×

SCALABLE REPLAY COUNTERS FOR NETWORK SECURITY

  • US 20130283347A1
  • Filed: 04/20/2012
  • Published: 10/24/2013
  • Est. Priority Date: 04/20/2012
  • Status: Active Grant
First Claim
Patent Images

1. A method, comprising:

  • maintaining, at an authenticator in a communication network, a persistent authenticator epoch value that the authenticator increments each time the authenticator restarts;

    maintaining, at the authenticator, a persistent per-supplicant value for each supplicant of the authenticator, each per-supplicant value set to a current value of the authenticator epoch value each time the corresponding supplicant establishes a new security association with the authenticator; and

    communicating at least one message from the authenticator to a particular supplicant, each message comprising a per-supplicant replay counter having a security association epoch counter and a message counter specific to the particular supplicant, wherein the security association epoch counter for each message is set as a difference between the authenticator epoch value and the per-supplicant value for the particular supplicant when the message is communicated, and wherein the message counter is is incremented for each message communicated.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×