| 发明名称 |
System and method for providing unified transport and security protocols |
| 摘要 |
The system and method described herein may provide unified transport and security protocols. In particular, the unified transport and security protocols may include a Secure Frame Layer transport and security protocol that includes stages for initially configuring a requester device and a responder device, identifying the requester device and the responder device to one another, and authenticating message frames communicated between the requester device and the responder device. Additionally, the unified transport and security protocols may further include a Secure Persistent User Datagram Protocol that includes modes for processing message frames received at the requester device and the responder device, recovering the requester device in response to packet loss, retransmitting lost packets sent between the requester device and the responder device, and updating location information for the requester device to restore a communications session between the requester device and the responder device. |
| 申请公布号 |
US8745723(B2) |
申请公布日期 |
2014.06.03 |
| 申请号 |
US201213678295 |
申请日期 |
2012.11.15 |
| 申请人 |
Aunigma Network Security Corp. |
发明人 |
Garrard Kenneth W.;Elliott Karl E.;Huang Andy |
| 分类号 |
H04L29/06;H04L29/08 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A responder device for providing unified transport and security protocols, comprising:
a memory configured to store a first access filter value, the first access filter value having been uniquely calculated for a requester device by seeding one or more first hash functions with one or more first secrets; and responder logic configured to execute on the responder device and cause the responder device to:
receive a first message frame from the requester device through a network interface coupled to a network, wherein the first message frame includes a first hash value and one or more second secrets not previously generated at the responder device;authenticate the requester device in response to the first hash value included in the first message frame matching the first access filter value stored in the memory;calculate a second hash value by seeding one or more second hash functions with the one or more second secrets included in the first message frame;generate a second message frame, the second message frame including the second hash value, wherein the second message frame is configured to cause the requester device to authenticate the responder device in response to the second hash value included in the second message frame matching a second filter access value stored on the requester device; andtransmit the second message frame that includes the second hash value to the requester device through the network interface.
|
| 地址 |
Atlanta GA US |
