System and method for establishing secure communications between transceivers in undersea optical communication systems
First Claim
1. A method for secure communications between optical transceivers in an optical communication system, the method comprising:
- formatting data traffic as a plurality of frames in a first optical transceiver, wherein overhead of at least one of the frames includes a secure passcode;
transmitting at least a first optical signal including the data traffic formatted as the plurality of frames from the first optical transceiver;
receiving the first optical signal at a second optical transceiver provisioned to receive the data traffic including the secure passcode and allowing the second optical signal transceiver to read the data traffic;
after the second optical transceiver stops receiving the first optical signal, receiving the first optical signal at a third optical transceiver that is not provisioned to receive the data traffic including the secure passcode; and
in response to determining that the third optical transceiver is not provisioned to receive the data traffic including the secure passcode, preventing the data traffic from being read from the third optical transceiver at least temporarily and provisionally inserting an alternative maintenance signal into a third optical signal transmitted by the third optical transceiver.
6 Assignments
0 Petitions
Accused Products
Abstract
In general, a system and method provides secure communications between optical transceivers in an optical communication system. Two or more optical transceivers may be provisioned with one or more passcodes assigned to the transceivers, which may be used to indicate that received data traffic is intended for the transceivers. The transceivers may be configured to format data traffic with a secure version of the passcode in the overhead of the outbound signal and may be configured to determine if an inbound signal includes a secure version of the passcode provisioned in that transceiver. A transceiver may prevent data traffic from being read when the transceiver is not provisioned to receive data traffic with the embedded secure passcode and may insert an alternative maintenance signal (AMS) into an outbound signal in an opposite direction, at least temporarily, until the inbound signal includes the appropriate passcode.
-
Citations
16 Claims
-
1. A method for secure communications between optical transceivers in an optical communication system, the method comprising:
-
formatting data traffic as a plurality of frames in a first optical transceiver, wherein overhead of at least one of the frames includes a secure passcode; transmitting at least a first optical signal including the data traffic formatted as the plurality of frames from the first optical transceiver; receiving the first optical signal at a second optical transceiver provisioned to receive the data traffic including the secure passcode and allowing the second optical signal transceiver to read the data traffic; after the second optical transceiver stops receiving the first optical signal, receiving the first optical signal at a third optical transceiver that is not provisioned to receive the data traffic including the secure passcode; and in response to determining that the third optical transceiver is not provisioned to receive the data traffic including the secure passcode, preventing the data traffic from being read from the third optical transceiver at least temporarily and provisionally inserting an alternative maintenance signal into a third optical signal transmitted by the third optical transceiver. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for securely receiving data traffic in an undersea optical communication system, the method comprising:
-
receiving an inbound optical signal at an optical receiver, the inbound optical signal including inbound data traffic formatted as plurality of frames, wherein overhead of at least one of the frames includes a secure passcode; transmitting an outbound optical signal from an optical transmitter associated with the optical receiver, wherein the outbound optical signal includes outbound data traffic formatted as plurality of frames; determining if the optical receiver is provisioned to receive the inbound data traffic including the secure passcode; if the optical receiver is provisioned to receive the inbound data traffic including the secure passcode, reading the inbound data traffic and continuing to transmit the outbound optical signal including the outbound data traffic; and if the optical receiver is not provisioned to receive the inbound data traffic including the secure passcode, preventing the inbound data traffic from being read from the optical receiver at least temporarily and provisionally causing the outbound optical signal to include an alternative maintenance signal instead of the outbound data traffic. - View Dependent Claims (8, 9)
-
-
10. An optical communication system comprising:
-
at least a first optical transceiver configured to format first data traffic as a plurality of frames, to include a secure passcode in overhead of at least one of the frames, and to transmit at least a first optical signal including the first data traffic formatted as the plurality of frames from the first optical transceiver; at least a second optical transceiver configured to receive the first optical signal and to determine if the second transceiver is provisioned to receive the first data traffic including the secure passcode, and if the second transceiver is provisioned to receive the first data traffic including the secure passcode, to read the first data traffic and to transmit a second optical signal including second data traffic to the first optical transceiver, and if the second transceiver is not provisioned to receive the first data traffic including the secure passcode, to prevent the first data traffic from being read from the second optical transceiver at least temporarily and to provisionally insert an alternative maintenance signal instead of the second data traffic in the second optical signal; and an optical path coupling the first and second optical transceivers and configured to carry optical signals transmitted between the optical transceivers. - View Dependent Claims (11, 12, 13)
-
-
14. An apparatus comprising:
-
an optical transmitter configured to format outbound data traffic as a plurality of frames, to include a secure passcode in overhead of at least one of the frames, and to transmit at least an optical signal including the outbound data traffic formatted as the plurality of frames; and an optical receiver configured to receive an inbound optical signal, the inbound optical signal including inbound data traffic formatted as a plurality of frames, wherein overhead of at least one of the frames includes a secure passcode, and configured to determine if the optical receiver is provisioned to receive the inbound data traffic including the secure passcode, and if the optical receiver is provisioned to receive the inbound data traffic including the secure passcode, to read the inbound data traffic and continue transmitting the outbound optical signal including the outbound data traffic, and if the optical receiver is not provisioned to receive the inbound data traffic including the secure passcode, to prevent the inbound data traffic from being read from the optical receiver at least temporarily and to provisionally insert an alternative maintenance signal into the transmitted optical signal instead of the outbound data traffic.
-
-
15. A method of establishing secure communications between optical transceivers in an undersea optical communication system, the method comprising:
-
provisioning at least first and second optical transceivers with matching passcodes, wherein each of the first and second optical transceivers is configured to format data traffic as a plurality of frames, to include a secure version of the passcode in overhead of at least one of the frames, and to transmit at least an optical signal including the data traffic formatted as the plurality of frames, and wherein each of the first and second optical transceivers is configured to receive optical signals and to determine if the respective transceiver is provisioned to receive inbound data traffic including a secure passcode in data frames in the received optical signals, and if the respective transceiver is provisioned to receive the inbound data traffic including the secure passcode, to read the inbound data traffic and if the respective transceiver is not provisioned to receive the inbound data traffic including the secure passcode, to prevent the inbound data traffic from being read at least temporarily and to insert an alternative maintenance signal in the optical signal being transmitted; and deploying the first and second optical transceivers in the undersea optical communications system. - View Dependent Claims (16)
-
Specification