Method and device for selective transport level spoofing based on information in transport level packet

US 7,082,467 B2
Filed: 06/12/2001
Issued: 07/25/2006
Est. Priority Date: 02/10/2000
Status: Expired due to Term

First Claim

Patent Images

1. A device for use in a system comprising said device, a first apparatus, and a second apparatus, said device comprising:

a selective spoofing unit that (a) obtains, from a transport level connection between the first apparatus and the second apparatus, a transport level packet sent by the first apparatus to the second apparatus, (b) determines, in accordance with a value in a field of the transport level packet, what application is using the transport level connection, (c) decides whether or not to perform transport level spoofing on the transport level connection, in accordance with the determination of what application is using the transport level connection, (d) selectively performs transport level spoofing on the transport level connection in accordance with the decision of whether or not to perform transport level spoofing, wherein the transport level spoofing comprises (i) locally acknowledging, to the first apparatus, receipt of the transport level packet and (ii) taking on, from the first apparatus, the responsibility of retransmitting the transport level packet if necessary, (e) decides, in a case that said selective spoofing unit has decided to perform transport level spoofing on the transport level connection, whether or not to modify the transport level packet, in accordance with the determination of what application is using the transport level connection, (f) selectively modifies the transport level racket in accordance with the decision of whether or not to modify the transport level packet, and (g) sends the transport level packet, having been modified if such is decided, to the second apparatus,wherein at least one of the following conditions is satisfied;

(1) the selective modification comprises varying the following field of the transport level packet;

a TCP Option, TCP Maximum Segment Size;

(2) the selective modification comprises varying the following field of the transport level packet;

a three-way handshake parameter field, and(3) the selective modification comprises varying the following field of the transport level packet;

a connection priority field.

View all claims

13 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for enhancing the performance of a network by performing selective spoofing, i.e., determining whether or not to spoof a connection. Selective spoofing provides the ability to discriminate among different connections, only allocating TCP spoofing resources to those where spoofing will improve performance and assigning spoofing parameters based on the specific applications using the connections. The selective spoofing is applicable to a wide variety of communication links, including both slow and fast links, high latency links, and links with low and high error rates. The selective spoofing functions are used either alone or together with other performance enhancing features. Those features include spoofing the conventional TCP three-way handshake, local data acknowledgement, multiplexing multiple connections across a single connection, data compression/encryption, prioritization, and path selection. The selective spoofing is particularly useful for links with high latency and/or high bit error rates.

86 Citations

View as Search Results

40 Claims

1. A device for use in a system comprising said device, a first apparatus, and a second apparatus, said device comprising:
- a selective spoofing unit that (a) obtains, from a transport level connection between the first apparatus and the second apparatus, a transport level packet sent by the first apparatus to the second apparatus, (b) determines, in accordance with a value in a field of the transport level packet, what application is using the transport level connection, (c) decides whether or not to perform transport level spoofing on the transport level connection, in accordance with the determination of what application is using the transport level connection, (d) selectively performs transport level spoofing on the transport level connection in accordance with the decision of whether or not to perform transport level spoofing, wherein the transport level spoofing comprises (i) locally acknowledging, to the first apparatus, receipt of the transport level packet and (ii) taking on, from the first apparatus, the responsibility of retransmitting the transport level packet if necessary, (e) decides, in a case that said selective spoofing unit has decided to perform transport level spoofing on the transport level connection, whether or not to modify the transport level packet, in accordance with the determination of what application is using the transport level connection, (f) selectively modifies the transport level racket in accordance with the decision of whether or not to modify the transport level packet, and (g) sends the transport level packet, having been modified if such is decided, to the second apparatus,wherein at least one of the following conditions is satisfied;
  
  (1) the selective modification comprises varying the following field of the transport level packet;
  
  a TCP Option, TCP Maximum Segment Size;
  
