System and method employing an agile network protocol for secure communications using secure domain names

CAFC

US 8,458,341 B2
Filed: 12/23/2011
Issued: 06/04/2013
Est. Priority Date: 10/30/1998
Status: Expired due to Term

- Alert
- Pin

Associated Cases

Associated Defendants

First Claim

Patent Images

1. A network device, comprising:

a storage device storing an application program for a secure communications service; and

at least one processor configured to execute the application program for the secure communications service so as to enable the network device to;

send a request to look up an internet protocol (IP) address of a second network device based on a domain name associated with the second network device;

receive, following interception of the request and a determination that the second network device is available for the secure communication service, an indication that the second network device is available for the secure communications service, the requested IP address of the second network device, and provisioning information for a virtual private network communication link;

connect to the second network device, using the received IP address of the second network device and the provisioning information for the virtual private network communication link; and

communicate with the second network device using the secure communications service via the virtual private network communication link.

View all claims

2 Assignments

Timeline View

Assignment View

2 Petitions

Accused Products

Abstract

A network device comprises a storage device storing an application program for a secure communications service and at least one processor. The processor is configured to execute the application program enabling the network device to (a) send a request to look up a network address of a second network device based on an identifier associated with the second network device; (b) receive an indication that the second network device is available for the secure communications service, the indication including the requested network address of the second network device and provisioning information for a virtual private network communication link; (c) connect to the second network device, using the received network address of the second network device and the provisioning information for the virtual private network communication link; and (d) communicate with the second network device using the secure communications service via the virtual private network communication link.

190 Citations

28 Claims

1. A network device, comprising:
- a storage device storing an application program for a secure communications service; and
  
  at least one processor configured to execute the application program for the secure communications service so as to enable the network device to;
  
  send a request to look up an internet protocol (IP) address of a second network device based on a domain name associated with the second network device;
  
  receive, following interception of the request and a determination that the second network device is available for the secure communication service, an indication that the second network device is available for the secure communications service, the requested IP address of the second network device, and provisioning information for a virtual private network communication link;
  
  connect to the second network device, using the received IP address of the second network device and the provisioning information for the virtual private network communication link; and
  
  communicate with the second network device using the secure communications service via the virtual private network communication link.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The network device of claim 1, wherein:
    - the secure communications service includes an audio-video conferencing service; and
      
      the at least one processor is configured to execute the secure communications service application program so as to allow the network device to communicate data using the audio-video conferencing service.
  - 3. The network device of claim 1, wherein the at least one processor is configured to execute the application program so that at least one of video data and audio data can be communicated over the virtual private network communication link using the audio-video conferencing service.
  - 4. The network device of claim 1, wherein the secure communications service includes a messaging service.
  - 5. The network device of claim 4, wherein the messaging service includes an e-mail service.
  - 6. The network device of claim 1, wherein the secure communications service includes a telephony service.
  - 7. The system of claim 6, wherein the telephony service uses modulation.
  - 8. The network device of claim 7, wherein the modulation is based on one of frequency-division multiplexing (FDM), time-division multiplexing (TDM), or code division multiple access (CDMA).
  - 9. The network device of claim 1, wherein the network device is a mobile device.
  - 10. The network device of claim 9, wherein the mobile device is a notebook computer.
  - 11. The network device of claim 1, wherein the interception of the request consists of receiving the request to determine that the second network device is available for the secure communication service.
  - 12. The network device of claim 1, wherein the virtual private network communication link is based on inserting into each data packet communicated over the virtual private network communication link one or more data values that vary according to a pseudo-random sequence.
  - 13. The network device of claim 1, wherein the virtual private network communication link is based on a network address hopping regime that is used to pseudo-randomly change network addresses in packets transmitted between a first device and a second device.
  - 14. The network device of claim 1, wherein the interception occurs within another network device that is separate from the network device.

