Transparent bridge for monitoring crypto-partitioned wide-area network
Abstract
This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.
- Inventors:
- Issue Date:
- Research Org.:
- Architecture Technology Corp., Minneapolis, MN (United States)
- Sponsoring Org.:
- USDOE
- OSTI Identifier:
- 1650930
- Patent Number(s):
- 10659476
- Application Number:
- 15/262,979
- Assignee:
- Architecture Technology Corporation (Minneapolis, MN)
- Patent Classifications (CPCs):
-
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- DOE Contract Number:
- SC0015112
- Resource Type:
- Patent
- Resource Relation:
- Patent File Date: 09/12/2016
- Country of Publication:
- United States
- Language:
- English
- Subject:
- 97 MATHEMATICS AND COMPUTING
Citation Formats
Ramanujan, Ranga, and Burnett, Benjamin L. Transparent bridge for monitoring crypto-partitioned wide-area network. United States: N. p., 2020.
Web.
Ramanujan, Ranga, & Burnett, Benjamin L. Transparent bridge for monitoring crypto-partitioned wide-area network. United States.
Ramanujan, Ranga, and Burnett, Benjamin L. Tue .
"Transparent bridge for monitoring crypto-partitioned wide-area network". United States. https://www.osti.gov/servlets/purl/1650930.
@article{osti_1650930,
title = {Transparent bridge for monitoring crypto-partitioned wide-area network},
author = {Ramanujan, Ranga and Burnett, Benjamin L.},
abstractNote = {This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2020},
month = {5}
}
Works referenced in this record:
Distributed Packet Flow Inspection and Processing
patent-application, April 2011
- Willebeek-LeMair, Marc; Smith, Brian C.
- US Patent Application 12/911,912; 2011/0099631 Al
Techniques to Support Heterogeneous Network Data Path Discovery
patent-application, May 2016
- Patil, Abhishek Pramod; Cherian, George; Abraham, Santosh Paul
- US Patent Application 14/944554; 20160150459 A1
Reliable transport protocol providing receiver-based congestion control
patent, August 2011
- Ramanujan, Ranga S.; Carl, Richard H.; Trent, Barry A.
- US Patent Document 7,995,475
Loop Dampening in a Computer Network
patent-application, December 2013
- Wijnands, Ijsbrand; Olofsson, Stefan
- US Patent Application 13/484,606; 2013/0322436 Al
Detection and repair of permanent pause on flow controlled fabric
patent, August 2016
- Li, Jiangbo; Zhou, Junlan; Xiao, Ke
- US Patent Document 9,407,565
System and Method for Conveying Priority Associated with a Communication Among A Plurality of Networks
patent-application, April 2010
- Brewer, Jr., Orlie Thomas; Mohammad, Alimuddin; Ayyagari, Arun
- US Patent Application 12/249,772; 2010/0091650 A1
Systems and Methods for Providing Quality of Service Via a Flow Controlled Tunnel
patent-application, March 2012
- Jackowski, Steve; Keith, Seth; Testicioglu, Kutluk
- US Patent Application 12/893,025; 2012/0078994 Al
Transmission Control Protocol Flooding Attack Prevention Method and Apparatus
patent-application, May 2012
- Yoon, Seung-Yong; Kim, Byoung-Koo
- US Patent Application 13/287,646; 2012/0117646 Al
Method and System for Managing Port Bandwidth in Network Devices
patent-application, October 2016
- Labonte, Francois; Yousef, Muhammad
- US Patent Application 14/685101; 20160301618 A1
Prioritizing Classes of Network Traffic to Provide a Predetermined Quality of Service
patent-application, March 2013
- Keith, Seth
- US Patent Application 13/535,350; 2013/0077486 A
Node, Network Controller, and Associated Methods for Routing Data Packets in a Network
patent-application, August 2016
- Ashwood-Smith, Peter
- US Patent Application 14/610608; 20160226758 A1
Mobile Communication Devices and Deciphering Methods
patent-application, July 2012
- Cheng, Tsung-Yo
- US Patent Application 13/105,119; 2012/0170744 Al
Multi-Level Flow Control
patent-application, January 2015
- Olenz, Randy M.; Slogar, Joseph V.
