System for key exchange in a content centric network

US 10,129,230 B2
Filed: 08/30/2017
Issued: 11/13/2018
Est. Priority Date: 10/29/2015
Status: Active Grant

First Claim

Patent Images

1. A computer system comprising:

a processor; and

a storage device storing instructions that when executed by the processor cause the processor to perform implementing a key exchange protocol to establish and exchange secure session keys for authenticated encryption of data for a secure communication session between a content-consuming device and a content-producing device each configured to exchange interest packets and content object packets over a content-centric network (CCN), the implementing including;

constructing an initial interest packet with a name that includes a first prefix and a previously generated first nonce, and a payload that indicates an initial hello;

in response to the initial interest packet, receiving an initial content-object packet with a payload that includes configuration information, a second nonce, and a second prefix different from the first prefix, wherein the configuration information indicates a first consumer-share key, and the second nonce is used to establish a session between the content-consuming device and the content-producing device over the CCN;

generating, by the content-consuming device, a first key based on the first consumer-share key and a previously received producer-share key;

constructing a first interest packet that includes the first consumer-share key and a nonce token which is used as a pre-image of the previously generated first nonce, wherein the first interest packet has a name that includes the first prefix, and wherein the previously generated first nonce is also used to establish the session;

replacing the first prefix with the second prefix in the name for the first interest packet;

sending the first interest packet to the content-producing device over the CCN and in response to the nonce token being verified by the content-producing device, receiving, by the content-consuming device, from the content-producing device over the CCN a first content-object packet with a payload that includes a first resumption indicator encrypted based on a second key;

generating the second key based on a second consumer-share key and the first content-object packet;

decrypting the payload for the first content-object packet; and

in response to determining that the decrypted payload does not indicate a rejection, obtaining an acknowledgment and a second producer-share key.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One embodiment provides a system that facilitates secure communication between computing entities. During operation, the system generates, by a content-consuming device, a first key based on a first consumer-share key and a previously received producer-share key. The system constructs a first interest packet that includes the first consumer-share key and a nonce token which is used as a pre-image of a previously generated first nonce, wherein the first interest has a name that includes a first prefix, and wherein the first nonce is used to establish a session between the content-consuming device and a content-producing device. In response to the nonce token being verified by the content-producing device, the system receives a first content-object packet with a payload that includes a first resumption indicator encrypted based on a second key. The system generates the second key based on a second consumer-share key and the first content-object packet.

435 Citations

20 Claims

1. A computer system comprising:
- a processor; and
  
  a storage device storing instructions that when executed by the processor cause the processor to perform implementing a key exchange protocol to establish and exchange secure session keys for authenticated encryption of data for a secure communication session between a content-consuming device and a content-producing device each configured to exchange interest packets and content object packets over a content-centric network (CCN), the implementing including;
  
  constructing an initial interest packet with a name that includes a first prefix and a previously generated first nonce, and a payload that indicates an initial hello;
  
  in response to the initial interest packet, receiving an initial content-object packet with a payload that includes configuration information, a second nonce, and a second prefix different from the first prefix, wherein the configuration information indicates a first consumer-share key, and the second nonce is used to establish a session between the content-consuming device and the content-producing device over the CCN;
  
  generating, by the content-consuming device, a first key based on the first consumer-share key and a previously received producer-share key;
  
  constructing a first interest packet that includes the first consumer-share key and a nonce token which is used as a pre-image of the previously generated first nonce, wherein the first interest packet has a name that includes the first prefix, and wherein the previously generated first nonce is also used to establish the session;
  
  replacing the first prefix with the second prefix in the name for the first interest packet;
  
  sending the first interest packet to the content-producing device over the CCN and in response to the nonce token being verified by the content-producing device, receiving, by the content-consuming device, from the content-producing device over the CCN a first content-object packet with a payload that includes a first resumption indicator encrypted based on a second key;
  
  generating the second key based on a second consumer-share key and the first content-object packet;
  
  decrypting the payload for the first content-object packet; and
  
  in response to determining that the decrypted payload does not indicate a rejection, obtaining an acknowledgment and a second producer-share key.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The computer system of claim 1, wherein the nonce token is verified based on the first key and the previously generated first nonce.
  - 3. The computer system of claim 1, wherein:
    - generating the first key is further based on performing a key derivation function based on the first consumer-share key and the first producer-share key;
      
      generating the second key is further based on performing the key derivation function based on the second consumer-share key and a second producer-share key indicated in the first content-object packet; and
      
