发明名称 |
METHOD AND APPARATUS FOR USING DIGITAL SIGNATURES TO FILTER PACKETS IN A NETWORK |
摘要 |
A method and apparatus for filtering packets uses digital signatures to filter packets in a network. A filter point, such as a router or firewall to an intranet, receives a packet including a header, detects the existence of a signature in the header, tests the validity of the signature using a public key, and forwards the packets in accordance with the validity of the signature. A sender uses a private key obtained from an owner to generate the signature, which is created by encrypting a fingerprint which corresponds to the data in the packet. Public keys are created by an owner which installs them in a domain name system or a certification server. Private keys are also created by the owner but are disseminated only to authorized senders. A method and apparatus for sending packets stores a private key in a memory of the data processor, generates a signature using the private key, installs the signature into a header of a packet; and sends the packet.
|
申请公布号 |
WO9955052(A1) |
申请公布日期 |
1999.10.28 |
申请号 |
WO1999US06206 |
申请日期 |
1999.03.22 |
申请人 |
SUN MICROSYSTEMS, INC.;GUPTA, AMIT;PERLMAN, RADIA, J. |
发明人 |
GUPTA, AMIT;PERLMAN, RADIA, J. |
分类号 |
G06F21/20;G06F13/00;H04L29/02;H04L29/06;(IPC1-7):H04L29/06;H04L12/22;G07C9/00 |
主分类号 |
G06F21/20 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|