- US Patent Application 14/513264; 20150029862 A1
detecting and Preventing Flooding Attacks in a Network Environment
patent-application, October 2016
- Wei, Shaohong; Dong, Gang; Chen, Zhong Qiang
- US Patent Application 15/055995; 20160294865 A1
Systems and Methods for Quality of Service Encrypted Network Traffic
patent-application, February 2012
- Jackowski, Steve; Keith, Seth; Ovsiannikov, Mike
- US Patent Application 12/855,335; 2012/0039337 Al
Method And Apparatus For Dynamic Load Balancing Over A Network Link Bundle
patent-application, October 2006
- Hilla, Stephen; Potter, Kenneth H.; Marshall, John
- US Patent Application 11/097798; 20060221974 A1
Method And Apparatus For Setting Ciphering Activation Time In A Wireless Communications System
patent-application, November 2007
- Jiang, Sam Shiaw-Shiang; Kuo, Richard Lee-Chee
- US Patent Application 11/798001; 20070265875 A1
Receiver based congestion control
patent, September 2003
- Hadi Salim, Jamal; Nandy, Biswajit; Seddigh, Nabil
- US Patent Document 6,625,118
Communication System of Client Terminals and Relay Server and Communication Method
patent-application, July 2008
- Ishikawa, Yuichi; Koide, Toshio
- US Patent Application 11/850899; 20080162929 A1
Processing Data Flows with a Data Flow Processor
patent-application, September 2011
- Korsunsky, Yevgeny; Akerman, Moisey
- US Patent Application 12/983,025; 2011/0238855 Al
Method And Apparatus For Self-learning Of VPNS From Combination Of Unidirectional Tunnels In MPLS/VPN Networks
patent-application, May 2007
- Weill, Ofer; Abramovitz, Assi
- US Patent Application 11/287824; 20070121615 A1
Securing a Network with Data Flow Processing
patent-application, September 2011
- Korsunsky, Yevgeny; Akerman, Moisey
- US Patent Application 12/982,772; 2011/0214157 A1
Incremental Application Of Resources To Network Traffic Flows Based On Heuristics And Business Policies
patent-application, December 2015
- Caputo II, Pete Joseph; Sella, William Thomas
- US Patent Application 14/800933; 20150358287 A1
Apparatus and Method for Preventing Network attacks, and Packet Transmission and Reception Processing Apparatus and Method Using the Same
patent-application, June 2011
- Park, Chanho; Kim, Seong Woon; Kim, Sun Wook
- US Patent Application 12/701253; 20110131646 A1
Processing Of Data Packets Within A Network Element Cluster
patent-application, July 2002
- Halme, Matti; Harjulahti, Esa; Viratnen, Tommi
- US Patent Application 10/013613; 20020097724 A1
Multipath Traffic Management
patent-application, August 2018
- Milescu, George; Petria, Silviu; Paraschiv, Andra
- US Patent Application 15/756924; 20180248714 A1
Method for Network Communication Past Encryption Devices
patent-application, February 2016
- Charan, Deborah K.; Ramanujan, Ranga
- US Patent Application 14/931620; 20160057116 A1
Quality of Experience Indicator for Network Diagnosis
patent-application, November 2008
- Menon, Jyotikumar
- US Patent Application 11/743,565; 2008/0276001 Al
High-accuracy Packet Pair For Network Bottleneck Bandwidth Measurement
patent-application, August 2006
- Jourdain, Mathias; Rosenberger, Joel L.; Zuberi, Khawar M.
- US Patent Application 11/058847; 20060182039 A1
Combining Internet Routing Information with Access Logs to Assess Risk of User Exposure
patent-application, November 2016
- Reddy, Anoop; Bell, Kenneth; Oikonomou, Georgios
- US Patent Application 15/148400; 20160330236 A1
Systems and Methods for Providing Quality of Service Precedence in TCP Congestion Control
patent-application, September 2010
- Plamondon, Robert
- US Patent Application 12/784872; 20100226250 A1
Method and System for Dynamic Secured Group Communication
patent-application, March 2012
- Fluhrer, Scott; Wainner, Warren Scott; Rowles, Sheela
- US Patent Application 13/235,598; 2012/0060029 Al
Packet Transmission method and Packet Transmission Rate
patent-application, November 2008
- Shake, Ippel; Fakutoka, Mitsunori; Imajyuka, Wataru
- US Patent Application 10/577,874; 2008/0279181 Al
Systems And Methods For Multicore Processing Of Data With In-Sequence Delivery
patent-application, February 2014
- Hutchison, Jerry; Stanziola, Christopher
- US Patent Application 13/592939; 20140056307 A1
Packet routing system and method
patent, September 2006
- Matthews, Abraham R.; Weir, Steven
- US Patent Document 7,111,072
Systems and Method for Processing Data Flows
patent-application, September 2012
- Kapoor, Harsh; Akerman, Moisey; Justus, Stephen D.
- US Patent Application 13/416,647; 2012/0240185 Al
Systems and Methods for Processing Data Flows
patent-application, October 2008
- Kapoor, Harsh; Akerman, Moisey; Justus, Stephen D.
- US Patent Application 11/926,292; 2008/0262990 A
Systems and Methods of QOS for Single Stream ICA
patent-application, September 2012
- Ovslannikov, Michale
- US Patent Application 13/413,508; 2012/0230345 Al