Method and apparatus for providing an adaptable security level in an electronic communication
First Claim
Patent Images
1. A method of communicating between a first correspondent and a second correspondent in a data communication system, the method performed on a frame-by-frame basis and comprising:
- assembling a data stream at said first correspondent, said data stream having at least one frame, said frame having a header and data;
determining a security level for a frame type of said frame based on a policy, wherein the policy identifies a minimum security level for the frame type;
incorporating in said header, an indication of said frame type and an indication of said security level;
forwarding said frame to said second correspondent to enable said second correspondent to determine the acceptability of said frame according to said frame type;
receiving, from said second correspondent, a frame including security bits that identify a security level for said received frame;
determining a minimum security level based on a frame type of said received frame and the policy;
if said security level for said received frame meets said minimum security level for said received frame, accept said received frame; and
if said security level for said received frame does no meet the minimum security level for said received frame, reject said received frame.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of communicating in a secure communication system, comprises the steps of assembling a message at a sender, then determining a frame type, and including an indication of the frame type in a header of the message. The message is then sent to a recipient and the frame type used to perform a policy check.
-
Citations
18 Claims
-
1. A method of communicating between a first correspondent and a second correspondent in a data communication system, the method performed on a frame-by-frame basis and comprising:
-
assembling a data stream at said first correspondent, said data stream having at least one frame, said frame having a header and data; determining a security level for a frame type of said frame based on a policy, wherein the policy identifies a minimum security level for the frame type; incorporating in said header, an indication of said frame type and an indication of said security level; forwarding said frame to said second correspondent to enable said second correspondent to determine the acceptability of said frame according to said frame type; receiving, from said second correspondent, a frame including security bits that identify a security level for said received frame; determining a minimum security level based on a frame type of said received frame and the policy; if said security level for said received frame meets said minimum security level for said received frame, accept said received frame; and if said security level for said received frame does no meet the minimum security level for said received frame, reject said received frame. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method of verifying a communication on a frame-by-frame basis between a first correspondent and a second correspondent in a data communication system comprising said second correspondent:
-
receiving from said first correspondent, a frame having a header and data, said header including an indication of a frame type and an indication of a security level for the frame; determining said frame type from said header; and determining a minimum security level for said frame type based on a policy; if said security level meets said minimum security level for said frame, accept said frame; and if said security level for said frame does not meet the minimum security level for said frame, reject said frame. - View Dependent Claims (17, 18)
-
Specification