skip to main content
DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Communication device for implementing selective encryption in a software defined network

Abstract

The present disclosure pertains to systems and methods for selectively encrypting data flows within a software defined network (SDN). In one embodiment, a communication device may be configured to receive a plurality of unencrypted data packets. The communication device may receive from an SDN controller a criterion used to identify at least one of the unencrypted data flows to be encrypted. Based on the criterion, an encryption subsystem may generate an encrypted data flow the unencrypted data packets based on an encryption key. In some embodiments, the encryption system may parse the packets and encrypt the data payloads without encrypting the routing information associated with the packet. In other embodiments, the encryption subsystem may be configured to encapsulate and encrypt the entire unencrypted data packet. In some embodiments, the encryption subsystem may further be configured to authenticate a sending device and/or to verify the integrity of a message.

Inventors:
;
Issue Date:
Research Org.:
Schweitzer Engineering Laboratories, Inc., Pullman, WA (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1568539
Patent Number(s):
10341311
Application Number:
14/803,755
Assignee:
Schweitzer Engineering Laboratories, Inc. (Pullman, WA)
Patent Classifications (CPCs):
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
DOE Contract Number:  
OE0000678
Resource Type:
Patent
Resource Relation:
Patent File Date: 07/20/2015
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING; 24 POWER TRANSMISSION AND DISTRIBUTION; 42 ENGINEERING

Citation Formats

Smith, Rhett, and Grussling, Barry Jakob. Communication device for implementing selective encryption in a software defined network. United States: N. p., 2019. Web.
Smith, Rhett, & Grussling, Barry Jakob. Communication device for implementing selective encryption in a software defined network. United States.
Smith, Rhett, and Grussling, Barry Jakob. Tue . "Communication device for implementing selective encryption in a software defined network". United States. https://www.osti.gov/servlets/purl/1568539.
@article{osti_1568539,
title = {Communication device for implementing selective encryption in a software defined network},
author = {Smith, Rhett and Grussling, Barry Jakob},
abstractNote = {The present disclosure pertains to systems and methods for selectively encrypting data flows within a software defined network (SDN). In one embodiment, a communication device may be configured to receive a plurality of unencrypted data packets. The communication device may receive from an SDN controller a criterion used to identify at least one of the unencrypted data flows to be encrypted. Based on the criterion, an encryption subsystem may generate an encrypted data flow the unencrypted data packets based on an encryption key. In some embodiments, the encryption system may parse the packets and encrypt the data payloads without encrypting the routing information associated with the packet. In other embodiments, the encryption subsystem may be configured to encapsulate and encrypt the entire unencrypted data packet. In some embodiments, the encryption subsystem may further be configured to authenticate a sending device and/or to verify the integrity of a message.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2019},
month = {7}
}

Patent:

Save / Share:

Works referenced in this record:

Simulating, visualizing, and searching traffic in a software defined network
patent, September 2017


Network availability monitor
patent, June 2004


Reliability metrics in an IP network
patent, January 2011


Packet processing engine architecture
patent, May 2007


Selectively encrypting different portions of data sent over a network
patent, May 2008


Systems and methods for controlling network device temporarily absent from control panel
patent, August 2016


Reliability metrics in an IP network
patent, October 2013


Apparatus, system and method for selectively encrypting different portions of data sent over a network
patent, January 2007


Network reliability assessment
patent, June 2017


Secure distributed computing using containers
patent, October 2017


Priming failover of stateful offload adapters
patent, March 2016


Network control security
patent, August 2016


Authentication for software defined networks
patent, May 2015