  (2) the selective modification comprises varying the following field of the transport level packet;
  
  a three-way handshake parameter field, and(3) the selective modification comprises varying the following field of the transport level packet;
  
  a connection priority field.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. The device of claim 1, wherein said selective spoofing unit only spoofs connections associated with high throughput applications.
  - 3. The device of claim 1, wherein said selective spoofing unit assigns spoofing resources, including buffer space and control blocks, to the spoofed transport level connection.
  - 4. The device of claim 1, wherein said selective spoofing unit determines what application is using the transport level connection in accordance with a TCP port number field of the transport level packet.
  - 5. The device of claim 1, wherein the transport level connection uses one of the Transmission Control Protocol (TCP) and the User Datagram Protocol (UDP).
  - 6. The device of claim 1, wherein said apparatus is connected to another apparatus via a backbone connection.
  - 7. The device of claim 6, wherein the backbone connection is via a wireless link.
  - 8. The device of claim 7, wherein the wireless link has high latency and high error rate.
  - 9. The device of claim 7, wherein the wireless link is a satellite link.
  - 10. The device of claim 1, wherein said apparatus is a component of a network gateway.
  - 11. The device of claim 1, wherein said apparatus is a component of a host.
  - 12. The device of claim 1, wherein said apparatus is a component of a hub.
  - 13. The device of claim 1, wherein said apparatus is a component of a switch.
  - 14. The device of claim 1, wherein said apparatus is a component of a VSAT.
  - 15. The device of claim 1, wherein said apparatus is a component of a router.
  - 16. The device according to claim 1, wherein condition (1) is satisfied.
  - 17. The device according to claim 1, wherein conditions (1) and (3) are satisfied.

18. A method comprising:
- obtaining, from a transport level connection between a first apparatus and a second apparatus, a transport level packet sent by the first apparatus to the second apparatus;
  
  determining, in accordance with a value in a field of the transport level packet, what application is using the transport level connection;
  
  deciding, in accordance with the determination of what application is using the transport level connection, whether or not to perform transport level spoofing on the transport level connection;
  
  selectively performing transport level spoofing on the transport level connection in accordance with the decision, wherein the transport level spoof comprises (a) locally acknowledging, to the first apparatus, receipt of the transport level packet and (b) taking on, from the first apparatus, the responsibility of retransmitting the transport level packet to the second apparatus if necessary;
  
  determining, in accordance with the determination of what application is using the transport level connection, whether or not to modify the transport level packet before forwarding the same to the second apparatus;
  
  selectively modifying the transport level packet in accordance with the determination of whether or not to modify the transport level packet; and
  
  sending the transport level packet, whether modified or not, to the second apparatus,wherein at least one of the following conditions is satisfied;
  
  (1) said selective modifying comprises varying the following field of the transport level packet;
  
  a TCP Option, TCP Maximum Segment Size;
  
  (2) said selective modifying comprises varying the following field of the transport level packet;
  
  a three-way handshake parameter field; and
  
  (3) said selective modifying comprises varying the following field of the transport level packet;
  
  a connection priority field.
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
- - 19. The method of claim 18, wherein said selective spoofing step only spoofs connections associated with high throughput applications.
  - 20. The method of claim 18, wherein said selective spoofing step assigns spoofing resources, including buffer space and control blocks, to the spoofed transport level connection.
  - 21. The method of claim 18, wherein said selective spoofing step determines what application is using the transport level connection in accordance with a TCP port number field of the transport level packet.
  - 22. The method of claim 18, wherein the transport level connection uses one of the Transmission Control Protocol (TCP) and the User Datagram Protocol (UDP).
  - 23. The method of claim 18, wherein said method is performed in a network gateway.
  - 24. The method of claim 18, wherein said method is performed in a host.
  - 25. The method of claim 18, wherein said method is performed in a hub.
  - 26. The method of claim 18, wherein said method is performed in a switch.
  - 27. The method of claim 18, wherein said method is performed in a VSAT.
  - 28. The method of claim 18, wherein said method is performed in a router.

