DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Communication device for implementing selective encryption in a software defined network

Abstract

The present disclosure pertains to systems and methods for selectively encrypting data flows within a software defined network (SDN). In one embodiment, a communication device may be configured to receive a plurality of unencrypted data packets. The communication device may receive from an SDN controller a criterion used to identify at least one of the unencrypted data flows to be encrypted. Based on the criterion, an encryption subsystem may generate an encrypted data flow the unencrypted data packets based on an encryption key. In some embodiments, the encryption system may parse the packets and encrypt the data payloads without encrypting the routing information associated with the packet. In other embodiments, the encryption subsystem may be configured to encapsulate and encrypt the entire unencrypted data packet. In some embodiments, the encryption subsystem may further be configured to authenticate a sending device and/or to verify the integrity of a message.

Inventors:
;
Issue Date:
Research Org.:
Schweitzer Engineering Laboratories, Inc., Pullman, WA (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1568539
Patent Number(s):
10341311
Application Number:
14/803,755
Assignee:
Schweitzer Engineering Laboratories, Inc. (Pullman, WA)
Patent Classifications (CPCs):
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
DOE Contract Number:  
OE0000678
Resource Type:
Patent
Resource Relation:
Patent File Date: 07/20/2015
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING; 24 POWER TRANSMISSION AND DISTRIBUTION; 42 ENGINEERING

Citation Formats

Smith, Rhett, and Grussling, Barry Jakob. Communication device for implementing selective encryption in a software defined network. United States: N. p., 2019. Web.
Smith, Rhett, & Grussling, Barry Jakob. Communication device for implementing selective encryption in a software defined network. United States.
Smith, Rhett, and Grussling, Barry Jakob. Tue . "Communication device for implementing selective encryption in a software defined network". United States. https://www.osti.gov/servlets/purl/1568539.
@article{osti_1568539,
title = {Communication device for implementing selective encryption in a software defined network},
author = {Smith, Rhett and Grussling, Barry Jakob},
abstractNote = {The present disclosure pertains to systems and methods for selectively encrypting data flows within a software defined network (SDN). In one embodiment, a communication device may be configured to receive a plurality of unencrypted data packets. The communication device may receive from an SDN controller a criterion used to identify at least one of the unencrypted data flows to be encrypted. Based on the criterion, an encryption subsystem may generate an encrypted data flow the unencrypted data packets based on an encryption key. In some embodiments, the encryption system may parse the packets and encrypt the data payloads without encrypting the routing information associated with the packet. In other embodiments, the encryption subsystem may be configured to encapsulate and encrypt the entire unencrypted data packet. In some embodiments, the encryption subsystem may further be configured to authenticate a sending device and/or to verify the integrity of a message.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2019},
month = {7}
}

Works referenced in this record:

Systems and Methods for Distributing Network Traffic between Servers Based on Elements in Client Packets
patent-application, March 2015


Method and System for Real-Time Visualization of Network Flow within Network Device
patent-application, June 2013


Simulating, visualizing, and searching traffic in a software defined network
patent, September 2017


Network availability monitor
patent, June 2004


Monitoring Virtualized Network
patent-application, January 2014


Systems and Methods for Placing Virtual Serving Gateways for Mobility Management
patent-application, June 2016


Passive Route Control of Data Networks
patent-application, July 2003


Secure Processing Systems and Methods
patent-application, December 2011


Security Enhancements for a Software-Defined Network with Network Functions Virtualization
patent-application, May 2016


Network Controller Security Monitor
patent-application, November 2016


Optimal Segment Identification for Shared Mesh Protection
patent-application, November 2013


Software-Defined Network Overlay
patent-application, June 2014


Routing of Traffic in Network through Automatically Generated and Physically Distinct Communication Paths
patent-application, January 2017


Network Infrastructure Obfuscation
patent-application, April 2014


Method for Controlling Software Defined Network and Apparatus for the Same
patent-application, December 2014


System and Method for Enabling Communications over a Number of Packet Networks
patent-application, March 2014


Method and System to Dynamically Detect Traffic Anomalies in a Network
patent-application, October 2014


