Encryption mechanism in advanced packet switching system
First Claim
1. A packet switching system comprising:
- a packet identifying unit for detecting a virtual connection identifier (VCID) marker indicating that a VCID is provided in a portion of an incoming Internet Protocol (IP) packet allocated for IP address fields,an encryption detecting unit responsive to the incoming IP packet for determining whether at least a section of the portion of the incoming packet allocated for IP address fields comprises encrypted data, anda decrypting unit responsive to the encryption detecting unit for decrypting the encrypted data, if the encrypted data is detected, to produce decrypted data.
2 Assignments
0 Petitions
Accused Products
Abstract
A packet switching system for switching packets over corporate networks and the Internet using Internet Protocol (IP) suite of protocols is provided with an encryption detecting unit that determines whether at least a section of a portion of an incoming packet allocated for Internet Protocol (IP) address fields comprises encrypted data. If the encrypted data is detected, a decrypting unit decrypts the encrypted data. A packet identifying unit detects a virtual connection identifier (VCID) marker indicating that a VCID is provided in the portion of the incoming packet allocated for IP address fields. A data extracting unit extracts the VCID from the decrypted data. For example, the data extracting unit may extracts original source and destination IP addresses, or a Quality of Service (QoS) field for identifying parameters of Quality of Service. A route processing engine determines a route for forwarding the packet, and a packet forwarding unit places the packet into a queue for transmission. An encrypting unit encrypts the VCID of packets transmitted to a network that uses virtual connection identifiers for switching packets.
48 Citations
25 Claims
-
1. A packet switching system comprising:
-
a packet identifying unit for detecting a virtual connection identifier (VCID) marker indicating that a VCID is provided in a portion of an incoming Internet Protocol (IP) packet allocated for IP address fields, an encryption detecting unit responsive to the incoming IP packet for determining whether at least a section of the portion of the incoming packet allocated for IP address fields comprises encrypted data, and a decrypting unit responsive to the encryption detecting unit for decrypting the encrypted data, if the encrypted data is detected, to produce decrypted data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method of switching packets comprising the steps of:
-
detecting a virtual connection identifier (VCID) marker indicating that a VCID is provided in a portion of an incoming Internet Protocol (IP) packet allocated for IP address fields, inspecting the incoming IP packet to determine whether at least a section of the portion of the incoming packet allocated for IP address fields comprises encrypted data, and if the encrypted data is detected, decrypting the encrypted data to produce decrypted data. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
Specification