SYSTEM AND METHOD FOR PROVIDING UNIFIED TRANSPORT AND SECURITY PROTOCOLS
First Claim
1. A system for providing unified transport and security protocols, comprising:
- a memory configured to store a first access filter value uniquely calculated for one requester device, wherein the first access filter value includes a hash value calculated from one or more randomly generated dynamic values using one or more predetermined hash functions; and
responder logic configured to execute on a responder device, wherein executing the responder logic on the responder device causes the responder device to;
transmit the one or more randomly generated dynamic values to the requester device, wherein the requester device calculates a hash value from the one or more randomly generated dynamic values using the predetermined hash functions;
receive a first message frame from the requester device through a network interface coupled to a network, wherein the first message frame includes the hash value calculated by the requester device and one or more dynamic values randomly generated at the requester device;
authenticate the requester device in response to the hash value included in the first message frame matching the first access filter value stored in the memory;
calculate a second access filter value from the dynamic values randomly generated at the requester device using the predetermined hash functions; and
transmit a second message frame that includes the second access filter value to the requester device through the network interface, wherein the requester device authenticates the responder device in response to the second access filter value included in the second message frame matching a value generated from the randomly generated dynamic values included in the first message frame received from the requester device.
1 Assignment
0 Petitions
Accused Products
Abstract
The system and method described herein may provide unified transport and security protocols. In particular, the unified transport and security protocols may include a Secure Frame Layer transport and security protocol that includes stages for initially configuring a requester device and a responder device, identifying the requester device and the responder device to one another, and authenticating message frames communicated between the requester device and the responder device. Additionally, the unified transport and security protocols may further include a Secure Persistent User Datagram Protocol that includes modes for processing message frames received at the requester device and the responder device, recovering the requester device in response to packet loss, retransmitting lost packets sent between the requester device and the responder device, and updating location information for the requester device to restore a communications session between the requester device and the responder device.
98 Citations
32 Claims
-
1. A system for providing unified transport and security protocols, comprising:
-
a memory configured to store a first access filter value uniquely calculated for one requester device, wherein the first access filter value includes a hash value calculated from one or more randomly generated dynamic values using one or more predetermined hash functions; and responder logic configured to execute on a responder device, wherein executing the responder logic on the responder device causes the responder device to; transmit the one or more randomly generated dynamic values to the requester device, wherein the requester device calculates a hash value from the one or more randomly generated dynamic values using the predetermined hash functions; receive a first message frame from the requester device through a network interface coupled to a network, wherein the first message frame includes the hash value calculated by the requester device and one or more dynamic values randomly generated at the requester device; authenticate the requester device in response to the hash value included in the first message frame matching the first access filter value stored in the memory; calculate a second access filter value from the dynamic values randomly generated at the requester device using the predetermined hash functions; and transmit a second message frame that includes the second access filter value to the requester device through the network interface, wherein the requester device authenticates the responder device in response to the second access filter value included in the second message frame matching a value generated from the randomly generated dynamic values included in the first message frame received from the requester device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for providing unified transport and security protocols, comprising:
-
a memory configured to store a master key uniquely calculated for one requester device using one or more predetermined hash functions, wherein seeds to the predetermined hash functions include one or more dynamic values randomly generated at a responder device and login information for a legitimate user of a requester device; and requester logic configured to execute on the requester device, wherein executing the requester logic on the requester device causes the requester device to; initiate a login session at the requester device, wherein the login session displays an interface for entering login information associated with a user of the requester device; receive the login information associated with the user of the requester device through the interface displayed during the login session; calculate a local master key at the requester device using the predetermined hash functions, wherein seeds to the predetermined hash functions include the one or more randomly generated dynamic values stored in the memory and the login information received through the login session interface; and establish a connection with the responder device in response to the local master key matching the master key stored in the memory. - View Dependent Claims (10, 11, 12)
-
-
13. A system for providing unified transport and security protocols, comprising:
-
a memory configured to store one or more randomly generated dynamic values received from a responder device; requester logic configured to execute on a requester device, wherein executing the requester logic on the requester device causes the requester device to; calculate a hash value from the one or more randomly generated dynamic values using one or more predetermined hash functions; transmit a message frame to the responder device through a network interface coupled to a network, wherein the message frame includes the hash value calculated by the requester device; and retransmit the message frame to the responder device in response to determining that one or more predetermined conditions have been satisfied. - View Dependent Claims (14, 15, 16)
-
-
17. A method for providing unified transport and security protocols, comprising:
-
storing, at a responder device, a first access filter value uniquely calculated for one requester device in a memory, wherein the first access filter value includes a hash value calculated from one or more randomly generated dynamic values using one or more predetermined hash functions; and transmitting, from the responder device, the one or more randomly generated dynamic values to the requester device, wherein the requester device calculates a hash value from the one or more randomly generated dynamic values using the predetermined hash functions; receiving, at the responder device, a first message frame from the requester device through a network interface coupled to a network, wherein the first message frame includes the hash value calculated by the requester device and one or more dynamic values randomly generated at the requester device; authenticating the requester device in response to the responder device determining that the hash value included in the first message frame matches the first access filter value stored in the memory; calculating, at the responder device, a second access filter value from the dynamic values randomly generated at the requester device, wherein the responder device calculates the second access filter value using the predetermined hash functions; and transmitting, from the responder device, a second message frame that includes the second access filter value to the requester device, wherein the requester device authenticates the responder device in response to the second access filter value included in the second message frame matching a value generated from the randomly generated dynamic values included in the first message frame received from the requester device. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A method for providing unified transport and security protocols, comprising:
-
storing, at a requester device, a master key uniquely calculated for one requester device in a memory, wherein the master key includes a hash value generated at a responder device using one or more predetermined hash functions, and wherein seeds to the predetermined hash functions include one or more dynamic values randomly generated at the responder device and login information for a legitimate user of the requester device; initiating, at the requester device, a login session that displays an interface for entering login information associated with a user of the requester device; receiving, at the requester device, the login information associated with the user of the requester device through the interface displayed during the login session; calculating, at the requester device, a local master key using the predetermined hash functions, wherein seeds to the predetermined hash functions include the one or more randomly generated dynamic values stored in the memory and the login information received through the login session interface; and establishing, from the requester device, a connection with the responder device in response to the local master key matching the master key stored in the memory. - View Dependent Claims (26, 27, 28)
-
-
29. A method for providing unified transport and security protocols, comprising:
-
storing, at a requester device, one or more randomly generated dynamic values received from a responder device; calculating, at the requester device, a hash value from the one or more randomly generated dynamic values using one or more predetermined hash functions; transmitting, from the requester device, a message frame to the responder device through a network interface coupled to a network, wherein the message frame includes the hash value calculated by the requester device; and retransmitting, from the requester device, the message frame to the responder device in response to determining that one or more predetermined conditions have been satisfied. - View Dependent Claims (30, 31, 32)
-
Specification