Routing device data caching
First Claim
Patent Images
1. A method comprising:
- receiving, on a routing device, a previous request for application data;
transmitting the application data for the previous request without storing the application data in an application data cache of the routing device;
receiving, on the routing device after the previous request, a request for the application data and to establish a secure channel between a client device and an application data host;
sending a redirect response to the client device to indicate the request is being redirected;
establishing a client-side secure channel between the client device and the routing device, wherein the client-side secure channel terminates at the routing device, and the client-side secure channel is established after receiving a confirmation to establish the client-side secure channel;
establishing a host-side secure channel between the routing device and the application data host, wherein the host-side secure channel terminates at the routing device;
receiving the application data in an encrypted form from the application data host using the host-side secure channel;
decrypting the encrypted application data;
analyzing the decrypted application data to determine whether to cache the application data;
storing the application data in the application data cache of the routing device;
re-encrypting the application data for transmission; and
transmitting the re-encrypted application data to the client device using the client-side secure channel, wherein the application data remains stored in the application data cache of the routing device after the re-encrypted application data has been transmitted to the client device,wherein the decryption of the encrypted application data is performed with a host-side secure channel session key, the re-encryption of the application data for transmission is performed with a client-side secure channel session key, and the application data being stored in the application data cache of the routing device is encrypted with a routing device encryption key, wherein the host-side secure channel session key, the client-side secure channel session key, and the routing device encryption key are all different from one another.
2 Assignments
0 Petitions
Accused Products
Abstract
A routing device capable of performing application layer data caching is described. Application data caching at a routing device can alleviate the bottleneck that an application data host may experience during high demands for application data. Requests for the application data can also be fulfilled faster by eliminating the network delays for communicating with the application data host. The techniques described can also be used to perform analysis of the underlying application data in the network traffic transiting though a routing device.
-
Citations
14 Claims
-
1. A method comprising:
-
receiving, on a routing device, a previous request for application data; transmitting the application data for the previous request without storing the application data in an application data cache of the routing device; receiving, on the routing device after the previous request, a request for the application data and to establish a secure channel between a client device and an application data host; sending a redirect response to the client device to indicate the request is being redirected; establishing a client-side secure channel between the client device and the routing device, wherein the client-side secure channel terminates at the routing device, and the client-side secure channel is established after receiving a confirmation to establish the client-side secure channel; establishing a host-side secure channel between the routing device and the application data host, wherein the host-side secure channel terminates at the routing device; receiving the application data in an encrypted form from the application data host using the host-side secure channel; decrypting the encrypted application data; analyzing the decrypted application data to determine whether to cache the application data; storing the application data in the application data cache of the routing device; re-encrypting the application data for transmission; and transmitting the re-encrypted application data to the client device using the client-side secure channel, wherein the application data remains stored in the application data cache of the routing device after the re-encrypted application data has been transmitted to the client device, wherein the decryption of the encrypted application data is performed with a host-side secure channel session key, the re-encryption of the application data for transmission is performed with a client-side secure channel session key, and the application data being stored in the application data cache of the routing device is encrypted with a routing device encryption key, wherein the host-side secure channel session key, the client-side secure channel session key, and the routing device encryption key are all different from one another. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A routing device comprising:
-
a network interface including a plurality of physical layer components; an application data cache; one or more data processors; and one or more non-transitory computer readable storage medium containing instructions, which when executed on the one or more data processors, cause the one or more data processors to perform operations including; receiving a previous request for application data; transmitting the application data for the previous request without storing the application data in the application data cache of the routing device; receiving, after the previous request, a request for the application data and to establish a secure channel between a client device and an application data host; sending a redirect response to the client device to indicate the request is being redirected; establishing a client-side secure channel between the client device and the routing device, wherein the client-side secure channel terminates at the routing device, and the client-side secure channel is established after receiving a confirmation to establish the client-side secure channel; establishing a host-side secure channel between the routing device and the application data host, wherein the host-side secure channel terminates at the routing device; receiving the application data in an encrypted form from the application data host using the host-side secure channel; decrypting the encrypted application data; analyzing the decrypted application data to determine whether to cache the application data; storing the application data in the application data cache; re-encrypting the application data for transmission; and transmitting the re-encrypted application data to the client device using the client-side secure channel, wherein the application data remains stored in the application data cache after the re-encrypted application data has been transmitted to the client device, wherein the decryption of the encrypted application data is performed with a host-side secure channel session key, the re-encryption of the application data for transmission is performed with a client-side secure channel session key, and the application data being stored in the application data cache of the routing device is encrypted with a routing device encryption key, wherein the host-side secure channel session key, the client-side secure channel session key, and the routing device encryption key are all different from one another. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
Specification