Method and system for secure packet communication
First Claim
1. A method for processing a communication data item, said method comprising the steps of:
- dividing the communication data item into a plurality of unencrypted packets, each of said unencrypted packets having a packet header and plaintext data, the packet header of each of said unencrypted packets comprising an identifier field that includes a packet identifier, the packet identifier being identical for all of said unencrypted packets; and
generating an encrypted packet from each of said unencrypted packets by;
determining a vector identifier from the identical packet identifier, said vector identifier having an association with the identical packet identifier;
ascertaining an initial vector from the vector identifier; and
forming an encrypted packet header, said forming the encrypted packet header comprising inserting the vector identifier into a first portion of the packet header and encrypting a second portion of the packet header through use of an encryption key, said first and second portions of the packet header being different portions of the packet header, said encrypting the second portion of the packet header being implemented through use of the initial vector.
4 Assignments
0 Petitions
Accused Products
Abstract
A method for processing a communication data item. The communication data item is divided into at least two unencrypted packets to be encrypted. Each encrypted packet is generated from a corresponding unencrypted packet. Each unencrypted packet has a packet header and plaintext data. The packet header has an identifier field that includes a packet identifier. The packet identifier is identical for all unencrypted packets. Generating an encrypted packet for each unencrypted packet includes: determining a vector identifier from the identical packet identifier, wherein the vector identifier is associated with the identical packet identifier; ascertaining an initial vector from the vector identifier; and forming an encrypted packet header by inserting the vector identifier into a first portion of the packet header and encrypting a second portion of the packet header through use of the initial vector. The encrypted packets are subsequently decrypted and combined to reconstruct the communication data item.
-
Citations
20 Claims
-
1. A method for processing a communication data item, said method comprising the steps of:
-
dividing the communication data item into a plurality of unencrypted packets, each of said unencrypted packets having a packet header and plaintext data, the packet header of each of said unencrypted packets comprising an identifier field that includes a packet identifier, the packet identifier being identical for all of said unencrypted packets; and
generating an encrypted packet from each of said unencrypted packets by;
determining a vector identifier from the identical packet identifier, said vector identifier having an association with the identical packet identifier;
ascertaining an initial vector from the vector identifier; and
forming an encrypted packet header, said forming the encrypted packet header comprising inserting the vector identifier into a first portion of the packet header and encrypting a second portion of the packet header through use of an encryption key, said first and second portions of the packet header being different portions of the packet header, said encrypting the second portion of the packet header being implemented through use of the initial vector. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for processing a plurality of encrypted packets, said method comprising the steps of:
-
generating a decrypted packet from each encrypted packet, each of said encrypted packets having an encrypted packet header and encrypted data items, the encrypted packet header of each of said encrypted packets comprising an encrypted portion (E0) and an identifier field that includes a vector identifier, said vector identifier being identical for all of said encrypted packets, said encrypted packets having been previously derived from a communication data item that comprised unencrypted packets respectively corresponding to the encrypted packets, said generating comprising for each encrypted packet;
obtaining the vector identifier from the identifier field;
ascertaining an initial vector from the obtained vector identifier;
decrypting E0 to form a decrypted data item D0; and
performing an exclusive OR between D0 and the initial vector to form a decrypted packet header of the decrypted packet. - View Dependent Claims (17, 18, 19, 20)
-
Specification