Method and system for integrating performance enhancing functions in a virtual private network (VPN)
First Claim
Patent Images
1. A method of providing security in a communications network, the method comprising:
- establishing a secure tunnel over the network for transport of encrypted traffic;
selectively establishing a connection supported by the secure tunnel according to a proxying architecture that provides a plurality of performance enhancing functions to minimize performance impact of latency of the network; and
determining status information regarding establishment of the secure tunnel, wherein the connection is established only if the status information indicates that the secure tunnel is successfully established.
13 Assignments
0 Petitions
Accused Products
Abstract
An approach for supporting security in a communications network is disclosed. A network device includes a security peer that establishes a secure tunnel over a data network (e.g., satellite network) for transport of encrypted traffic. The device also includes a performance peer for establishing a connection supported by the secure tunnel. The performance peer includes a plurality of modules for providing respective performance enhancing functions to minimize performance impact of latency of the network.
-
Citations
16 Claims
-
1. A method of providing security in a communications network, the method comprising:
-
establishing a secure tunnel over the network for transport of encrypted traffic; selectively establishing a connection supported by the secure tunnel according to a proxying architecture that provides a plurality of performance enhancing functions to minimize performance impact of latency of the network; and determining status information regarding establishment of the secure tunnel, wherein the connection is established only if the status information indicates that the secure tunnel is successfully established. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A network device for supporting security in a communications network, the device comprising:
-
a security peer configured to establish a secure tunnel over the network for transport of encrypted traffic; and a performance peer configured to selectively establish a connection supported by the secure tunnel, the performance peer including a plurality of modules for providing respective performance enhancing functions to minimize performance impact of latency of the network, wherein the performance peer is further configured to determine status information regarding establishment of the secure tunnel from the security peer, wherein the connection is established only if the status information indicates that the secure tunnel is successfully established. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A communication system for providing security services, the system comprising:
-
an access network operated by a service provider; and a network device communicating with a host associated with a customer of the service provider, the host being configured to generate packets for transport over the access network, the host including a security peer to encrypt the packets, wherein the network device includes, a security peer configured to establish a secure tunnel for transport of the encrypted packets over the access network with the security peer of the host; and a performance peer configured to selectively establish a connection supported by the secure tunnel, the performance peer including a plurality of modules for providing respective performance enhancing functions to minimize performance impact of latency of the access network with respect to the host, wherein the performance peer is further configured to determine status information regarding establishment of the secure tunnel from the security peer of the network device, wherein the connection is established only if the status information indicates that the secure tunnel is successfully established. - View Dependent Claims (13, 14, 15, 16)
-
Specification