29. A device for use in a system comprising said device, a first apparatus, and a second apparatus, said device comprising:
- a selective spoofing unit that (a) obtains, from a transport level connection between the first apparatus and the second apparatus, a transport level packet sent by the first apparatus to the second apparatus, (b) decides whether or not to perform transport level spoofing on a transport level connection, in accordance with information in the transport level packet, (c) selectively performs transport level spoofing on the transport level connection in accordance with the decision of whether or not to perform transport level spoofing, wherein the transport level spoofing comprises (i) locally acknowledging, to the first apparatus, receipt of the transport level packet and (ii) taking on, from the first apparatus, the responsibility of retransmitting the transport level packet if necessary, (d) decides, in a case that said selective spoofing unit has decided to perform transport level spoofing on the transport level connection, whether or not to modify the transport level packet, in accordance with a field in the transport level packet, (e) selectively modifies the transport level packet in accordance with the decision of whether or not to modify the transport level packet, and (f) sends the transport level packet, having been modified if such is decided, to the second apparatus,wherein at least one of the following conditions is satisfied;
  
  (1) the selective modification comprises varying the following field of the transport level packet;
  
  a TCP Option, TCP Maximum Segment Size;
  
  (2) the selective modification comprises varying the following field of the transport level packet;
  
  a three-way handshake parameter field;
  
  (3) the selective modification comprises varying the following field of the transport level packet;
  
  a connection priority field.
- View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38)
- - 30. The device according to claim 29, wherein the information comprises a destination network level address field in the transport level packet.
  - 31. The device according to claim 29, wherein the information comprises a source network level address field in the transport level packet.
  - 32. The device according to claim 29, wherein the field information comprises a destination port number field in the transport level packet.
  - 33. The device according to claim 29, wherein the information comprises a source port number field in the transport level packet.
  - 34. The device according to claim 29, wherein the information comprises a transport level options field field in the transport level packet.
  - 35. The device according to claim 29, wherein the information comprises a differentiated services (DS) field in the transport packet.
  - 36. The device according to claim 29, wherein the information comprises a plurality of fields, in the transport level packet selected from the group consisting a destination IP address, a source IP address, a TCP destination port number, a TCP source port number, a TCP options field, and an IP differentiated services (DS) field.
  - 37. The device according to claim 29, wherein the information comprises an IP address and a TCP port number.
  - 38. The device according to claim 29, wherein the information is a TCP field.

39. A method comprising:
- obtaining, from a transport level connection between a first apparatus and a second apparatus, a transport level packet sent by the first apparatus to the second apparatus;
  
  deciding, in accordance with information in the transport level packet, whether or not to perform transport level spoofing on the transport level connection;
  
  selectively performing transport level spoofing on the transport level connection in accordance with the decision, wherein the transport level spoofing comprises (a) locally acknowledging, to the first apparatus, receipt of the transport level packet and (b) taking on, from the first apparatus, the responsibility of retransmitting the transport level packet to the second apparatus if necessary;
  
  determining, in accordance with a field in the transport level packet, whether or not to modify the transport level packet before forwarding the same to the second apparatus;
  
  selectively modifying the transport level packet in accordance with the determination of whether of not to modify the transport level packet; and
  
  sending the transport level packet, whether modified or not, to the second apparatus,wherein at least one of the following conditions is satisfied;
  
  (1) said selective modifying comprises varying the following field of the transport level packet;
  
  a TCP Option, TCP Maximum Segment Size;
  
  (2) said selective modifying comprises varying the following field of the transport level packet;
  
  a three-way handshake parameter field;
  
  (3) said selective modifying comprises varying the following field of the transport level packet;
  
  a connection priority field.

