Method and apparatus to establish routes based on the trust scores of routers within an IP routing domain
First Claim
Patent Images
1. A method for selecting a second router as part of a path from a first router to a destination, comprising:
- identifying every router that is part of a network including the first router;
identifying an integrity/trust score for each identified router;
computing a path integrity/trust score between the first router and the destination for each of at least two paths between the first router and the destination, wherein computing the path integrity/trust score includes;
computing a highest average integrity/trust score for the routers along each of the at least two paths;
computing a highest minimum integrity/trust score for the routers along each of the at least two paths; and
computing a highest total integrity/trust score for the routers along each of the at least two paths;
selecting the second router from the identified routers along one of the at least two paths based on at least one of the highest average integrity/trust score, the highest minimum integrity/trust score, and the highest total integrity/trust score computed for each of the at least two paths; and
transmitting data from the first router to the second router.
13 Assignments
0 Petitions
Accused Products
Abstract
A router includes a management module and a routing module. The routing module can be used to route data around a network. The management module can be used to manage the operation of the routing module, including generating an integrity report for the router, which can be used to generate a trust report for the router. The trust report can include an integrity/trust score for the router. The management module can control the routing module via a secure control interface.
-
Citations
10 Claims
-
1. A method for selecting a second router as part of a path from a first router to a destination, comprising:
-
identifying every router that is part of a network including the first router; identifying an integrity/trust score for each identified router; computing a path integrity/trust score between the first router and the destination for each of at least two paths between the first router and the destination, wherein computing the path integrity/trust score includes; computing a highest average integrity/trust score for the routers along each of the at least two paths; computing a highest minimum integrity/trust score for the routers along each of the at least two paths; and computing a highest total integrity/trust score for the routers along each of the at least two paths; selecting the second router from the identified routers along one of the at least two paths based on at least one of the highest average integrity/trust score, the highest minimum integrity/trust score, and the highest total integrity/trust score computed for each of the at least two paths; and transmitting data from the first router to the second router. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An article comprising a non-transitory storage-readable medium having associated data that, when executed by a machine, results in a machine:
-
identifying every router that is a part of a network including a first router; identifying an integrity/trust score for each identified router; computing a path integrity/trust score between the first router and a destination for each of at least two paths between the first router and the destination, wherein computing the path integrity/trust score includes; computing a highest average integrity/trust score for the routers along each of the at least two paths; computing a highest minimum integrity/trust score for the routers along each of the at least two paths; and computing a highest total integrity/trust score for the routers along each of the at least two paths; selecting a second router from the identified routers along one of the at least two paths based on at least one of the highest average integrity/trust score router, the highest minimum integrity/trust score, and the highest total integrity/trust score computed for each of the at least two paths; and transmitting data from the first router to the second router. - View Dependent Claims (7, 8, 9, 10)
-
Specification