SECURE TRANSPORT OF MULTICAST TRAFFIC
First Claim
1. A method of providing secure multicast transmission through a network, comprising:
- receiving a first join request from a first downstream router, the join request indicating a multicast group to be joined;
transmitting group keys to the first downstream router, wherein the group keys are based on at least the multicast group;
cryptographically processing a first packet using the group keys to generate an encapsulated payload;
appending a first header to the encapsulated payload to form a first encapsulated packet;
establishing a tunnel with the first downstream router based on the appended first header; and
transmitting the first encapsulated packet through the tunnel to the first downstream router.
0 Assignments
0 Petitions
Accused Products
Abstract
Secure tunneled multicast transmission and reception through a network is provided. A join request may be received from a second tunnel endpoint, the join request indicating a multicast group to be joined. Group keys may be transmitted to the second tunnel endpoint, where the group keys are based at least on the multicast group. A packet received at the first tunnel endpoint may be cryptographically processed to generate an encapsulated payload. A header may be appended to the encapsulated payload to form an encapsulated packet, wherein the header includes information associated with the second tunnel endpoint. A tunnel may be established between the first tunnel endpoint and the second tunnel endpoint based on the appended header. The encapsulated packet may be transmitted through the tunnel to the second tunnel endpoint. The second tunnel endpoint may receive the encapsulated packet. Cryptographic processing of the encapsulated packet may reveal the packet having a second header. The packet may then be forwarded on an interface toward at least one multicast recipient identified in the second header.
24 Citations
2 Claims
-
1. A method of providing secure multicast transmission through a network, comprising:
-
receiving a first join request from a first downstream router, the join request indicating a multicast group to be joined; transmitting group keys to the first downstream router, wherein the group keys are based on at least the multicast group; cryptographically processing a first packet using the group keys to generate an encapsulated payload; appending a first header to the encapsulated payload to form a first encapsulated packet; establishing a tunnel with the first downstream router based on the appended first header; and transmitting the first encapsulated packet through the tunnel to the first downstream router.
-
-
2-30. -30. (canceled)
Specification