40. A device for use in a system comprising said device, a first apparatus, and a second apparatus, said device comprising:
- means for obtaining, from a TCP connection between the first apparatus and the second apparatus, a TCP packet sent by the first apparatus to the second apparatus;
  
  first determining means for determining, in accordance with the TCP port number field of the TCP packet, whether or not to perform TCP spoofing;
  
  means for performing TCP spoofing in accordance with the determination by said first determining means, wherein the TCP spoofing comprises (a) locally acknowledging, to the first apparatus, receipt of the transport level packet and (b) taking on, from the first apparatus, the responsibility of retransmitting the transport level packet to the second apparatus if necessary;
  
  second determining means for determining, in accordance with the TCP port number field of the TCP packet, whether or not to vary a field of the TCP packet before forwarding the same to the second apparatus;
  
  means for varying a field of the TCP packet in accordance with the determination by said second determining means, wherein the field is the TCP Option, TCP Maximum Segment Size; and
  
  means for sending the TCP packet, whether varied or not, to the second apparatus.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hughes Network Systems LLC (Echostar Corporation)
Original Assignee
Hughes Network Systems Incorporated (Echostar Corporation)
Inventors
Border, John, Butehorn, Matthew
Primary Examiner(s)
Follansbee, John
Assistant Examiner(s)
PATEL, HARESH N

Application Number

US09/879,020
Publication Number

US 20020133596A1
Time in Patent Office

1,869 Days
Field of Search

709200-203, 709217-226, 709227-232, 701/13, 370/395.52, 370/395.41, 370/333, 370/404, 714/705, 719/310, 719/311, 719315-318, 718/114, 718/115, 725/48
US Class Current

709/227
CPC Class Codes

H04B 7/18582   Arrangements for data linki...

H04L 12/2854   Wide area networks, e.g. pu...

H04L 12/4604   LAN interconnection over a ...

H04L 12/66   Arrangements for connecting...

H04L 41/046   comprising network manageme...

H04L 41/06   Management of faults, event...

H04L 41/0896   Bandwidth or capacity manag...

H04L 41/5022   by giving priorities, e.g. ...

H04L 41/5048   Automatic or semi-automatic...

H04L 43/00   Arrangements for monitoring...

H04L 43/0811   by checking connectivity

H04L 43/0864   Round trip delays

H04L 43/0888   Throughput

H04L 45/00   Routing or path finding of ...

H04L 45/22   Alternate routing

H04L 45/24   Multipath

H04L 45/28   using route fault recovery

H04L 45/30   Routing of multiclass traffic

H04L 47/10   Flow control; Congestion co...

H04L 47/193   at the transport layer, e.g...

H04L 47/2408 : for supporting different se...

H04L 47/2433 : Allocation of priorities to...

H04L 47/2491 : Mapping quality of service ...

H04L 63/1466 : Active attacks involving in...

H04L 67/2876 : Pairs of inter-processing e...

H04L 67/303 : Terminal profiles

H04L 67/563 : Data redirection of data ne...

H04L 67/61 : taking into account QoS or ...

H04L 67/63 : Routing a service request d...

H04L 69/04 : Protocols for data compress...

H04L 69/14 : Multichannel or multilink p...

H04L 69/16 : Implementation or adaptatio...

H04L 69/161 : Implementation details of T...

H04L 69/163 : In-band adaptation of TCP d...

H04L 69/165 : Combined use of TCP and UDP...

H04L 69/169 : Special adaptations of TCP,...

H04L 69/18 : Multiprotocol handlers, e.g...

H04L 69/22 : Parsing or analysis of headers

H04L 69/329 : in the application layer [O...

H04L 9/40 : Network security protocols

H04W 28/0273 : adapting protocols for flow...

H04W 40/02 : Communication route or path...

H04W 8/04 : Registration at HLR or HSS ...

View All

Method and device for selective transport level spoofing based on information in transport level packet

First Claim

13 Assignments

0 Petitions

Accused Products

Abstract

86 Citations

40 Claims

Specification

Use Cases

Quick Links

Others

Method and device for selective transport level spoofing based on information in transport level packet

First Claim

13 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

86 Citations

40 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others