Separating control and data operations to support secured data transfers
First Claim
Patent Images
1. A device comprising:
- one or more processors;
memory coupled to the one or more processors, the memory comprising;
a protocol unit that includes a first protocol module and a second protocol module;
the first protocol module to communicate over at least one control channel in accordance with a message-oriented communication protocol, the second protocol module to communicate over one or more data channels in accordance with a stream-oriented communication protocol, the at least one control channel operating independently and in parallel to the one or more data channels, the one or more data channels utilized to transmit data; and
a security unit comprising;
a security negotiator to negotiate security requirements for a first data portion of a single data transfer request via the at least one control channel with the message-oriented communication protocol and to negotiate security requirements for a second data portion of the single data transfer request while the first data portion is transferred over the one or more data channels in accordance with the stream-oriented communication protocol; and
a security implementer to bind the security requirements for the first data portion of the single data transfer request to the second protocol and to bind the security requirements for the second data portion of the single data transfer request to a different protocol that is associated with a different data channel than the stream-oriented communication protocol.
2 Assignments
0 Petitions
Accused Products
Abstract
For a data transfer, security is negotiated via a control channel operating in accordance with a first protocol. The data is transmitted responsive to the security negotiation on a data channel operating in accordance with a second protocol. For example, a described implementation involves using a security control protocol and a separate secure data transfer protocol that operate cooperatively, but independently, to provide flexible application layer security with highly efficient data transfers.
-
Citations
19 Claims
-
1. A device comprising:
-
one or more processors; memory coupled to the one or more processors, the memory comprising; a protocol unit that includes a first protocol module and a second protocol module; the first protocol module to communicate over at least one control channel in accordance with a message-oriented communication protocol, the second protocol module to communicate over one or more data channels in accordance with a stream-oriented communication protocol, the at least one control channel operating independently and in parallel to the one or more data channels, the one or more data channels utilized to transmit data; and a security unit comprising; a security negotiator to negotiate security requirements for a first data portion of a single data transfer request via the at least one control channel with the message-oriented communication protocol and to negotiate security requirements for a second data portion of the single data transfer request while the first data portion is transferred over the one or more data channels in accordance with the stream-oriented communication protocol; and a security implementer to bind the security requirements for the first data portion of the single data transfer request to the second protocol and to bind the security requirements for the second data portion of the single data transfer request to a different protocol that is associated with a different data channel than the stream-oriented communication protocol. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. One or more computer-readable devices encoded with instructions that, when executed, direct a computing device to perform operations comprising:
-
negotiating, via at least one control channel operating in accordance with a message-oriented communication protocol, security information for a first portion of a single data transfer; binding the security information for the first data portion of the single data transfer request to a stream-oriented communication protocol, the stream-oriented communication protocol usable to communicate over one or more data channels used to transmit data, the one or more data channels operating independently and in parallel to the at least one control channel; negotiating, via the at least one control channel operating in accordance with the message-oriented communication protocol, security information for a second portion of the single data transfer while the first data portion is transferred over the one or more data channels in accordance with the stream-oriented communication protocol; and binding the security information for the second data portion of the single data transfer request to a different protocol that is associated with a different data channel than the stream-oriented communication protocol. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A computer-implemented method comprising:
-
negotiating, via at least one control channel operating in accordance with a message-oriented communication protocol, security information for a first portion of a single data transfer; binding the security requirements for the first data portion of the single data transfer request to a stream-oriented communication protocol, the stream-oriented communication protocol usable to communicate over one or more data channels used to transmit data, the one or more data channels operating independently and in parallel to the at least one control channel; negotiating, via the at least one control channel operating in accordance with the message-oriented communication protocol, security information for a second portion of the single data transfer while the first data portion is transferred over the one or more data channels in accordance with the stream-oriented communication protocol; and binding the security information for the second data portion of the single data transfer request to a different protocol that is associated with a different data channel than the stream-oriented communication protocol. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification