Method for universal transport encapsulation for Internet Protocol network communications

US 6,804,776 B1
Filed: 09/21/1999
Issued: 10/12/2004
Est. Priority Date: 09/21/1999
Status: Expired due to Term

First Claim

Patent Images

1. A method of transmitting a data payload packet in a communications network comprising:

identifying a first packet protocol of said payload packet;

determining a first mapping function from said first packet protocol, said determining further comprising determining a security key; and

mapping said payload packet to a transport packet using said first mapping function, said mapping further comprising embedding said security key in said transport packet.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for implementing a simple protocol, referred to as the universal transport interface (UTI), that can be used to create high speed Internet Protocol (IP) tunnels for transmitting a variety of different payloads across a network. Payload packets may comprise any currently known packet protocol, including but not limited to time division multiplex data, IP packets, asynchronous transfer mode (ATM) cells, Packet-over-SONET/SDH (POS) packets, and Frame Relay frames. The universal transport interface protocol consists of a predefined set of mappings whereby any known protocol can be packaged into a single, conceptually simple packet format. This format is referred to as the universal transport encapsulation (UTE) format. UTE format packets are, by design, amenable to transport over an IP network without further modification beyond standard IP encapsulation. The disclosed method further implements a security key system to prevent unauthorized use or interception of UTE packets on the network.

91 Citations

View as Search Results

44 Claims

1. A method of transmitting a data payload packet in a communications network comprising:
- identifying a first packet protocol of said payload packet;
  
  determining a first mapping function from said first packet protocol, said determining further comprising determining a security key; and
  
  mapping said payload packet to a transport packet using said first mapping function, said mapping further comprising embedding said security key in said transport packet.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1 wherein said mapping said payload packet comprises prepending a transport packet header.
  - 3. The method of claim 2 wherein said transport header comprises one or more fixed length fields including said security key.
  - 4. The method of claim 2 wherein said transport header comprises a payload packet identifier field.
  - 5. The method of claim 4 wherein said payload packet identifier field is determined by agreement between a source interface and a destination interface.
  - 6. The method of claim 4 wherein said payload packet identifier field is selected from one or more pre-arranged configuration parameters.
  - 7. The method of claim 1 wherein said transport packet is encapsulated according to a protocol, said protocol comprising means for differential handling based on a quality of service parameter.

8. A method of receiving a data payload packet in a communications network comprising:
- determining a second mapping function from a transport packet, wherein said second mapping function is an inverse of a first mapping function; and
  
  mapping said transport packet to said data payload packet using said second mapping function, said mapping said transport packet further comprising verifying a security key.
- View Dependent Claims (9, 10, 11)
- - 9. The method of claim 8 wherein said verifying comprises comparing said security key to a stored value.
  - 10. The method of claim 8 wherein said verifying comprises comparing said security key to a computed value.
  - 11. The method of claim 8 wherein said verifying comprises discarding said transport packet and alerting an operator if said verifying fails.

12. A computer system for transmitting a data payload in a communications network, comprising computer instructions for:
- identifying a first packet protocol of said payload packet;
  
  determining a first mapping function from said first packet protocol, said determining further comprising determining a security key; and
  
  mapping said payload packet to a transport packet using said first mapping function, said mapping further comprising embedding said security key in said transport packet.
- View Dependent Claims (13, 14, 15, 16, 17, 18)
- - 13. The computer system of claim 12 wherein said mapping said payload packet comprises prepending a transport packet header.
  - 14. The computer system of claim 13 wherein said transport header comprises one or more fixed length fields including said security key.
  - 15. The computer system of claim 13 wherein said transport header comprises a payload packet identifier field.
  - 16. The computer system of claim 15 wherein said payload packet identifier field is determined by agreement between a source interface and a destination interface.
  - 17. The computer system of claim 15 wherein said payload packet identifier field is selected from one or more pre-arranged configuration parameters.
  - 18. The computer system of claim 12 wherein said transport packet is encapsulated according to a protocol, said protocol comprising means for differential handling based on a quality of service parameter.

19. A computer system for transmitting a data payload in a communications network, comprising computer instructions for:
- determining a second mapping function from a transport packet, wherein said second mapping function is an inverse of a first mapping function; and
  
  mapping said transport packet to said data payload packet using said second mapping function, said mapping said transport packet further comprising verifying a security key.
- View Dependent Claims (20, 21, 22)
- - 20. The computer system of claim 19 wherein said verifying comprises comparing said security key to a stored value.
  - 21. The computer system of claim 19 wherein said verifying comprises comparing said security key to a computed value.
  - 22. The computer system of claim 19 wherein said verifying comprises discarding said transport packet and alerting an operator if said verifying fails.

23. A computer readable storage medium, comprising computer instructions for:
- identifying a first packet protocol of said payload packet;
  
  determining a first mapping function from said first packet protocol, said determining further comprising determining a security key; and
  
  mapping said payload packet to a transport packet using said first mapping function, said mapping further comprising embedding said security key in said transport packet.
- View Dependent Claims (24, 25, 26, 27, 28, 29)
- - 24. The computer readable storage medium of claim 23 wherein said mapping said payload packet comprises prepending a transport packet header.
  - 25. The computer readable storage medium of claim 24 wherein said transport header comprises one or more fixed length fields including said security key.
  - 26. The computer readable storage medium of claim 24 wherein said transport header comprises a payload packet identifier field.
  - 27. The computer readable storage medium of claim 24 wherein said payload packet identifier field is determined by agreement between a source interface and a destination interface.
  - 28. The computer readable storage medium of claim 24 wherein said payload packet identifier field is selected from one or more pre-arranged configuration parameters.
  - 29. The computer readable storage medium of claim 23 wherein said transport packet is encapsulated according to a protocol, said protocol comprising means for differential handling based on a quality of service parameter.

30. A computer readable storage medium, comprising computer instructions for:
- determining a second mapping function from a transport packet, wherein said second mapping function is an inverse of a first mapping function; and
  
  mapping said transport packet to said data payload packet using said second mapping function, said mapping said transport packet further comprising verifying a security key.
- View Dependent Claims (31, 32, 33)
- - 31. The computer readable storage medium of claim 30 wherein said verifying comprises comparing said security key to a stored value.
  - 32. The computer readable storage medium of claim 30 wherein said verifying comprises comparing said security key to a computed value.
  - 33. The computer readable storage medium of claim 30 wherein said verifying comprises discarding said transport packet and alerting an operator if said verifying fails.

34. A computer data signal embodied in a carrier wave, comprising computer instructions for:
- identifying a first packet protocol of a payload packet;
  
  determining a first mapping function from said first packet protocol, said determining further comprising determining a security key; and
  
  mapping said payload packet to a transport packet using said first mapping function, said mapping further comprising embedding said security key in said transport packet.
- View Dependent Claims (35, 36, 37, 38, 39, 40)
- - 35. The computer data signal of claim 34 wherein said mapping said payload packet comprises prepending a transport packet header.
  - 36. The computer data signal of claim 35 wherein said transport header comprises one or more fixed length fields including said security key.
  - 37. The computer data signal of claim 35 wherein said transport header comprises a payload packet identifier field.
  - 38. The computer data signal of claim 37 wherein said payload packet identifier field is determined by agreement between a source interface and a destination interface.
  - 39. The computer data signal of claim 38 wherein said payload packet identifier field is selected from one or more pre-arranged configuration parameters.
  - 40. The computer data signal of claim 34 wherein said transport packet is encapsulated according to a protocol, said protocol comprising means for differential handling based on a quality of service parameter.

41. A computer data signal embodied in a carrier wave, comprising computer instructions for:
- determining a second mapping function from a transport packet, wherein said second mapping function is an inverse of a first mapping function; and
  
  mapping said transport packet to said data payload packet using said second mapping function, said mapping said transport packet further comprising verifying a security key.
- View Dependent Claims (42, 43, 44)
- - 42. The computer data signal of claim 41 wherein said verifying comprises comparing said security key to a stored value.
  - 43. The computer data signal of claim 41 wherein said verifying comprises comparing said security key to a computed value.
  - 44. The computer data signal of claim 41 wherein said verifying comprises discarding said transport packet and alerting an operator if said verifying fails.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Original Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Inventors
Bates, Anthony J., Lothberg, L. Peter J.
Primary Examiner(s)
MOISE, EMMANUEL LIONEL

Application Number

US09/400,790
Time in Patent Office

1,848 Days
Field of Search

380/43, 380/49, 380/262, 380/277, 380/278, 380/28, 380/42, 380/44, 380/46, 709/227, 709/223, 713/190, 713/193, 713/160, 713/161, 713/162, 713/163, 713/164, 713/165, 713/166
US Class Current

713/160
CPC Class Codes

H04L 63/0272   Virtual private networks

H04L 63/029   Firewall traversal, e.g. tu...

H04L 69/16   Implementation or adaptatio...

H04L 69/161   Implementation details of T...

H04L 69/168   specially adapted for link ...

H04L 69/169   Special adaptations of TCP,...

Method for universal transport encapsulation for Internet Protocol network communications

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

91 Citations

44 Claims

Specification

Solutions

Use Cases

Quick Links

Method for universal transport encapsulation for Internet Protocol network communications

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

91 Citations

44 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links