15. A method executed by a first network device for communicating with a second network device, the method comprising:
- sending a request to look up an internet protocol (IP) address of a second network device based on a domain name associated with the second network device;
  
  following interception of the request and a determination that the second network device is available for the secure communication service, receiving an indication that the second network device is available for a secure communications service, the requested IP address of the second network device, and provisioning information for a virtual private network communication link;
  
  connecting to the second network device over the virtual private network communication link, using the received IP address of the second network device and the provisioning information for the virtual private network communication link; and
  
  communicating with the second network device using the secure communications service via the virtual private network communication link.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
- - 16. The method of claim 15, wherein the secure communications service includes a video conferencing service, and communicating includes communicating at least one of video data and audio data using the video conferencing service.
  - 17. The method of claim 15, further comprising encrypting at least one of the video data and audio data over the virtual private network communication link.
  - 18. The method of claim 15, wherein the secure communications service includes a messaging service.
  - 19. The method of claim 18, wherein the messaging service includes an e-mail service.
  - 20. The method of claim 15, wherein the secure communications service includes a telephony service.
  - 21. The method of claim 20, wherein the telephony service uses modulation.
  - 22. The method of claim 21, wherein the modulation is based on one of frequency-division multiplexing (FDM), time-division multiplexing (TDM), or code division multiple access (CDMA).
  - 23. The method of claim 15, wherein the network device is a mobile device.
  - 24. The method of claim 23, wherein the mobile device is a notebook computer.
  - 25. The method of claim 15, wherein the interception of the request consists of receiving the request to determine that the second network device is available for the secure communication service.
  - 26. The method of claim 15, wherein communicating with the second network device using the secure communications service via the virtual private network communication link includes inserting into data packets communicated over the virtual private network communication link one or more data values that vary according to a pseudo-random sequence.
  - 27. The method of claim 15, wherein communicating with the second network device using the secure communications service via the virtual private network communication link includes network address hopping regime that is used to pseudorandomly change network addresses in packets transmitted between a first device and a second device.
  - 28. The method of claim 15, wherein the interception occurs within another network device that is separate from the first network device.

Specification

Resources

Litigation Campaign Assessment

Litigation Data

Current Assignee
VirnetX Inc. (Virnetx Holding Corporation)
Original Assignee
VirnetX Inc. (Virnetx Holding Corporation)
Inventors
Larson, Victor, Short, Robert Dunham III, Munger, Edmond Colby, Williamson, Michael
Primary Examiner(s)
Lim, Krisna

Application Number

US13/336,790
Publication Number

US 20120110103A1
Time in Patent Office

529 Days
Field of Search

709223-227
US Class Current

709/227
CPC Class Codes

G06F 16/951   Indexing; Web crawling tech...

G06F 21/606   by securing the transmissio...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 2101/30   Types of network names

H04L 2101/604   Address structures or formats

H04L 41/00   Arrangements for maintenanc...

H04L 45/00   Routing or path finding of ...

H04L 45/24   Multipath

H04L 45/28   using route fault recovery

H04L 61/30   Managing network names, e.g...

H04L 61/3015   Name registration, generati...

H04L 61/35   involving non-standard use ...

H04L 61/4511   using domain name system [DNS]

H04L 61/5007   Internet protocol [IP] addr...

H04L 61/5076   Update or notification mech...

H04L 61/5092   by self-assignment, e.g. pi...

H04L 63/0227   Filtering policies mail mes...

H04L 63/0272   Virtual private networks

H04L 63/04   for providing a confidentia...

H04L 63/0407   wherein the identity of one...

H04L 63/0421 : Anonymous communication, i....

H04L 63/0428 : wherein the data content is...

H04L 63/0435 : wherein the sending and rec...

H04L 63/0478 : applying multiple layers of...

H04L 63/0485 : Networking architectures fo...

H04L 63/08 : for authentication of entit...

H04L 63/0876 : based on the identity of th...

H04L 63/105 : Multiple levels of security

H04L 63/1408 : by monitoring network traff...

H04L 63/1416 : Event detection, e.g. attac...

H04L 63/1458 : Denial of Service

H04L 63/1466 : Active attacks involving in...

H04L 63/164 : at the network layer

H04L 63/168 : above the transport layer

H04L 67/14 : Session management for real...

H04L 67/141 : Setup of application sessio...

View All

System and method employing an agile network protocol for secure communications using secure domain names

First Claim

2 Assignments

2 Petitions

Accused Products

Abstract

190 Citations

28 Claims

Specification

Use Cases

Quick Links

Others

System and method employing an agile network protocol for secure communications using secure domain names

First Claim

2 Assignments

Subscription Required

Subscription Required

2 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

190 Citations

28 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others