Method and system for secure packet communication
First Claim
1. A method for processing a communication data item, said method comprising the steps of:
- dividing the communication data item into a plurality of unencrypted packets, said unencrypted packets being physically isolated from each other, a packet header and plaintext data being contained within each unencrypted packet, the packet header of each unencrypted packet comprising an identifier field that includes a packet identifier, the packet identifier being identical for all of said unencrypted packets; and
generating an encrypted packet from each unencrypted packet by;
determining a vector identifier from the identical packet identifier, said vector identifier having an association with the identical packet identifier;
generating an initial vector from the vector identifier, said initial vector differing from the vector identifier; and
forming an encrypted packet header, said forming the encrypted packet header comprising inserting the vector identifier into a first portion of the packet header and encrypting a second portion of the packet header through use of an encryption key, said first and second portions of the packet header being different portions of the packet header, said encrypting the second portion of the packet header being implemented through use of the initial vector,wherein said generated encrypted packets are physically isolated from each other.
4 Assignments
0 Petitions
Accused Products
Abstract
A method for processing a communication data item. The communication data item is divided into at least two unencrypted packets to be encrypted. Each encrypted packet is generated from a corresponding unencrypted packet. Each unencrypted packet has a packet header and plaintext data. The packet header has an identifier field that includes a packet identifier. The packet identifier is identical for all unencrypted packets. Generating an encrypted packet for each unencrypted packet includes: determining a vector identifier from the identical packet identifier, wherein the vector identifier is associated with the identical packet identifier; ascertaining an initial vector from the vector identifier; and forming an encrypted packet header by inserting the vector identifier into a first portion of the packet header and encrypting a second portion of the packet header through use of the initial vector. The encrypted packets are subsequently decrypted and combined to reconstruct the communication data item.
76 Citations
20 Claims
-
1. A method for processing a communication data item, said method comprising the steps of:
-
dividing the communication data item into a plurality of unencrypted packets, said unencrypted packets being physically isolated from each other, a packet header and plaintext data being contained within each unencrypted packet, the packet header of each unencrypted packet comprising an identifier field that includes a packet identifier, the packet identifier being identical for all of said unencrypted packets; and generating an encrypted packet from each unencrypted packet by; determining a vector identifier from the identical packet identifier, said vector identifier having an association with the identical packet identifier; generating an initial vector from the vector identifier, said initial vector differing from the vector identifier; and forming an encrypted packet header, said forming the encrypted packet header comprising inserting the vector identifier into a first portion of the packet header and encrypting a second portion of the packet header through use of an encryption key, said first and second portions of the packet header being different portions of the packet header, said encrypting the second portion of the packet header being implemented through use of the initial vector, wherein said generated encrypted packets are physically isolated from each other. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for processing a plurality of encrypted packets, said method comprising the steps of:
-
generating a decrypted packet from each encrypted packet of the plurality of encrypted packets, said decrypted packets being physically isolated from each other, said encrypted packets being physically isolated from each other, an encrypted packet header and encrypted data items being contained within each encrypted packet, the encrypted packet header of each encrypted packet comprising an encrypted portion (E0) and an identifier field that includes a vector identifier, said vector identifier being identical for all of said encrypted packets, said encrypted packets having been previously derived from a communication data item that comprised unencrypted packets respectively corresponding to the encrypted packets, said generating comprising for each encrypted packet; obtaining the vector identifier from the identifier field; ascertaining an initial vector from the obtained vector identifier, said initial vector differing from the vector identifier; decrypting E0 to form a decrypted data item D0; and performing an exclusive OR between D0 and the initial vector to form a decrypted packet header of the decrypted packet. - View Dependent Claims (17, 18, 19, 20)
-
Specification