Method and system for secure data transmission with a VPN box
First Claim
Patent Images
1. A method for secure data transmission between a first communication device and a second communication device, the method which comprises:
- assigning a Virtual Private Network (VPN) box, for setting up and operating a Virtual Private Network (VPN) link between the first and second communication devices, to at least one assigned communication device selected from the group consisting of the first communication device and the second communication device, wherein the VPN box is located in the link between the first and second communication devices;
obtaining, by the VPN box, a secret key of the assigned communication device during the setup of the VPN link, wherein the secret key is stored on the assigned communication device and is obtained and used by the box for the setup of the VPN link; and
setting up, by the box, a session key for the VPN link based on the secret key, and securely transmitting data via the VPN link.
3 Assignments
0 Petitions
Accused Products
Abstract
A VPN box is connected upstream of a field device. The VPN box uses a secret cryptographic key of the field device for authentication when setting up a VPN tunnel and/or when setting up a cryptographically protected communication link.
59 Citations
14 Claims
-
1. A method for secure data transmission between a first communication device and a second communication device, the method which comprises:
-
assigning a Virtual Private Network (VPN) box, for setting up and operating a Virtual Private Network (VPN) link between the first and second communication devices, to at least one assigned communication device selected from the group consisting of the first communication device and the second communication device, wherein the VPN box is located in the link between the first and second communication devices; obtaining, by the VPN box, a secret key of the assigned communication device during the setup of the VPN link, wherein the secret key is stored on the assigned communication device and is obtained and used by the box for the setup of the VPN link; and setting up, by the box, a session key for the VPN link based on the secret key, and securely transmitting data via the VPN link. - View Dependent Claims (2, 3, 11)
-
-
4. A method for secure data transmission between a first communication device and a second communication device, the method which comprises:
-
assigning a Virtual Private Network (VPN) box, for setting up and operating a Virtual Private Network (VPN) link between the first and second communication devices, to at least one assigned communication device selected from the group consisting of the first communication device and the second communication device, wherein the VPN box is located in the link between the first and second communication devices; authenticating, with the VPN box, the assigned communication device; with the VPN box, obtaining a key assigned to the authenticated communication device; setting up, with the VPN box, a session key for the VPN link based on the assigned key, wherein the session key is stored on the assigned communication device and is obtained and used by the box for the setup of the VPN link; and securely transmitting data via the VPN link. - View Dependent Claims (9, 10, 12)
-
-
5. A system for secure data transmission, comprising:
-
a first communication device and a second communication device forming communication partners for the secure data transmission; a Virtual Private Network (VPN) box including a storage memory, said VPN box assigned to at least one of said first and second communication devices, said VPN box for setting up and operating a Virtual Private Network (VPN) link between said first and second communication devices, said VPN box located in the link between said first and second communication devices; said VPN box being configured to obtain a secret key of the assigned communication device during a setup of the VPN link, wherein the secret key is stored on said assigned communication device and is obtained and used by said box for the setup of the VPN link; said VPN box being configured to set up a session key for the VPN link based on the secret key; wherein the data is securely transmitted via the VPN link. - View Dependent Claims (13)
-
-
6. A system for secure data transmission, comprising:
-
a first communication device and a second communication device forming communication partners for the secure data transmission; a Virtual Private Network (VPN) box including a storage memory, said VPN box assigned to at least one of said first and second communication devices for setting up and operating a Virtual Private Network (VPN) link between said first and second communication devices, said VPN box located in the link between said first and second communication devices; said VPN box being configured to obtain a key, wherein the key is stored on said assigned communication device and is obtained and used by said box for the setup of the VPN link; said VPN box being configured to set up a session key for the VPN link based on the key; wherein the data is securely transmitted via the VPN link. - View Dependent Claims (7, 8, 14)
-
Specification