Encryption with selective disclosure of protocol identifiers

US 5,086,469 A
Filed: 06/29/1990
Issued: 02/04/1992
Est. Priority Date: 06/29/1990
Status: Expired due to Term

First Claim

Patent Images

1. A method for encryption of information packets for transmission over a communication network, the method comprising:

determining whether or not to encrypt an information packet prior to transmittal over a communication network;

if an information packet is to be encrypted, deciding whether or not to conceal the identity of an underlying network protocol by means of which the information packet was generated;

if the underlying network protocol is to be concealed, using a special protocol identifier in a plaintext portion of a header in the information packet, to indicate that the underlying network protocol is to remain anonymous; and

subsequently identifying the underlying network protocol within an encrypted portion of a header in the information packet, whereby monitoring of encrypted network traffic will not be distorted by the use of incorrect protocol identifiers.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for selective disclosure of the identity of a communication protocol under which an information packet originated, but without incorrectly identifying the protocol in a header accompanying the packet. If there is a need to conceal the identity of the underlying source protocol, a special anonymous protocol identifier is used, instead of the real protocol identifier, in the header of an encrypted information packet. Network monitors can then still provide accurate information concerning traffic on the network, without having this information distorted by the use of incorrect communication protocols. If there is a desire to reveal the underlying protocol, a subnetwork protocol frame format is used to store the protocol identity and signify whether the packet is encrypted. A packet that is of a non-subnetwork protocol can be encapsulated with a subnetwork header containing a special code signifying that there is an encapsulated packet and containing the original protocol identifier.

85 Citations

View as Search Results

6 Claims

1. A method for encryption of information packets for transmission over a communication network, the method comprising:
- determining whether or not to encrypt an information packet prior to transmittal over a communication network;
  
  if an information packet is to be encrypted, deciding whether or not to conceal the identity of an underlying network protocol by means of which the information packet was generated;
  
  if the underlying network protocol is to be concealed, using a special protocol identifier in a plaintext portion of a header in the information packet, to indicate that the underlying network protocol is to remain anonymous; and
  
  subsequently identifying the underlying network protocol within an encrypted portion of a header in the information packet, whereby monitoring of encrypted network traffic will not be distorted by the use of incorrect protocol identifiers.

2. A method for encryption of information packets for transmission over a communication network, the method comprising:
- determining whether or not to encrypt an information packet prior to transmittal over a communication network;
  
  if an information packet is to be encrypted, deciding whether to conceal or reveal the identity of an underlying network protocol by means of which the information packet wa generated; and
  
  if the underlying network protocol is to be revealed, storing the identity of the protocol in a protocol identifier field in a plaintext portion of a header of the information packet.
- View Dependent Claims (3, 4, 5, 6)
- - 3. A method as defined in claim 2, wherein:
    - if the information packet has a subnetwork packet format, setting a special code in a subfield of at least one bit of the protocol identifier field to a preselected value to signify datalink encryption of an information packet.
  - 4. A method as defined in claim 3, and further comprising the step of:
    - subsequently identifying the special code signifying datalink encryption; and
      
      obtaining the identity of the underlying protocol from the protocol identifier field.
  - 5. A method as defined in claim 2, wherein the method further comprises the steps of:
    - encapsulating the information packet with an additional plaintext header appended to the beginning of the packet and having a protocol identifier field;
      
      placing a special code in a subfield of the protocol identifier field of the additional plaintext header to signify that the information packet is encapsulated; and
      
      storing the underlying protocol identity in another subfield of the additional plaintext header.
  - 6. A method as defined in claim 5, and further including the steps of:
    - subsequently identifying the special code signifying an encapsulated information packet; and
      
      obtaining the identity of the underlying protocol from the protocol identifier field of the additional plaintext header.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Enterasys Networks Incorporated (Extreme Networks, Inc.)
Original Assignee
Digital Equipment Corporation (HP Inc.)
Inventors
Gupta, Amar, Koning, G. Paul, Kaufman, Charles W., Kempf, Mark F.
Primary Examiner(s)
Tarcza, Thomas H.
Assistant Examiner(s)
CAIN, DAVID C

Application Number

US07/546,615
Time in Patent Office

585 Days
Field of Search

380/48, 380/29, 380/46, 340/825.07, 340/825.52, 364/242.95
US Class Current

713/160
CPC Class Codes

H04L 2212/00   Encapsulation of packets

H04L 63/04   for providing a confidentia...

H04L 63/12   Applying verification of th...

H04L 9/40   Network security protocols

Encryption with selective disclosure of protocol identifiers

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

85 Citations

6 Claims

Specification

Solutions

Use Cases

Quick Links

Encryption with selective disclosure of protocol identifiers

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

85 Citations

6 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links