Methods for secure and bandwidth efficient cryptographic synchronization

US 7,725,709 B2
Filed: 09/06/2006
Issued: 05/25/2010
Est. Priority Date: 09/09/2005
Status: Active Grant

First Claim

Patent Images

1. A method in a transmitter for cryptographic synchronization of data packets, wherein said data packets are transmitted to a receiver using the Secure Real-Time Transport Protocol (SRTP) as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 3711, said method comprising the steps of:

receiving a data packet for transmission;

performing SRTP processing on said data packet except for integrity transform;

determining whether a packet sequence number for said data packet is evenly divisible by R, where R is an integer previously agreed to by said transmitter and said receiver; and

,if the packet sequence number is not evenly divisible by R;

completing SRTP processing on said data packet;

and,transmitting said data packet to said receiver;

if the packet sequence number is evenly divisible by R;

computing and appending a message authentication code (MAC) to said data packet, wherein said MAC is a function of an SRTP key associated with said data packet and a transmitter roll-over counter (ROC) value, said transmitter ROC value corresponding to a counter in said transmitter that is incremented whenever a sequence number counter in said transmitter rolls over;

appending said transmitter ROC value to said data packet;

completing SRTP processing on said data packet;

and,transmitting said data packet to said receiver.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods for cryptographic synchronization of data packets. A roll-over counter (ROC) value is periodically appended to and transmitted with a data packet when a function of the packet sequence number equals a predetermined value. The ROC effectively synchronizes the cryptographic transformation of the data packets. Although the disclosed methods are generally applicable to many transmission protocols, they are particularly adaptable for use in systems wherein the data packets are transmitted to a receiver using the Secure Real-Time Transport Protocol (SRTP) as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 3711.

10 Citations

View as Search Results

16 Claims

1. A method in a transmitter for cryptographic synchronization of data packets, wherein said data packets are transmitted to a receiver using the Secure Real-Time Transport Protocol (SRTP) as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 3711, said method comprising the steps of:
- receiving a data packet for transmission;
  
  performing SRTP processing on said data packet except for integrity transform;
  
  determining whether a packet sequence number for said data packet is evenly divisible by R, where R is an integer previously agreed to by said transmitter and said receiver; and
  
  ,if the packet sequence number is not evenly divisible by R;
  
  completing SRTP processing on said data packet;
  
  and,transmitting said data packet to said receiver;
  
  if the packet sequence number is evenly divisible by R;
  
  computing and appending a message authentication code (MAC) to said data packet, wherein said MAC is a function of an SRTP key associated with said data packet and a transmitter roll-over counter (ROC) value, said transmitter ROC value corresponding to a counter in said transmitter that is incremented whenever a sequence number counter in said transmitter rolls over;
  
  appending said transmitter ROC value to said data packet;
  
  completing SRTP processing on said data packet;
  
  and,transmitting said data packet to said receiver.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method recited in claim 1, wherein said step of performing SRTP processing on said data packet comprises the step of deriving one or more keys for data protection of said data packet.
  - 3. The method recited in claim 1, further comprising the step of said transmitter communicating out-of-band with said receiver to select a value of R.
  - 4. The method recited in claim 1, wherein said sequence number counter comprises 16 bits.
  - 5. The method recited in claim 4, wherein R is in the range of 1 to 2¹⁶.
  - 6. The method recited in claim 3, wherein said transmitter and said receiver agree on said value of R using a protocol selected from the group consisting of:
    - Session Initiation Protocol (SIP);
      
      Secure Real-Time Transport (SRTP); and
      
      Multimedia Internet KEYing (MIKEY).

7. A method in a receiver for cryptographic synchronization of data packets, wherein said data packets are received from a transmitter using the Secure Real-Time Transport Protocol (SRTP) as defined in Internet Engineering Task Force (IETF) Request for Comments (RFC) 3711, said method comprising the steps of:
- receiving a data packet from said transmitter;
  
  performing SRTP processing on said data packet except SRTP key derivation;
  
  determining if a transmitter roll-over counter (ROC) value is appended to said data packet, wherein the presence of a transmitter ROC value is indicated if the packet sequence number is evenly divisible by R, where R is an integer previously agreed to by said transmitter and said receiver;
  
  if the data packet does not include a transmitter ROC value;
  
  performing standard SRTP key derivation using conventional ROC estimationif the data packet does includes a transmitter ROC value;
  
  performing SRTP key derivation using the transmitter ROC value rather than a receiver ROC value;
  
  determining the integrity of the data packet; and
  
  ,if the integrity of said data packet is not confirmed, dropping said data packet;
  
  otherwise,if the integrity of said data packet is confirmed;
  
  setting said receiver ROC value to the transmitter ROC value contained in said data packet;
  
  removing said transmitter ROC value and a message authentication code (MAC) from said data packet; and
  