      the processor is further configured to perform generating, based on performing an expansion function based on the second key, one or more of the following;
      
      a consumer-specific second key;
      
      a producer-specific second key;
      
      a consumer-specific initialization vector; and
      
      a producer-specific initialization vector.
  - 4. The computer system of claim 1, wherein the processor is further configured to perform:
    - constructing a second interest packet with a name that includes a previously received session identifier, and a payload encrypted based on a consumer-specific second key; and
      
      in response to the second interest packet, receiving a second content-object packet with a payload encrypted based on a producer-specific second key, wherein the consumer-specific second key and the producer-specific second key are generated based on performing an expansion function on the second key.
  - 5. The computer system of claim 4, wherein the payload for the first content-object packet indicates a move token and a third prefix different from the first prefix, and wherein the processor is further configured to perform:
    - replacing the first prefix with the third prefix in the name for the second interest packet and a name for a subsequent interest packet associated with the session; and
      
      indicating the move token in the payload for the second interest packet.
  - 6. The computer system of claim 4, wherein the payload for the second content-object packet includes a second resumption indicator for a subsequently resumed session between the consumer and the producer.

7. A computer system comprising:
- a processor; and
  
  a storage device storing instructions that when executed by the processor cause the processor to perform implementing a key exchange protocol to establish and exchange secure session keys for authenticated encryption of data for a secure communication session between a content-consuming device and a content-producing device each configured to exchange interest packets and content object packets over a content-centric network (CCN), the implementing including;
  
  upon receiving over the CCN, by the content-producing device, an initial interest packet with a name that includes a first prefix and a first nonce, and a payload that indicates an initial hello, constructing an initial content-object packet with a payload that includes configuration information, a second nonce, and a second prefix different from the first prefix, wherein the configuration information indicates a first consumer-share key, and the second nonce is used to establish a session between the content-consuming device and the content-producing device over the CCN;
  
  receiving over the CCN, by the content-producing device, a first interest packet from the content-consuming device, wherein the first interest packet includes the first consumer-share key and a nonce token which is used as a pre-image of the previously received first nonce, wherein the first interest packet has a name that includes the first prefix, and wherein the previously received first nonce is also used to establish the session;
  
  replacing the first prefix with the second prefix in the name for the first interest packet;
  
  generating a first key based on the first consumer-share key and a first producer-share key;
  
  verifying the nonce token based on the first key and the first nonce, by decrypting the payload for the first interest packet based on the first key, performing a hash function on the nonce token to obtain a result, and determining whether the result matches the first nonce;
  
  generating a second key based on the first interest packet and a second producer-share key; and
  
  constructing a first content-object packet with a payload that includes a first resumption indicator encrypted based on the second key.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 15)
- - 8. The computer system of claim 7, wherein:
    - generating the first key is further based on performing a key derivation function based on the first consumer-share key and the first producer-share key;
      
      generating the second key is further based on performing the key derivation function based on a second consumer-share key indicated in the first interest packet and the second producer-share key; and
      
      the processor is further configured to perform generating, based on performing an expansion function based on the second key, one or more of the following;
      
      a consumer-specific second key;
      
      a producer-specific second key;
      
      a consumer-specific initialization vector; and
      
      a producer-specific initialization vector.
  - 9. The computer system of claim 7, wherein the name for the first interest packet further includes a previously generated second nonce, wherein the second nonce is used to establish the session.
  - 10. The computer system of claim 7, wherein the processor is further configured to perform:
    - generating a session identifier based on the second key;
      
      receiving a second interest packet with a name that includes the session identifier, and a payload encrypted based on a consumer-specific second key; and
      
      in response to the second interest packet, constructing a second content-object packet with a payload encrypted based on a producer-specific second key,wherein the consumer-specific second key and the producer-specific second key are generated based on performing an expansion function on the second key.
  - 11. The computer system of claim 10, wherein the processor is further configured to perform:
    - indicating in the payload for the first content-object packet a move token and a third prefix different from the first prefix,wherein the name for the second interest packet includes the third prefix in place of the first prefix, andwherein the payload for the second interest packet indicates the move token.
  - 12. The computer system of claim 10, wherein the processor is further configured to perform:
    - in response to identifying a need for a new resumption indicator, generating a new resumption indicator for use in a subsequently resumed session between the consumer and the producer; and
      
      including in the payload for the second content-object packet the new resumption indicator encrypted based on the producer-specific second key.
  - 13. The computer system of claim 7, wherein the processor is further configured to perform:
    - in response to determining that the result matches the first nonce, including in the payload for the first content-object packet an acknowledgment and the second producer-share key; and
      
      in response to determining that the result does not match the first nonce, including in the payload for the first content-object packet a rejection and a reason for the rejection.
  - 15. The computer system of claim 7, wherein the nonce token is verified based on the first key and the previously generated first nonce.

