Selectively encrypting different portions of data sent over a network
DCFirst Claim
1. An encryption bridge for selectively encrypting data to a client device, comprising:
- a network component that is configured to send and receive data over a network; and
a processor that is operative to perform actions, including;
receiving a packet;
examining a payload portion of the packet for a predefined data type, and if the payload portion includes the predefined data type, selectively encrypting the payload portion and;
employing, in part, the network component, to send the selectively encrypted payload portion in another packet towards another network device, over the network.
6 Assignments
Litigations
0 Petitions
Reexamination
Accused Products
Abstract
An apparatus, system, and method are directed towards parsing and selectively encrypting different portions of data in real-time, decrypting the encrypted data in real-time, and passing the data to a media player on a client computer or other network capable device. Data in a network packet may be parsed into payload and non-payload portions. The payload portion of the packet data may then be examined to determine whether a predefined type of the data is recognized. For example, in one embodiment, the predefined data type may be media content. If the payload portion is recognized as a predefined data type, then it may be selectively encrypted. The selectively encrypted payload portion and non-payload portion of the packet may then be combined, such that the non-payload portion may be employed by firewalls, proxies, and/or NATs to route the packet towards the client computer or other network capable device.
-
Citations
17 Claims
-
1. An encryption bridge for selectively encrypting data to a client device, comprising:
-
a network component that is configured to send and receive data over a network; and a processor that is operative to perform actions, including; receiving a packet; examining a payload portion of the packet for a predefined data type, and if the payload portion includes the predefined data type, selectively encrypting the payload portion and; employing, in part, the network component, to send the selectively encrypted payload portion in another packet towards another network device, over the network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-readable storage medium having computer-executable instructions for managing data over a network, the computer-executable instructions when installed onto a computing device enable the computing device to perform actions, comprising:
-
receiving a stream of packets; examining a payload portion of each packet for a predefined data type, and if at least one of the payload portions includes the predefined data type, selectively encrypting the at least one payload portion; and streaming at least the selectively encrypted payload portions in packets over the network. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A system for managing data securely over a network, comprising:
-
a first device that is operative to perform actions, including; receiving a packet; examining a payload portion of the packet for a predefined data type, and if the payload portion includes the predefined data type, selectively encrypting the payload portion and; communicating the selectively encrypted portions over the network in a packet; and a second device that is operative to perform actions, including; receiving the communicated packet, parsing the received packet into the payload and the non-payload portion, and decrypting the selectively encrypted payload portion. - View Dependent Claims (17)
-
Specification