Method and apparatus for securing communication over public network
First Claim
Patent Images
1. A method of secure communication between two or more hosts using a public network, such as the Internet, comprising:
- setting up one or more secure virtual networks (SVN) to enable two or more hosts to communicate over said public network;
assigning an SVN identifier that is independent of network transmission and routing protocols for each host in the SVN environment, wherein said SVN identifier identifies said hosts for the SVN environment;
designating at least one of said hosts as a master node to control operation of the SVN environment;
communicating SVN setup and control information along with information packets communicated over the network;
sending a request for secure communications from one host to said master node;
granting or denying said communication request based on one or more SVN parameters stored on said master node;
establishing a secure communication session among two or more hosts;
securing said information packets by inserting a secure virtual network message (SVNM) into the payload portion of a packet;
communicating information packets over the secure communication session; and
terminating the SVN session by said master node.
4 Assignments
0 Petitions
Accused Products
Abstract
A system and method of providing secure communications between two or more hosts connected to a public network, where a secure virtual network (SVN) is established among the two or more hosts.
-
Citations
15 Claims
-
1. A method of secure communication between two or more hosts using a public network, such as the Internet, comprising:
-
setting up one or more secure virtual networks (SVN) to enable two or more hosts to communicate over said public network; assigning an SVN identifier that is independent of network transmission and routing protocols for each host in the SVN environment, wherein said SVN identifier identifies said hosts for the SVN environment; designating at least one of said hosts as a master node to control operation of the SVN environment; communicating SVN setup and control information along with information packets communicated over the network; sending a request for secure communications from one host to said master node; granting or denying said communication request based on one or more SVN parameters stored on said master node; establishing a secure communication session among two or more hosts; securing said information packets by inserting a secure virtual network message (SVNM) into the payload portion of a packet; communicating information packets over the secure communication session; and terminating the SVN session by said master node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A secure communication host with a security mechanism independent of the network operations, implemented between one or more applications running on said secure communication host generating packets of information in accordance to industry standard protocols such as the Internet Protocol (IP) and a network adaptor configured to connect to one or more networks, comprising:
-
an encoder to add security information into said packets of information generated by said application to be transmitted by said network adaptor via said connected networks; a decoder to extract security information from packets of information received by said network adaptor from connected networks; a message extractor to extract a message; security information comprising at least one secure virtual network (SVN) identifier that is independent of network operations and routing; and wherein said host is configured to control and regulate the generation of said security information, operation of said encoder, and operation of said decoder. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
Specification