METHOD AND ARRANGEMENT FOR SECURE TUNNELING OF DATA BETWEEN VIRTUAL ROUTERS
First Claim
1. A method for communicating data packets between a transmitting virtual router in a transmitting computer device and a receiving virtual router in a receiving computer device, the method comprising the steps of a) establishing a security association for the secure transmission of data packets between the transmitting computer device and the receiving computer device, b) identifying the transmitting virtual router and the receiving virtual router within said security association, c) in the transmitting computer device, using the identification of the transmitting virtual router within the security association in the selection of the security association for processing a data packet coming from the transmitting virtual router, d) in the receiving computer device, selecting the security association for processing a data packet coming from the transmitting computer device on the basis of values contained within the data packet, and e) in the receiving computer device, directing the data packet processed within the security association to the receiving virtual router on the basis of the identification of the receiving virtual router within the security association.
9 Assignments
0 Petitions
Accused Products
Abstract
Data packets are communicated between a transmitting virtual router in a transmitting computer device and a receiving virtual router in a receiving computer device. A security association is established for the secure transmission of data packets between the transmitting computer device and the receiving computer device. The transmitting virtual router and the receiving virtual router are identified within said security association. In the transmitting computer device, the security association for processing a data packet coming from the transmitting virtual router is selected on the basis of the identification of the transmitting virtual router within the security association. In the receiving computer device, the security association for processing a data packet coming from the transmitting computer device is selected on the basis of values contained within the data packet. In the receiving computer device, the data packet processed within the security association is directed to the receiving virtual router on the basis of the identification of the receiving virtual router within the security association.
-
Citations
13 Claims
-
1. A method for communicating data packets between a transmitting virtual router in a transmitting computer device and a receiving virtual router in a receiving computer device, the method comprising the steps of
a) establishing a security association for the secure transmission of data packets between the transmitting computer device and the receiving computer device, b) identifying the transmitting virtual router and the receiving virtual router within said security association, c) in the transmitting computer device, using the identification of the transmitting virtual router within the security association in the selection of the security association for processing a data packet coming from the transmitting virtual router, d) in the receiving computer device, selecting the security association for processing a data packet coming from the transmitting computer device on the basis of values contained within the data packet, and e) in the receiving computer device, directing the data packet processed within the security association to the receiving virtual router on the basis of the identification of the receiving virtual router within the security association.
-
11. A method for transmitting data packets from a transmitting virtual router in a transmitting computer device to a receiving computer device, the method comprising the steps of
a) establishing a security association for the secure transmission of data packets between the transmitting computer device and the receiving computer device, b) identifying the transmitting virtual router within said security association, and c) in the transmitting computer device, using the identification of the transmitting virtual router within the security association in the selection of the security association for processing a data packet coming from the transmitting virtual router.
-
12. A method for receiving data packets from a transmitting computer device in a receiving virtual router in a receiving computer device, the method comprising the steps of
a) establishing a security association for the secure transmission of data packets between the transmitting computer device and the receiving computer device, b) identifying the transmitting virtual router and the receiving virtual router within said security association, c) in the receiving computer device, selecting the security association for processing a data packet coming from the transmitting computer device on the basis of values contained within the data packet, and d) in the receiving computer device, directing the data packet processed within the security association to the receiving virtual router on the basis of the identification of the receiving virtual router within the security association.
-
13. A networked computer device for securely processing transmittable data packets, comprising
a number of virtual routers, means for establishing a security association for the secure transmission of data packets between the computer device and some other networked computer device, means for identifying a certain virtual router to be used in association with an established security association, and means for associating a piece of information identifying said certain virtual router with said established security association.
Specification