Hardware root of trust (HROT) for internet protocol (IP) communications
First Claim
1. A method of operating a data communication system to determine hardware trust for Internet Protocol (IP) communications, the method comprising:
- in a network probe system, transferring network probe packets having an originating IP address, a destination IP address, and an IP Hardware Root-of-Trust (HRoT) reporting parameter;
in a plurality of IP routers, receiving the network probe packets through IP input interfaces, routing the probe packets from the IP input interfaces to IP output interfaces based on the destination IP address, and responsive to the IP HRoT reporting parameter, encoding IP router Hardware Identifiers (HW IDs) and transferring probe response packets to the network probe system that indicate the encoded IP router HW IDs, the IP input interfaces, and the IP output interfaces; and
in the network probe system, processing the probe response packets to identify an end-to-end IP communication path for the originating IP address and the destination IP address based on the IP input interfaces and the IP output interfaces and responsively determining hardware trust status for the end-to-end IP communication path based on the encoded IP router HW IDs.
6 Assignments
0 Petitions
Accused Products
Abstract
A communication system determines Hardware Root-of-Trust (HRoT) trust for Internet Protocol (IP) communications. A probe transfers probe packets having an originating IP address, destination IP address, and IP HRoT reporting parameter. IP routers receive the probe packets through input interfaces and route the probe packets from the input interfaces to output interfaces. Responsive to the IP HRoT reporting parameter, the IP routers encode router Hardware Identifiers (HW IDs) for transfer in probe responses to the probe system. The probe responses indicate the encoded router HW IDs, IP input interfaces, and IP output interfaces. The probe system processes the probe responses to identify an end-to-end IP communication path for the originating IP address and destination IP address based on the IP interfaces. The network probe system determines hardware trust status for the end-to-end IP communication path based on the encoded IP router HW IDs.
38 Citations
20 Claims
-
1. A method of operating a data communication system to determine hardware trust for Internet Protocol (IP) communications, the method comprising:
-
in a network probe system, transferring network probe packets having an originating IP address, a destination IP address, and an IP Hardware Root-of-Trust (HRoT) reporting parameter; in a plurality of IP routers, receiving the network probe packets through IP input interfaces, routing the probe packets from the IP input interfaces to IP output interfaces based on the destination IP address, and responsive to the IP HRoT reporting parameter, encoding IP router Hardware Identifiers (HW IDs) and transferring probe response packets to the network probe system that indicate the encoded IP router HW IDs, the IP input interfaces, and the IP output interfaces; and in the network probe system, processing the probe response packets to identify an end-to-end IP communication path for the originating IP address and the destination IP address based on the IP input interfaces and the IP output interfaces and responsively determining hardware trust status for the end-to-end IP communication path based on the encoded IP router HW IDs. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A data communication system to determine hardware trust for Internet Protocol (IP) communications, the data communication system comprising:
-
a network probe system configured to transfer network probe packets having an originating IP address, a destination IP address, and an IP Hardware Root-of-Trust (HRoT) reporting parameter; a plurality of IP routers configured to receive the network probe packets through IP input interfaces, route the probe packets from the IP input interfaces to IP output interfaces based on the destination IP address, and responsive to the IP HRoT reporting parameter, encode IP router Hardware Identifiers (HW IDs) and transfer probe response packets to the network probe system that indicate the encoded IP router HW IDs, the IP input interfaces, and the IP output interfaces; and the network probe system configured to process the probe response packets to identify an end-to-end IP communication path for the originating IP address and the destination IP address based on the IP input interfaces and the IP output interfaces and responsively determine hardware trust status for the end-to-end IP communication path based on the encoded IP router HW IDs. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification