
  embedding a plurality of updated nonce values within said encrypted messages so as to provide verifiable integrity, authenticity, and freshness for each of said messages.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cisco Systems, Inc.
Original Assignee
Cisco Systems, Inc.
Inventors
Saidi, Hassan, Dutertre, Bruno

Application Number

US10/089,941
Publication Number

US 20040049676A1
Time in Patent Office

Days
Field of Search
US Class Current

713/163
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/061   for key exchange, e.g. in p...

H04L 9/0833   involving conference or gro...

H04L 9/3226   using a predetermined code,...

Methods and protocols for intrusion-tolerant management of collaborative network groups

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and protocols for intrusion-tolerant management of collaborative network groups

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links