14. One or more non-transitory computer readable storage media encoded with instructions that, when executed by a processor, cause the processor to perform operations comprising implementing a key exchange protocol to establish and exchange secure session keys for authenticated encryption of data for a secure communication session between a content-consuming device and a content-producing device each configured to exchange interest packets and content object packets over a content-centric network (CCN), the implementing including:
- constructing an initial interest packet with a name that includes a first prefix and a previously generated first nonce, and a payload that indicates an initial hello;
  
  in response to the initial interest packet, receiving an initial content-object packet with a payload that includes configuration information, a second nonce, and a second prefix different from the first prefix, wherein the configuration information indicates a first consumer-share key, and the second nonce is used to establish a session between the content-consuming device and the content-producing device over the CCN;
  
  generating, by the content-consuming device, a first key based on the first consumer-share key and a previously received producer-share key;
  
  constructing a first interest packet that includes the first consumer-share key and a nonce token which is used as a pre-image of the previously generated first nonce, wherein the first interest packet has a name that includes the first prefix, and wherein the previously generated first nonce is also used to establish the session;
  
  replacing the first prefix with the second prefix in the name for the first interest packet;
  
  sending the first interest packet to the content-producing device over the CCN and in response to the nonce token being verified by the content-producing device, receiving, by the content-consuming device, from the content-producing device over the CCN a first content-object packet with a payload that includes a first resumption indicator encrypted based on a second key;
  
  generating the second key based on a second consumer-share key and the first content-object packet;
  
  decrypting the payload for the first content-object packet; and
  
  in response to determining that the decrypted payload does not indicate a rejection, obtaining an acknowledgment and a second producer-share.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory computer readable storage media of claim 14, wherein the nonce token is verified based on the first key and the previously generated first nonce.
  - 17. The non-transitory computer readable storage media of claim 14, wherein:
    - generating the first key is further based on performing a key derivation function based on the first consumer-share key and the producer-share key;
      
      generating the second key is further based on performing the key derivation function based on the second consumer-share key and a second producer-share key indicated in the first content-object packet; and
      
      the implementing further includes generating, based on performing an expansion function based on the second key, one or more of the following;
      
      a consumer-specific second key;
      
      a producer-specific second key;
      
      a consumer-specific initialization vector; and
      
      a producer-specific initialization vector.
  - 18. The non-transitory computer readable storage media of claim 14, wherein the implementing further includes:
    - constructing a second interest packet with a name that includes a previously received session identifier, and a payload encrypted based on a consumer-specific second key; and
      
      in response to the second interest packet, receiving a second content-object packet with a payload encrypted based on a producer-specific second key, wherein the consumer-specific second key and the producer-specific second key are generated based on performing an expansion function on the second key.
  - 19. The non-transitory computer readable storage media of claim 18, wherein the payload for the first content-object packet indicates a move token and a third prefix different from the first prefix, and wherein the implementing further includes:
    - replacing the first prefix with the third prefix in the name for the second interest packet and a name for a subsequent interest packet associated with the session; and
      
      indicating the move token in the payload for the second interest packet.
  - 20. The non-transitory computer readable storage media of claim 18, wherein the payload for the second content-object packet includes a second resumption indicator for a subsequently resumed session between the consumer and the producer.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Original Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Inventors
Wood, Christopher A., Mosko, Marc E., Uzun, Ersin
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
Beheshti Shirazi, Sayed Aresh

Application Number

US15/690,485
Publication Number

US 20170366526A1
Time in Patent Office

440 Days
Field of Search
US Class Current
CPC Class Codes

H04L 2209/60   Digital content management,...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/0853   using an additional device,...

H04L 63/0876   based on the identity of th...

H04L 9/0861   Generation of secret inform...

H04L 9/14   using a plurality of keys o...

H04L 9/3271   using challenge-response

H04W 12/041   Key generation or derivation

H04W 12/0431   Key distribution or pre-dis...

System for key exchange in a content centric network

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

435 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System for key exchange in a content centric network

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

435 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links