Anonymous peer-to-peer communication

US 7,877,597 B2
Filed: 11/14/2006
Issued: 01/25/2011
Est. Priority Date: 10/04/2002
Status: Expired due to Fees

First Claim

Patent Images

1. A method of transmitting packets, the method comprising:

receiving a packet transmitted between a requesting host and a responding host in a network, wherein the transmitting includes transmitting via a sequence of intermediate hosts between the requesting and responding hosts, whereby intermediate hosts have respective immediately preceding and succeeding hosts in the sequence, wherein a header of the packet contains encrypted addresses for the respective hosts in the sequence, the address for each host being encrypted by a public key of an immediately preceding host in the sequence;

decrypting, by the host receiving the packet, the address in the packet header for a succeeding host in the sequence, wherein the decrypting uses a private key of the receiving host; and

forwarding the received packet to the succeeding host in the sequence at the decrypted address, wherein the received packet includes a validation flag encrypted with a public key of the responding host and an offset value, and wherein if the host receiving the packet is the responding host, the method includes;

decrypting the validation flag with the receiving hosts private key;

inserting in a response packet a value determined by the decrypting of the validation flag at a certain location in the response packet, the certain location being determined responsive to the offset value; and

forwarding the response packet.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An anonymous peer-to-peer network has a security protocol that allows hosts in the network to determine whether data received from the network is valid. The requesting host can explicitly determine the data transfer route in packet header information. Each host address on route is encrypted with a public key of a directly preceding host. Consequently, the requesting host can exclude from the data transfer route any host through which the requesting host does not wish to route data. Error detecting codes are used to validate the transmitted data.

11 Citations

View as Search Results

16 Claims

1. A method of transmitting packets, the method comprising:
- receiving a packet transmitted between a requesting host and a responding host in a network, wherein the transmitting includes transmitting via a sequence of intermediate hosts between the requesting and responding hosts, whereby intermediate hosts have respective immediately preceding and succeeding hosts in the sequence, wherein a header of the packet contains encrypted addresses for the respective hosts in the sequence, the address for each host being encrypted by a public key of an immediately preceding host in the sequence;
  
  decrypting, by the host receiving the packet, the address in the packet header for a succeeding host in the sequence, wherein the decrypting uses a private key of the receiving host; and
  
  forwarding the received packet to the succeeding host in the sequence at the decrypted address, wherein the received packet includes a validation flag encrypted with a public key of the responding host and an offset value, and wherein if the host receiving the packet is the responding host, the method includes;
  
  decrypting the validation flag with the receiving hosts private key;
  
  inserting in a response packet a value determined by the decrypting of the validation flag at a certain location in the response packet, the certain location being determined responsive to the offset value; and
  
  forwarding the response packet.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method as claimed in claim 1, wherein the received packet contains padding data between the packet header and packet data.
  - 3. The method as claimed in claim 2, wherein the padding data is random in length and an encrypted value of this length is contained in the packet header.
  - 4. The method as claimed in claim 1, wherein the addresses are decomposed into discrete values (x₁, x₂, . . . x_n) prior to encryption, such that each address is represented as a function of these discrete values (f(x₁, x₂, . . . x_n)).
  - 5. The method as claimed in claim 1, wherein the sequence of intermediate hosts avoids a particular host.
  - 6. The method as claimed in claim 1, comprising:
    - registering by the host receiving the packet, wherein the registering includes;
      
      sending a public key to a device accessible by the requesting host.