Transparent Provisioning of Network Access to an Application
patent-application, October 2013


Source Routing with Fabric Switches in an Ethernet Fabric Network
patent-application, August 2014


Monitoring of Optical Transmission Systems Based on Cross-Correlation Operation
patent-application, October 2009


Automatic Noise Profile Generation
patent-application, November 2016


Reliability metrics in an IP network
patent, January 2011


Communication Link Failure Detection in a Software Defined Network
patent-application, January 2017


Method of Data Delivery across a Network
patent-application, April 2011


Programmable Management Engine for Networks
patent-application, September 2014


Systems and Methods Optimizing Backhaul Transport
patent-application, June 2014


Network Switch Simulation
patent-application, December 2015


End-to-End Encryption in a Software Defined Network
patent-application, April 2016


Software-Defined Energy Communication Networks
patent-application, December 2014


Proactive Controller for Failure Resiliency in Communication Networks
patent-application, July 2015


Communication Device with Persistent Configuration and Verification
patent-application, January 2017


Packet processing engine architecture
patent, May 2007


Secure Path Determination between Devices
patent-application, February 2016


Selectively encrypting different portions of data sent over a network
patent, May 2008


Network Reliability Assessment
patent-application, January 2017


Telecommunication System, for Example an IP Telecommunication System, and Equipment Units for Use in the System
patent-application, October 2003


Decision support systems and methods for complex networks
patent-application, September 2010


Adaptive Hybrid Wireless and Wired Process Control System and Method
patent-application, March 2013


Selectively Encrypting Different Portions of Data Sent over a Network
patent-application, May 2007


Supporting Software Defined Networking with Application Layer Traffic Optimization
patent-application, September 2013


Method, System and Apparatus for Assembling and Using Biological Knowledge
patent-application, December 2009


System and Method for Software Defined Network Aware Data Replication
patent-application, April 2015


Communication Host Profiles
patent-application, January 2017


Technique for Configuring a Software-Defined Network
patent-application, October 2014


Systems and methods for controlling network device temporarily absent from control panel
patent, August 2016


Reliability metrics in an IP network
patent, October 2013


Dynamic Local Decision Control in Software Defined Networking-Based Environment
patent-application, October 2015


Configuration of a Software Defined Network
patent-application, January 2017


Packet Reassembly and Deadlock Avoidance for Use in a Packet Switch
patent-application, February 2005


System and Method for Implementing an Infiniband Error Log Analysis Model to Facilitate Faster Problem Isolation and Repair
patent-application, April 2008


Network reliability assessment
patent, June 2017


System and Method for Selective Information Exchange
patent-application, September 2005


Interactive MPLS Traffic Engineering
patent-application, November 2009


Creating Searchable and Global Database of User Visible Process Traces
patent-application, May 2014


Software Defined Network Controller for Implementing Tenant Specific Policy
patent-application, September 2017


System and Method for Increasing a Data Transmission Rate in Mobile Wireless Communication Channels
patent-application, June 2003


Method for Setting Packet Forwarding Rule and Control Apparatus Using the Method
patent-application, April 2014


Methods and Apparatuses for Authentication and Validation of Computer-Processable Communications
patent-application, January 2008


Ad Hoc Wireless Node and Network
patent-application, April 2005


Pair-Wise Keying for Tunneled Virtual Private Networks
patent-application, January 2014


Data Processing Lock Signal Transmission
patent-application, August 2014


Priming failover of stateful offload adapters
patent, March 2016


Affinity Modeling in a Data Center Network
patent-application, May 2013


Symmetric Key Generation Apparatus and Symmetric Key Generation Method
patent-application, April 2008


Network control security
patent, August 2016


Systems and Methods for Configuring a Device Via a Software-Defined Networking Controller
patent-application, November 2016


Recovery of Transmission Errors
patent-application, April 2011


Communication Device for Implementing Selective Encryption in a Software Defined Network
patent-application, January 2017


Control Mechanism for Reliability and Availability Setting in Virtual Networks
patent-application, August 2013


Authentication for software defined networks
patent, May 2015


Simulating, Visualizing, and Searching Traffic in a Software Defined Network
patent-application, January 2017