  ,completing SRTP processing on data packet.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The method recited in claim 7, wherein said step of determining the integrity of the data packet comprises the step of determining that said MAC is valid using the SRTP key derived using said transmitter ROC value.
  - 9. The method recited in claim 7, further comprising the step of said receiver communicating out-of-band with said transmitter to select a value of R.
  - 10. The method recited in claim 7, wherein R is in the range of 1 to 2¹⁶.
  - 11. The method recited in claim 9, wherein said transmitter and said receiver agree on said value of R using a protocol selected from the group consisting of:
    - Session Initiation Protocol (SIP);
      
      Secure Real-Time Transport (SRTP); and
      
      Multimedia Internet KEYing (MIKEY).

12. A method for cryptographic synchronization of data packets, said method comprising the steps of:
- receiving a data packet at a transmitter for transmission to a receiver, said data packet including a packet sequence number(s);
  
  determining whether a function F(s) of said packet sequence number is equal to a predetermined value, where F(s) is previously agreed to by said transmitter and said receiver;
  
  if F(s) is equal to said predetermined value;
  
  computing and appending a code to said data packet, wherein said code is a function of an authentication key associated with said data packet and a transmitter roll-over counter (ROC) value, said transmitter ROC value corresponding to a counter in said transmitter that is incremented whenever a sequence number counter in said transmitter rolls over;
  
  appending said transmitter ROC value to said data packet;
  
  transmitting said data packet to said receiver;
  
  otherwise, if F(s) is not equal to said predetermined value;
  
  transmitting said data packet to said receiver without appending said transmitter ROC value;
  
  receiving said data packet at said receiver;
  
  determining if said transmitter ROC value is appended to said data packet, wherein the presence of a transmitter ROC value is indicated if F(s) is equal to said predetermined value;
  
  if the data packet does includes a transmitter ROC value;
  
  performing security processing using the transmitter ROC value rather than a receiver ROC value, said security processing comprising the steps of;
  
  determining the integrity of the data packet; and
  
  ,if the integrity of said data packet is not confirmed, dropping said data packet;
  
  otherwise,if the integrity of said data packet is confirmed;
  
  setting said receiver ROC value to the transmitter ROC value;
  
  if the data packet does not include a transmitter ROC value;
  
  performing security processing using said receiver ROC value or an estimate of said ROC value.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The method recited in claim 12, further comprising the step of said transmitter communicating out-of-band with said receiver to select F(s).
  - 14. The method recited in claim 12, wherein said sequence number counter comprises 16 bits.
  - 15. The method recited in claim 12, wherein F(s)=1.
  - 16. The method recited in claim 12, wherein said transmitter and said receiver agree on said F(s) using a protocol selected from the group consisting of:
    - Session Initiation Protocol (SIP);
      
      Secure Real-Time Transport (SRTP); and
      
      Multimedia Internet KEYing (MIKEY).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Telefonaktiebolaget LM Ericsson
Original Assignee
Telefonaktiebolaget LM Ericsson
Inventors
Lehtovirta, Vesa Petteri, Raith, Alex Krister, Naslund, Mats, Norrman, Karl
Primary Examiner(s)
Orgad; Edan
Assistant Examiner(s)
OLION, BRIAN L

Application Number

US11/470,554
Publication Number

US 20070113085A1
Time in Patent Office

1,357 Days
Field of Search

713/168, 713151-152, 380244-246, 380255-270, 726/32, 726/17, 370/394, 370/503
US Class Current

713/151
CPC Class Codes

H04L 9/0861   Generation of secret inform...

H04L 9/12   Transmitting and receiving ...

H04L 9/16   the keys or algorithms bein...

Methods for secure and bandwidth efficient cryptographic synchronization

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

10 Citations

16 Claims

Specification

Use Cases

Quick Links

Others

Methods for secure and bandwidth efficient cryptographic synchronization

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

10 Citations

16 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others