发明名称 |
Method and system for securing a network utilizing IPsec and MACsec protocols |
摘要 |
Aspects of a method and system for securing a network utilizing IPsec and MACsec protocols are provided. In one or more network nodes, aspects of the invention may enable conversion between Ethernet packets comprising payloads secured utilizing IPsec protocols and Ethernet packets secured utilizing MACsec protocols. For example, IPsec connections may be terminated at an ingress network node and IPsec connections may be regenerated at an egress network node. Packets secured utilizing MACsec protocols may be detected based on an Ethertype. Packets comprising payloads secured utilizing IPsec protocols may be detected based on a protocol field or a next header field. The conversion may be based on a data structure stored by and/or accessible to the network nodes. Aspects of the invention may enable securing data utilizing MACsec protocols when tunneling IPsec secured data through non-IPsec enabled nodes.
|
申请公布号 |
US7853691(B2) |
申请公布日期 |
2010.12.14 |
申请号 |
US20070934257 |
申请日期 |
2007.11.02 |
申请人 |
BROADCOM CORPORATION |
发明人 |
ELZUR URI;AKYOL BORA;QI ZHENG;BUER MARK;TAMER FORD;KIM YONGBUM |
分类号 |
G06F15/173;G06F7/04;G06F15/16;H04L9/08 |
主分类号 |
G06F15/173 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|