Protecting data integrity in an enhanced network connection
First Claim
1. A method of protecting by one or more proxies integrity of packets of a transport layer connection, the method comprising:
- (a) receiving, by a first performance enhancing proxy, a packet for a transport layer connection between an endpoint and a server, the packet having a first port number;
(b) rotating, by the first performance enhancing proxy, the first port number of the packet to a second port number;
(c) receiving, by a second performance enhancing proxy, the packet transmitted by the first performance enhancing proxy;
(d) determining, by the second performance enhancing proxy, that the second port number of the packet was rotated; and
(e) derotating, by the second performance enhancing proxy, the rotated port number of the packet to the first port number.
8 Assignments
0 Petitions
Accused Products
Abstract
The integrity of a data stream transmitted over a network is protected by adjusting the sequence number, the port number, or another field of a data packet field, for a number of data packets so that the data packets will be considered either valid or invalid by a downstream receiving device. Data packets that have such a field adjusted can be thought of as being rotated outside of a valid range or window, as defined for a network connection. This field of a rotated data packet can be further adjusted, through de-rotation or re-rotation, for various applications. Downstream devices can thus respond to the data packets depending on the state of the rotation.
13 Citations
25 Claims
-
1. A method of protecting by one or more proxies integrity of packets of a transport layer connection, the method comprising:
-
(a) receiving, by a first performance enhancing proxy, a packet for a transport layer connection between an endpoint and a server, the packet having a first port number; (b) rotating, by the first performance enhancing proxy, the first port number of the packet to a second port number; (c) receiving, by a second performance enhancing proxy, the packet transmitted by the first performance enhancing proxy; (d) determining, by the second performance enhancing proxy, that the second port number of the packet was rotated; and (e) derotating, by the second performance enhancing proxy, the rotated port number of the packet to the first port number. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of protecting by one or more proxies integrity of packets of a connection, the method comprising:
-
(a) receiving, by a first performance enhancing proxy, a packet for a connection between an endpoint and a server, the packet having a first field having a first value; (b) rotating, by the first performance enhancing proxy, the first value of the first field of the packet to a second value; (c) receiving, by a second performance enhancing proxy, the packet transmitted by the first performance enhancing proxy; (d) determining, by the second performance enhancing proxy, that the first field of the packet has been rotated; and (e) derotating, by the second performance enhancing proxy, the second value of the first field of the packet to the first value. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A system of protecting integrity of packets of a connection, the system comprising:
-
a first proxy receiving a packet for a connection between an endpoint and a server, the packet having a first field having a first value and rotating the first value of the first field of the packet to a second value; and a second proxy receiving the packet transmitted by the first proxy, determining that the first field of the packet has been rotated, and derotating the second value of the first field of the packet to the first value. - View Dependent Claims (22, 23, 24, 25)
-
Specification