TWO FACTOR AUTHENTICATION OF ICR TRANSPORT AND PAYLOAD FOR INTERCHASSIS REDUNDANCY
First Claim
1. A method in a first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, the method comprising:
- in response to determining to transmit an ICR message to the second network device, generating the ICR message by;
generating a second authentication digest, wherein the second authentication digest is used by the second network device to perform a second level authentication of the ICR message,generating a first authentication digest, wherein the first authentication digest is used by the second network device to perform a first level authentication of the ICR message, andincluding the first authentication digest and the second authentication digest in the ICR message; and
transmitting the ICR message that includes the first authentication digest and the second authentication digest to the second network device.
1 Assignment
0 Petitions
Accused Products
Abstract
Exemplary methods for performing authentication by a first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, includes in response to determining to transmit an ICR message to the second network device, generating the ICR message by generating a first and second authentication digest. In one embodiment, the methods include encrypting a payload of the ICR message, and transmitting the ICR message that includes the first and second authentication digest to the second network device. In another aspect of the invention, the methods include receiving an ICR message from the second network device and performing a first level authentication of the received ICR message. The methods further include in response to determining the first level authentication is successful, performing a second level authentication of the received ICR message.
-
Citations
39 Claims
-
1. A method in a first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, the method comprising:
-
in response to determining to transmit an ICR message to the second network device, generating the ICR message by; generating a second authentication digest, wherein the second authentication digest is used by the second network device to perform a second level authentication of the ICR message, generating a first authentication digest, wherein the first authentication digest is used by the second network device to perform a first level authentication of the ICR message, and including the first authentication digest and the second authentication digest in the ICR message; and transmitting the ICR message that includes the first authentication digest and the second authentication digest to the second network device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, the first network device comprising:
-
a set of one or more processors; and a machine-readable storage medium containing instructions, which when executed by the set of one or more processors, cause the first network device to in response to determining to transmit an ICR message to the second network device; generate a second authentication digest, wherein the second authentication digest is used by the second network device to perform a second level authentication of the ICR message, generate a first authentication digest, wherein the first authentication digest is used by the second network device to perform a first level authentication of the ICR message, and include the first authentication digest and the second authentication digest in the ICR message; and transmit the ICR message that includes the first authentication digest and the second authentication digest to the second network device. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium having computer instructions stored therein, which when executed by a processor of a first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, cause the processor to perform operations comprising:
-
in response to determining to transmit an ICR message to the second network device, generating the ICR message by; generating a second authentication digest, wherein the second authentication digest is used by the second network device to perform a second level authentication of the ICR message, generating a first authentication digest, wherein the first authentication digest is used by the second network device to perform a first level authentication of the ICR message, and including the first authentication digest and the second authentication digest in the ICR message; and transmitting the ICR message that includes the first authentication digest and the second authentication digest to the second network device. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
-
22. A method in a first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, the method comprising:
-
receiving an ICR message from the second network device; performing a first level authentication of the received ICR message based on a first authentication digest included in the received ICR message; and in response to determining the first level authentication is successful, performing a second level authentication of the received ICR message based on a second authentication digest included in the received ICR message. - View Dependent Claims (23, 24, 25, 26, 27)
-
-
28. A first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, the first network device comprising:
-
a set of one or more processors; and a machine-readable storage medium containing instructions, which when executed by the set of one or more processors, cause the first network device to receive an ICR message from the second network device; perform a first level authentication of the received ICR message based on a first authentication digest included in the received ICR message; and in response to determining the first level authentication is successful, perform a second level authentication of the received ICR message based on a second authentication digest included in the received ICR message. - View Dependent Claims (29, 30, 31, 32, 33)
-
-
34. A non-transitory computer-readable medium having computer instructions stored therein, which when executed by a processor of a first network device of an inter-chassis redundancy (ICR) system, the ICR system comprising the first network device communicatively coupled to a second network device of the ICR system, cause the processor to perform operations comprising:
-
receiving an ICR message from the second network device; performing a first level authentication of the received ICR message based on a first authentication digest included in the received ICR message; and in response to determining the first level authentication is successful, performing a second level authentication of the received ICR message based on a second authentication digest included in the received ICR message. - View Dependent Claims (35, 36, 37, 38, 39)
-
Specification