| 发明名称 | Method and system for traffic engineering in secured networks | ||
| 摘要 | Aspects of a method and system for traffic engineering in an IPSec secured network are provided. In this regard, a node in a network may be authenticated as a trusted third party and that trusted third party may be enabled to acquire security information shared between or among a plurality of network entities. In this manner, the trusted third party may parse, access and operate on IPSec encrypted traffic communicated between or among the plurality of network entities. Shared security information may comprise one or more session keys utilized for encrypting and/or decrypting the IPSec secured traffic. The node may parse IPSec traffic and identify a flow associated with the IPsec traffic. In this manner, the node may generate and/or communicate statistics pertaining to said IPSec secured traffic based on the flow with which the traffic is associated. | ||
| 申请公布号 | US9185097(B2) | 申请公布日期 | 2015.11.10 |
| 申请号 | US201313858266 | 申请日期 | 2013.04.08 |
| 申请人 | Broadcom Corporation | 发明人 | Elzur Uri |
| 分类号 | H04L29/06;H04L9/08;H04L9/32 | 主分类号 | H04L29/06 |
| 代理机构 | Oblon, McClelland, Maier & Neustadt, L.L.P. | 代理人 | Oblon, McClelland, Maier & Neustadt, L.L.P. |
| 主权项 | 1. A method for computer networking, the method comprising: authenticating a node in a network as being a trusted third party; receiving encrypted IPSec secured traffic at the authenticated node; receiving flow information pertaining to the encrypted IPSec secured traffic at the authenticated node for handling the encrypted IPSec secured traffic; and forwarding, by the node, the encrypted IPSec secured traffic without decrypting the encrypted IPSec secured traffic based at least in part on the flow information. | ||
| 地址 | Irvine CA US | ||