Method and apparatus for providing an adaptable security level in an electronic communication
First Claim
Patent Images
1. A method performed by a communication device, said method comprising:
- said communication device preparing a plurality of frames, each frame having a header and data, wherein the preparing the plurality of frame comprises;
on a frame-by-frame basis, for each individual frame;
determining a security level for the individual frame, the security level indicating whether to provide encryption for the individual frame and whether to provide integrity for the individual frame; and
based on said security level, including security control bits in the header of the individual frame; and
said communication device communicating the plurality of frames to a recipient device, wherein the security control bits include one or more security mode bits and integrity level bits, wherein the one or more security mode bits are used to indicate whether encryption is on or off, wherein the integrity level bits indicate which of at least four integrity levels is utilized, the integrity levels corresponding to signing operations of a sender of increasing strength, and wherein said security control bits allow the recipient device to identify said security level for each individual frame and to reject an individual frame if said security level does not comply with a minimum security level required by the recipient device.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of communicating in a secure communication system, comprises the steps of assembling a message at a sender, then determining a security level, and including an indication of the security level in a header of the message. The message is then sent to a recipient.
-
Citations
20 Claims
-
1. A method performed by a communication device, said method comprising:
-
said communication device preparing a plurality of frames, each frame having a header and data, wherein the preparing the plurality of frame comprises; on a frame-by-frame basis, for each individual frame; determining a security level for the individual frame, the security level indicating whether to provide encryption for the individual frame and whether to provide integrity for the individual frame; and based on said security level, including security control bits in the header of the individual frame; and said communication device communicating the plurality of frames to a recipient device, wherein the security control bits include one or more security mode bits and integrity level bits, wherein the one or more security mode bits are used to indicate whether encryption is on or off, wherein the integrity level bits indicate which of at least four integrity levels is utilized, the integrity levels corresponding to signing operations of a sender of increasing strength, and wherein said security control bits allow the recipient device to identify said security level for each individual frame and to reject an individual frame if said security level does not comply with a minimum security level required by the recipient device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable storage medium comprising computer-executable instructions that are configured when executed by data processing apparatus to perform operations comprising:
-
preparing a plurality of frames, each frame having a header and data, wherein the preparing the plurality of frames comprises; on a frame-by-frame basis, for each individual frame; determining a security level for the individual frame, the security level indicating whether to provide encryption for the individual frame and whether to provide integrity for the individual frame; and based on said security level, including security control bits in the header of the individual frame; and communicating the plurality of frames to a recipient device, wherein the security control bits include one or more security mode bits and integrity level bits, wherein the one or more security mode bits are used to indicate whether encryption is on or off, wherein the integrity level bits indicate which of at least four integrity levels is utilized, the integrity levels corresponding to signing operations of a sender of increasing strength, and wherein said security control bits allow the recipient device to identify said security level for each individual frame and to reject an individual frame if said security level does not comply with a minimum security level required by the recipient device. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A transmitter device, comprising:
-
a memory; and one or more processors communicatively coupled with the memory and configured to; prepare a plurality of frames, each frame having a header and data, wherein the preparing the plurality of frames comprises; on a frame-by-frame basis, for each individual frame; determining a security level for the individual frame, the security level indicating whether to provide encryption for the individual frame and whether to provide integrity for the individual frame; and based on said security level, including security control bits in the header of the individual frame; and communicate the plurality of frames to a recipient device, wherein the security control bits include one or more security mode bits and integrity level bits, wherein the one or more security mode bits are used to indicate whether encryption is on or off, wherein the integrity level bits indicate which of at least four integrity levels is utilized, the integrity levels corresponding to signing operations of a sender of increasing strength, and wherein said security control bits allow the recipient device to identify said security level for each individual frame and to reject an individual frame if said security level does not comply with a minimum security level required by the recipient device.
-
Specification