7. An article of manufacturing for transmitting packets, the article having instructions for a computer stored on a tangible, computer readable storage device, wherein executing the instructions by the computer causes the computer to implement a method comprising:
- receiving a packet transmitted between a requesting host and a responding host in a network, wherein the transmitting includes transmitting via a sequence of intermediate hosts between the requesting and responding hosts, whereby intermediate hosts have respective immediately preceding and succeeding hosts in the sequence, wherein a header of the packet contains encrypted addresses for the respective hosts in the sequence, the address for each host being encrypted by a public key of an immediately preceding host in the sequence;
  
  decrypting, by the host receiving the packet, the address in the packet header for a succeeding host in the sequence, wherein the decrypting uses a private key of the receiving host; and
  
  forwarding the received packet to the succeeding host in the sequence at the decrypted address, wherein the received packet includes a validation flag encrypted with a public key of the responding host and an offset value, and the article includes instructions such that if the host receiving the packet is the responding host, the executing by the computer causes the computer to implement a method comprising;
  
  decrypting the validation flag with the receiving hosts private key;
  
  inserting in a response packet a value determined by the decrypting of the validation flag at a certain location in the response packet, the certain location being determined responsive to the offset value; and
  
  forwarding the response packet.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The article of manufacture of claim 7, wherein the incoming received packet contains padding data between the packet header and packet data.
  - 9. The article of manufacture of claim 8, wherein the padding data is random in length and an encrypted value of this length is contained in the packet header.
  - 10. The article of manufacture of claim 7, wherein the addresses are decomposed into discrete values (x₁, x₂, . . . x_n) prior to encryption, such that each address is represented as a function of these discrete values (f(x₁, x₂, . . . x_n)).
  - 11. The article of manufacture of claim 7 including instructions such that the executing by the computer causes the computer to implement a method comprising:
    - registering by the host receiving the packet, wherein the registering includes;
      
      sending a public key to a device accessible by the requesting host.

12. A computer system comprising:
- a processor; and
  
  a storage device connected to the processor, wherein the storage device has stored thereon a packet transmitting program for controlling the processor, and wherein the processor is operative with the program to execute the program for performing;
  
  receiving a packet transmitted between a requesting host and a responding host in a network, wherein the transmitting includes transmitting via a sequence of intermediate hosts between the requesting and responding hosts, whereby intermediate hosts have respective immediately preceding and succeeding hosts in the sequence, wherein a header of the packet contains encrypted addresses for the respective hosts in the sequence, the address for each host being encrypted by a public key of an immediately preceding host in the sequence;
  
  decrypting, by the host receiving the packet, the address in the packet header for a succeeding host in the sequence, wherein the decrypting uses a private key of the receiving host; and
  
  forwarding the received packet to the succeeding host in the sequence at the decrypted address, wherein the received packet includes a validation flag encrypted with a public key of the responding host and an offset value, and wherein the processor is operative with the program, if the host receiving the packet is the responding host, to execute the program for performing;
  
  decrypting the validation flag with the receiving hosts private key;
  
  inserting in a response packet a value determined by the decrypting of the validation flag at a certain location in the response packet, the certain location being determined responsive to the offset value; and
  
  forwarding the response packet.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The computer system of claim 12, wherein the incoming received packet contains padding data between the packet header and packet data.
  - 14. The computer system of claim 13, wherein the padding data is random in length and an encrypted value of this length is contained in the packet header.
  - 15. The computer system of claim 12, wherein the addresses are decomposed into discrete values (x₁, x₂, . . . x_n) prior to encryption, such that each address is represented as a function of these discrete values (f(x₁, x₂, . . . x_n)).
  - 16. The computer system of claim 12, wherein the processor is operative with the program to execute the program for performing:
    - registering by the host receiving the packet, wherein the registering includes;
      
      sending a public key to a device accessible by the requesting host.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Kannan, Ramakrishnan, Hariharan, Rajaraman
Primary Examiner(s)
KIM, JUNG W

Application Number

US11/599,568
Publication Number

US 20070113274A1
Time in Patent Office

1,533 Days
Field of Search

713/160, 713/162
US Class Current

713/153
CPC Class Codes

H04L 2209/42   Anonymization, e.g. involvi...

H04L 63/0414   during transmission, i.e. p...

H04L 63/0435   wherein the sending and rec...

H04L 9/083   involving central third par...

H04L 9/3247   involving digital signatures

H04L 9/3271   using challenge-response

Anonymous peer-to-peer communication

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

11 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Anonymous peer-to-peer communication

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links